Cookie Policy

Effective date: June 2, 2026 · Last updated: June 2, 2026

This Cookie Policy explains how W3 EDGE, LLC d/b/a Auctollo ("Auctollo," "we," "us," or "our") uses cookies and similar tracking technologies on app.auctollo.com and within the Indexation WordPress plugin settings interface. This policy supplements our Privacy Policy.

1. What Are Cookies?

Cookies are small text files placed on your device when you visit a website. They allow the site to recognize your device, remember your preferences, and maintain your authentication state. Similar browser storage technologies (localStorage, sessionStorage) serve analogous functions in web applications.

2. Cookies We Use

2.1 Strictly Necessary Cookies

These cookies are required for the Service to function securely. You cannot opt out of them without losing access to authenticated features.

Name	Provider	Purpose	Expiry
`sb-[ref]-auth-token`	Supabase	Stores your encrypted session JWT to keep you signed in	Session / auto-refreshed (≤1 hour)
`sb-[ref]-auth-token-code-verifier`	Supabase	Stores the PKCE code verifier during the OAuth sign-in flow	Session

These cookies are set only after you sign in. They use HttpOnly, Secure, and SameSite=Strict attributes where browser support permits.

2.2 Analytics Cookies (Opt-In Only)

We use Google Tag Manager (GTM) with Google Analytics 4 (GA4) to understand how users interact with the Service. These cookies are only loaded after you give explicit consent via the "Help improve the software by sharing anonymous usage data with the developers" checkbox in your WordPress admin under Indexation → Settings. You can withdraw consent at any time by unchecking that option.

Name	Provider	Purpose	Expiry
`_ga`	Google Analytics 4	Distinguishes unique visitors using a randomly generated client ID	2 years
`_ga_[ID]`	Google Analytics 4	Stores and counts page views for the current session	2 years
`_gid`	Google Analytics	Distinguishes users within a 24-hour period	24 hours

When analytics cookies are active, IP addresses are anonymized before transmission to Google per GA4's default settings.

2.3 Payment Cookies

Stripe.js is loaded on billing-related pages (checkout and billing portal). These cookies are set by Stripe only when you navigate to a billing page.

Name	Provider	Purpose	Expiry
`__stripe_mid`	Stripe	Fraud detection — device/browser identifier	1 year
`__stripe_sid`	Stripe	Fraud detection — session identifier	30 minutes

3. What We Do Not Use

We do not set or permit:

Advertising or behavioral retargeting cookies — we do not run ad networks or retargeting pixels.
Cross-site tracking pixels — we do not embed third-party tracking pixels that follow you across websites.
Social media cookies — we do not embed social sharing widgets that set persistent cookies.
Browser fingerprinting — we do not use fingerprinting scripts for tracking purposes.

4. How to Manage Cookies

4.1 Plugin Analytics Opt-Out

To stop analytics cookies from being set:

Go to Indexation → Settings in your WordPress admin.
Uncheck "Help improve the software by sharing anonymous usage data with the developers".
Save settings.

4.2 Browser Settings

You can configure your browser to block or delete cookies. Note that blocking strictly necessary cookies will prevent you from signing in to app.auctollo.com.

Chrome: Settings → Privacy and security → Cookies and other site data
Firefox: Settings → Privacy & Security → Cookies and Site Data
Safari: Preferences → Privacy → Manage Website Data
Edge: Settings → Cookies and site permissions

4.3 Google Analytics Opt-Out

To opt out of Google Analytics across all websites, install the Google Analytics Opt-Out Browser Add-on.

5. Changes to This Policy

We may update this Cookie Policy to reflect changes in our practices or applicable law. We will update the "Last updated" date at the top of this page. For material changes, we will notify you via email or a dashboard notice.

Cookie questions: privacy@auctollo.com
W3 EDGE, LLC d/b/a Auctollo