Cookie Policy
Last updated: March 13, 2026
This Cookie Policy explains how Security Stack ("Company," "we," "us," and "our") uses cookies and similar technologies when you visit our website at https://securitystack.app ("Website"). It explains what these technologies are and why we use them, as well as your rights to control our use of them.
What are cookies?
Cookies are small data files that are placed on your computer or mobile device when you visit a website. Cookies are widely used by website owners in order to make their websites work, or to work more efficiently, as well as to provide reporting information.
Cookies set by the website owner (in this case, Security Stack) are called "first-party cookies." We only use first-party cookies. We do not use third-party cookies, advertising cookies, or analytics tracking cookies of any kind.
Why do we use cookies?
We use cookies solely for technical reasons that are strictly necessary for our Website to operate. These cookies enable core functionality such as authentication and security. The Website cannot function properly without them.
We do not use cookies to track your interests, serve advertising, or analyse your behaviour across other websites.
What cookies do we use?
The following cookies are set by Security Stack when you use the Website:
Strictly necessary cookies
These cookies are essential to provide you with services available through our Website. Because they are strictly necessary, they cannot be disabled without breaking the service.
| Name | Purpose | Provider | Type | Expires |
|---|---|---|---|---|
| sb-[ref]-auth-token | Stores your authentication session token. Keeps you logged in. Cleared when you sign out or your session expires. | securitystack.app | First-party, HTTP cookie | Session |
| sb-[ref]-auth-token-code-verifier | Security value used during the login process (PKCE flow). Automatically cleared after sign-in completes. | securitystack.app | First-party, HTTP cookie | Short-lived, auto-cleared |
| ss_csrf | Protects against cross-site request forgery attacks on form submissions. A standard web security measure. | securitystack.app | First-party, HttpOnly cookie | Session |
What about local storage?
We also use your browser's local storage to remember your sidebar preference (whether the dashboard sidebar is expanded or collapsed). This data is stored only on your device and is never transmitted to our servers. It is not a cookie and does not identify you.
Do you use advertising or analytics cookies?
No. We do not use Google Analytics, Meta Pixel, or any other third-party analytics or advertising technology. We do not serve targeted advertising and we do not share data with advertising networks.
How can I control cookies?
Because all cookies we use are strictly necessary for the Website to function, there is no cookie consent banner — these cookies are set automatically when you use the service. You can clear all cookies at any time through your browser settings, which will sign you out of your account.
For information on how to manage cookies in your browser, please visit your browser's help documentation:
How often will you update this Cookie Policy?
We may update this Cookie Policy from time to time to reflect changes to the cookies we use. If we introduce any non-essential cookies in the future, we will update this policy and implement an appropriate consent mechanism before doing so. The date at the top of this page indicates when it was last updated.
Where can I get further information?
If you have any questions about our use of cookies, please contact us at privacy@securitystack.app.