Cookie Policy
Last updated: March 2026
1. What are cookies?
Cookies are small text files placed on your device when you visit a website. They are widely used to make websites work efficiently and to provide information to the website operator. LexVault uses cookies and similar technologies to operate the Service and to understand how users interact with it.
2. Types of cookies we use
These cookies are essential for the Service to function. They enable core features such as authentication (keeping you logged in), session management, and security. You cannot opt out of these cookies.
| Cookie name | Purpose | Duration |
|---|---|---|
| sb-access-token | Supabase authentication session token | Session |
| sb-refresh-token | Supabase authentication refresh token | 7 days |
| __Host-next-auth.csrf-token | CSRF protection token | Session |
These cookies remember your preferences and settings to provide a more personalized experience — for example, your preferred sidebar state or display settings.
| Cookie name | Purpose | Duration |
|---|---|---|
| lv-sidebar-state | Remembers whether the sidebar is expanded or collapsed | 30 days |
| lv-theme | Stores your UI theme preference | 1 year |
These cookies help us understand how visitors use the Service so we can improve it. All data collected is aggregated and anonymized — we do not use analytics to identify individual users.
| Cookie name | Purpose | Duration |
|---|---|---|
| _lv_analytics | Tracks aggregated page views and feature usage | 12 months |
3. Third-party cookies
Certain features of the Service rely on third-party services that may set their own cookies. The relevant third parties include:
- Supabase — authentication cookies for session management. Governed by Supabase's Privacy Policy.
4. How to control cookies
You can control cookies through your browser settings. All major browsers allow you to block or delete cookies. Note that blocking strictly necessary cookies will prevent the Service from functioning correctly and you will not be able to log in.
5. Do Not Track and Global Privacy Control
Some browsers have a "Do Not Track" (DNT) feature that sends a signal to websites requesting that your browsing not be tracked. The Service does not currently respond to DNT signals, as there is no established industry standard for compliance.
California residents: LexVault does not currently process Global Privacy Control (GPC) signals as an opt-out of sale or sharing, because we do not sell or share personal information for cross-context behavioral advertising. We will update this policy if our practices change.
6. No sale or sharing via cookies
LexVault does not use cookies or similar tracking technologies to sell your personal information or to share it with third parties for cross-context behavioral advertising. This is consistent with our overall commitment stated in our Privacy Policy.
7. Changes to this policy
We may update this Cookie Policy from time to time. Changes will be reflected on this page with an updated "Last updated" date. We will notify you of material changes by posting a notice in the Service or by email.
8. Contact
If you have questions about our use of cookies, contact us at privacy@lexvault.legal or visit our Contact page.