Last Updated: June 26, 2026
Cookies are small text files stored on your device when you visit a website. They help websites remember your preferences, authenticate you, and improve your experience.
These cookies are necessary for the platform to function and cannot be disabled.
| Cookie Name | Purpose | Duration |
|---|---|---|
authjs.session-token | Authentication - Keeps you logged in | 30 days |
authjs.csrf-token | Security - Prevents CSRF attacks | Session |
authjs.callback-url | Navigation - Redirects after login | Session |
Legal Basis: Legitimate interest & contractual necessity (GDPR Article 6(1)(b) & (f))
These cookies are set only when you actively choose a preference (for example, switching theme or language). They are not used to track you.
| Cookie Name | Purpose | Duration |
|---|---|---|
theme | Remembers dark/light mode preference | 1 year |
NEXT_LOCALE | Remembers your language preference | 1 year |
Legal Basis: Set only in response to your explicit choice (functional). We do not use these cookies for tracking, analytics, or advertising, so no separate cookie consent banner is required.
If you sign in with Google, Google sets cookies for authentication purposes. These are governed by Google's Privacy Policy.
When you make payments, Paddle may set cookies for payment processing and fraud prevention.
ComplianceKit does NOT use:
Privacy-First Approach
As a GDPR compliance platform, we practice what we preach. We use only the minimum cookies necessary to provide our service and respect your privacy.
ComplianceKit's own website uses only essential cookies and limited functional cookies (set when you choose a preference such as theme or language). We do not use analytics, advertising, session-replay, or other tracking cookies on our website, so we are not required to show a cookie consent banner for it, and we do not. You can still control or delete cookies at any time through your browser settings (see below).
Note: the cookie consent banner is a product we provide to our customers for use on their websites. It is not used on this website because we set no cookies that require consent.
You can control cookies through your browser settings:
Important:
Blocking essential cookies will prevent you from logging in and using ComplianceKit. We recommend accepting essential cookies.
You can delete all ComplianceKit cookies by:
Note: This will log you out and reset your preferences.
We use two types of cookies based on duration:
Temporary cookies deleted when you close your browser. Used for security (CSRF tokens, temporary authentication states).
Cookies that remain on your device for a set period:
We may update this Cookie Policy to reflect changes in our cookie practices. We will notify you of significant changes by:
If you have questions about our use of cookies, please contact us:
Email: privacy@compliancekit.tech
Support: support@compliancekit.tech
This Cookie Policy complies with GDPR (ePrivacy Directive) and other applicable cookie laws.