Cookie Policy
Last updated: September 24, 2024
About Cookies: This Cookie Policy explains how Appable, LLC uses cookies and similar technologies when you use Auditable, our web accessibility scanning service.
1. What Are Cookies?
Cookies are small text files that are placed on your device (computer, smartphone, or tablet) when you visit a website. They are widely used to make websites work more efficiently and to provide information to website owners.
Cookies help us understand how you interact with our Service, remember your preferences, and improve your experience. This policy explains what cookies we use, why we use them, and your choices regarding their use.
2. Types of Cookies We Use
We categorize cookies based on their function and who controls them:
2.1 By Function
- Strictly Necessary Cookies: Essential for the Service to function properly
- Functional Cookies: Remember your preferences and choices
- Analytics Cookies: Help us understand how you use our Service
- Performance Cookies: Monitor Service performance and load times
2.2 By Duration
- Session Cookies: Temporary cookies deleted when you close your browser
- Persistent Cookies: Remain on your device for a specified period or until deleted
2.3 By Origin
- First-Party Cookies: Set by Auditable directly
- Third-Party Cookies: Set by our service providers (Clerk, PostHog, Stripe)
3. Strictly Necessary Cookies
These cookies are essential for our Service to function properly. You cannot disable them through cookie settings, as doing so would prevent the Service from working correctly.
Authentication Cookies (Clerk)
- Purpose: Maintain your login session and secure authentication
- Cookie Names: __clerk_session, __session
- Duration: Session cookies (deleted when browser closes)
- Domain: auditable.dev, clerk.auditable.dev
Security and CSRF Protection
- Purpose: Protect against cross-site request forgery attacks
- Cookie Names: __csrf_token, next-auth.csrf-token
- Duration: Session cookies
- Domain: auditable.dev
Load Balancing and Performance
- Purpose: Ensure proper request routing and optimal performance
- Cookie Names: __lb_session, __next_route
- Duration: Session cookies
- Domain: auditable.dev
4. Functional Cookies
These cookies remember your preferences and choices to provide a more personalized experience. You can disable these cookies, but some features may not work as expected.
User Preferences
- Purpose: Remember your dashboard layout, notification preferences, and settings
- Cookie Names: user_prefs, dashboard_layout, notification_settings
- Duration: 1 year
- Domain: auditable.dev
Cookie Consent
- Purpose: Remember your cookie consent preferences
- Cookie Names: cookie_consent, analytics_consent
- Duration: 1 year
- Domain: auditable.dev
5. Analytics and Performance Cookies
These cookies help us understand how you use our Service so we can improve it. We only use these cookies with your consent.
PostHog Analytics
- Purpose: Understand user behavior and improve the Service (anonymized)
- Cookie Names: ph_phc_*, __ph_opt_in_out
- Duration: 1 year
- Domain: auditable.dev, app.posthog.com
- Data Collected: Page views, feature usage, performance metrics (anonymized)
Error Tracking and Performance Monitoring
- Purpose: Monitor application performance and identify technical issues
- Cookie Names: _error_session, performance_id
- Duration: 30 days
- Domain: auditable.dev
6. Third-Party Cookies
We use several trusted third-party services that may set their own cookies when you use our Service:
Clerk (Authentication)
- Purpose: Secure user authentication and session management
- Privacy Policy: https://clerk.com/privacy
- Cookie Control: Essential for Service functionality - cannot be disabled
Stripe (Payment Processing)
- Purpose: Secure payment processing and fraud prevention
- Privacy Policy: https://stripe.com/privacy
- Cookie Control: Essential for payment functionality when using paid features
PostHog (Analytics)
- Purpose: Product analytics and user experience insights
- Privacy Policy: https://posthog.com/privacy
- Cookie Control: Can be disabled through your account preferences
Vercel (Hosting and Performance)
- Purpose: Content delivery and performance optimization
- Privacy Policy: https://vercel.com/legal/privacy-policy
- Cookie Control: Essential for Service delivery - cannot be disabled
7. Your Cookie Choices and Controls
7.1 Browser Controls
Most web browsers allow you to control cookies through their settings. You can:
- Block all cookies
- Block third-party cookies
- Delete cookies when you close your browser
- Get notified when cookies are set
- Delete specific cookies
Important: Disabling essential cookies may prevent parts of our Service from working properly, including the ability to log in and access your account.
7.2 Browser-Specific Instructions
Chrome
Settings > Privacy and Security > Cookies and other site data
Firefox
Settings > Privacy & Security > Cookies and Site Data
Safari
Preferences > Privacy > Manage Website Data
Edge
Settings > Cookies and site permissions > Cookies and site data
7.3 Account-Level Controls
When logged into your Auditable account, you can control non-essential cookies through your account preferences:
- Navigate to your Account Settings
- Select “Privacy Preferences”
- Toggle analytics and performance cookies on/off
- Your preferences are saved automatically
7.4 Third-Party Opt-Out
You can also opt out of third-party cookies directly:
- PostHog: Use the opt-out link in your account settings or visit their opt-out page
- General Opt-Out: Visit aboutads.info or youronlinechoices.com
8. Mobile Device Cookies
When accessing our Service through mobile devices, similar technologies may be used:
- Mobile Browser Cookies: Function similarly to desktop browser cookies
- Local Storage: Used to store user preferences and session data
- Device Identifiers: May be used for authentication and security purposes
You can control these through your mobile browser settings or device privacy settings.
9. International Considerations
9.1 GDPR Compliance (European Users)
For users in the European Economic Area:
- We obtain explicit consent for non-essential cookies
- You can withdraw consent at any time through your account settings
- Essential cookies are processed under the legal basis of legitimate interests
- You have the right to object to cookie processing where technically feasible
9.2 CCPA Compliance (California Users)
For California residents:
- Cookies may constitute “personal information” under CCPA
- You have the right to know what information cookies collect
- We do not “sell” cookie data to third parties
- You can request deletion of cookie data through your account settings
10. Cookie Consent Management
We use a cookie consent management system to ensure compliance with applicable laws:
- First Visit: You’ll see a cookie notice explaining our cookie use
- Consent Choices: You can accept all, reject non-essential, or customize your preferences
- Consent Withdrawal: Change your mind anytime through account settings
- Consent Records: We maintain records of your consent choices for compliance
11. Updates to This Cookie Policy
We may update this Cookie Policy periodically to reflect:
- Changes in our cookie practices
- New third-party services or integrations
- Legal or regulatory requirements
- Technology improvements or changes
We will notify you of material changes through email or a prominent notice in the Service. The “Last updated” date at the top of this policy indicates when changes were made.
12. Contact Us About Cookies
If you have questions about our use of cookies or this Cookie Policy, please contact us:
Appable, LLC
Cookie Policy Inquiries
Email: privacy@auditable.dev
Subject Line: “Cookie Policy Question”
Website: https://auditable.dev
This Cookie Policy is part of our Privacy Policy and Terms of Service. By using Auditable, you agree to our use of cookies as described in this policy.