Draft for legal review before launch
Cookie Policy
This draft describes cookies and local browser storage used for authentication, CSRF protection, and client-side encrypted key handling.
Essential cookies
Essential Secure uses session and CSRF cookies to keep signed-in users authenticated and protect state-changing requests.
Local storage
Some browser-side cryptographic material, such as local sharing key envelopes, may be stored on the user's device. This is not used for advertising tracking.
Analytics
Any analytics or performance tooling must be documented here before launch, including provider names and opt-out controls where required.
Review note
This cookie policy is a launch placeholder and requires legal and technical review before production.