UASecure

Draft, pending counsel review.

UASecure is preparing this documentation for licensed-counsel review. The text below reflects our intended terms and is binding on use of the service, but it has not yet been certified by counsel. If you have questions, email legal@uasecure.com.

Cookie Policy

Last updated: 2026-05-25

Cookies are small text files set by us or by third parties when you visit our service. Strictly-necessary cookies run without consent because the service cannot function without them. Analytics and marketing cookies only run after you grant consent in the cookie banner, and you can change that choice at any time using the button at the end of this page.

Strictly Necessary

Name Purpose Duration Provider
authjs.session-token (and __Secure-authjs.session-token on HTTPS) Maintains your signed-in session Session lifetime UASecure (first-party)
authjs.csrf-token (and __Host-authjs.csrf-token on HTTPS) Cross-site request forgery protection Session lifetime UASecure (first-party)
authjs.callback-url (and __Secure-authjs.callback-url on HTTPS) Tracks the page to redirect to after sign-in Session lifetime UASecure (first-party)
uasecure_consent Records your cookie-preference selection 13 months UASecure (first-party)
uasecure_visitor Anonymous visitor identifier for the consent audit log 2 years UASecure (first-party)

We also use browser localStorage (not a cookie) under the key theme to remember your light or dark theme preference. It stays on your device and is never sent to our servers.

Analytics

Name Purpose Duration Provider
_ga Distinguishes unique visitors 2 years Google Analytics
_ga_<container> Persists session state for GA4 2 years Google Analytics
_gid Distinguishes unique visitors (24-hour rotation) 24 hours Google Analytics

Sentry's browser SDK is also gated by Analytics consent. Sentry captures unhandled errors and browser performance signals so we can diagnose problems quickly, and it does not set a cookie on uasecure.com.

Marketing

We run no marketing cookies today. This category is reserved for future advertising or remarketing campaigns. We will update this policy with 30 days' notice before activating any marketing cookie.

Third-party functional cookies

Some flows hand you off to third parties that set their own cookies on their own domains. These are not cookies on uasecure.com; we link to them here for transparency.

  • Stripe Checkout and Billing Portal set cookies on stripe.com when you use them, governed by Stripe's privacy policy.
  • Mapbox sets cookies on api.mapbox.com for map tile delivery, governed by Mapbox's privacy policy.

Update your preferences

The button immediately below renders the consent card so you can change your mind any time.