Cookie Policy
This Cookie Policy explains what cookies and similar technologies we use on the Noryn platform, why, and how to manage your preferences. It is required by the UK Privacy and Electronic Communications Regulations (PECR) 2003.
1. What Are Cookies
Cookies are small text files stored on your device when you visit a website. They help the site remember information about your visit. We also use localStorage and sessionStorage for similar purposes.
2. Cookies We Set
2.1 Essential cookies (always active)
These cookies are necessary for the platform to function. They cannot be disabled.
| Cookie | Purpose | Duration |
|---|---|---|
| sb-access-token | Supabase authentication session token | Session |
| sb-refresh-token | Supabase session refresh token | 7 days |
| cookie-consent | Stores your cookie consent preferences | 1 year |
| __Host-csrf | CSRF protection for form submissions | Session |
2.2 Functional cookies (optional)
These cookies remember your preferences and improve your experience. Disabling them won't break the platform but may reduce convenience.
| Cookie | Purpose | Duration |
|---|---|---|
| sidebar-state | Remembers whether your sidebar is collapsed | 30 days |
| dashboard-layout | Remembers dashboard column preferences | 30 days |
2.3 Analytics cookies (optional)
We use privacy-friendly analytics to understand how the platform is used and to improve it. We do not use advertising cookies on this platform.
| Cookie / Technology | Provider | Purpose | Duration |
|---|---|---|---|
| _plausible | Plausible Analytics (EU-hosted) | Page views and feature usage — no personal data, no cross-site tracking | Session |
Analytics scripts are only loaded after you have given consent. We do not use Google Analytics, Facebook Pixel, or any advertising network cookies.
3. Third-Party Cookies
3.1 Stripe (payment processing)
When you visit our billing pages or Stripe Checkout, Stripe may set cookies for fraud prevention and payment security. These are governed by Stripe's Cookie Policy.
3.2 Integration OAuth flows
When you connect integrations (Google, Meta, Microsoft), the OAuth authentication flow may set short-lived session cookies on those providers' domains. These are controlled by those third parties and are not persistent.
4. How to Manage Your Cookie Preferences
- In-platform consent banner: When you first visit the platform, a cookie banner lets you choose "Accept all", "Essential only", or "Manage preferences" with per-category toggles.
- Change your preferences anytime: Go to Settings → Privacy to update your cookie choices.
- Browser settings: You can configure your browser to block or delete all cookies. Note that blocking essential cookies will prevent you from logging in.
5. Do Not Track
We honour browser Do Not Track (DNT) signals. If your browser sends a DNT signal, we will not load analytics scripts regardless of your consent settings.
6. Changes to This Policy
We will update this policy if we add or change the cookies we use. Material changes will be notified 30 days in advance.
7. More Information
For questions about cookies, email privacy@norynsystem.com. For general information about cookies, visit ico.org.uk.
Noryn · Noryn System Ltd · ICO Reg [ICO reg. no.] · privacy@norynsystem.com