Patten Labs LLC
Cookie Policy
Last updated: 2026-05-20
Short version
We use the minimum set of cookies + local storage required to keep you signed in, remember your theme, and keep the products working. We do not use advertising or cross-site tracking cookies.
What is a cookie?
A small file a website stores in your browser. We also use localStorage and sessionStorage — same idea, just stored client-side without being sent on every request. This policy covers all three.
What we use
| Name | Type | Purpose | Lifetime |
|---|---|---|---|
| sb-* (Supabase auth) | Essential | Keeps you signed in | 1 hr / refresh |
| __Secure-next-auth.session-token | Essential | Session token (NextAuth, where used) | 30 days |
| pl-theme | Preference | Remembers light/dark choice | 1 year (localStorage) |
| __stripe_mid / __stripe_sid | Essential (Stripe) | Fraud prevention on checkout | 1 yr / 30 min |
| __cf_bm | Essential (Cloudflare) | Bot management | 30 min |
| pl-csrf | Essential | CSRF protection on POST endpoints | Session |
What we don't use
- No Google Analytics, Google Ads, or Tag Manager
- No Meta Pixel, LinkedIn Insight, X/Twitter Pixel
- No retargeting / advertising cookies
- No cross-site session sync beyond first-party SSO between Patten Labs products
How to opt out
Essential cookies cannot be opted out of without breaking the products (you can't sign in, we can't process payments). For preference cookies, clear them in your browser settings. For Stripe + Cloudflare, see Stripe cookie settings and Cloudflare cookie policy.
Do Not Track
We honor browser-level Global Privacy Control (GPC) signals where applicable under CCPA. We don't run ad cookies, so there's nothing extra to disable.
Changes
We'll update the "Last updated" date above when the cookie set changes.
Contact
legal@pattenlabs.com · Patten Labs LLC, Austin, TX