<!-- STARTING-POINT TEMPLATE — NOT LEGAL ADVICE. Reflects Verbadiem's actual cookie footprint as of writing. Items marked [PLACEHOLDER] must be replaced before this is suitable for publishing. This document is the cookie-specific expansion of section 5 of the Privacy Policy. -->
Cookie Policy
Last updated: [PLACEHOLDER — e.g. May 24, 2026]
This Cookie Policy explains what cookies and similar tracking technologies are used on verbadiem.com and any related Verbadiem products and services (the "Service"), what each one does, and the choices you have. It expands on section 5 of our Privacy Policy.
1. What are cookies?
Cookies are small text files that a website places on your device when you visit. They let the site remember things between page loads — for example, that you're logged in, or which language you last looked at. Some cookies expire when you close your browser ("session cookies"), others persist across visits ("persistent cookies").
Web beacons (sometimes called tracking pixels or clear GIFs) are tiny invisible images embedded in pages or emails that signal back to a server when they load. They're commonly used to count email opens or page views.
2. Cookies Verbadiem sets
We use a small number of first-party cookies — set by verbadiem.com itself — to operate the Service. All of these are considered strictly necessary or functional under common privacy frameworks (GDPR, CCPA, ePrivacy). We do not set any third-party advertising, analytics, or social-media tracking cookies on the Service.
| Cookie | Purpose | Category | Lifetime |
|---|---|---|---|
| sb_at | Supabase access token — keeps you signed in across requests. | Strictly necessary (authentication) | Session + short refresh window |
| sb_rt | Supabase refresh token — used to renew your session without making you sign in again. | Strictly necessary (authentication) | ~30 days |
| admin_session | Authenticates administrative dashboard access. Only ever set for admin users. | Strictly necessary (authentication) | ~30 days |
| view_lang | Remembers which language you last viewed on the home page so you land on it next time. | Functional (user preference) | 1 year |
These cookies are essential or genuinely useful for the parts of the Service you've chosen to use. We do not need your separate consent to set them under most privacy frameworks; you can still disable them through your browser settings (see section 5).
3. Cookies set by third parties (during specific flows)
When you use certain features, third-party services may set their own cookies on their own domains. We do not control these cookies — they're governed by the third party's own privacy and cookie policies.
| Service | When it applies | Where the cookie is set | Their policy |
|---|---|---|---|
| Stripe | When you complete a payment via our checkout flow | checkout.stripe.com (and related Stripe domains) — used for fraud detection and Checkout session management | stripe.com/cookies-policy/legal |
If you do not interact with these flows, these cookies are not set.
4. Web beacons
We do not use web beacons on the Service itself — there are no analytics pixels, advertising pixels, or social-media tracking pixels on any page of verbadiem.com.
Email tracking: the daily-word emails we send through Resend may include a small open-tracking pixel and click-tracking redirects, used to monitor email deliverability and engagement. We do not use this data for advertising or to build behavioral profiles. You can prevent open tracking by configuring your email client to block remote images (most clients do this by default for unknown senders), and you can opt out of all non-essential email at any time using the unsubscribe link in every email footer or via your account settings.
5. Your choices
5.1 Browser settings
You can configure your browser to block or delete cookies. Major browsers offer per-site and global controls:
- Chrome — support.google.com/chrome/answer/95647
- Firefox — support.mozilla.org/kb/cookies-information-websites-store-on-your-computer
- Safari — support.apple.com/guide/safari/manage-cookies-sfri11471
- Edge — support.microsoft.com/microsoft-edge
Heads-up: if you block our strictly-necessary authentication cookies, you won't be able to sign in or stay signed in. Blocking only the view_lang functional cookie is safe — the Service will still work, you just won't be remembered between visits.
5.2 Email tracking
To stop email open/click tracking specifically, either disable image loading in your email client or unsubscribe from non-essential emails using the link in any email footer.
5.3 "Do Not Track" signals
Some browsers send a "Do Not Track" (DNT) signal with each request. There is no consistent industry standard for how websites should respond to DNT, so Verbadiem does not currently change its behavior based on this signal. Because we do not run any third-party analytics or advertising tracking, the practical impact of DNT on Verbadiem is minimal.
6. Changes to this Policy
We may update this Cookie Policy from time to time — for example, if we add a new feature that requires a new cookie, or remove one we no longer need. The "Last updated" date above indicates when the most recent changes were made. Material changes will also be reflected in our Privacy Policy.
7. Contact
Questions about cookies or this Policy?
Verbadiem [PLACEHOLDER — Street Address] [PLACEHOLDER — City, State ZIP] [PLACEHOLDER — Country] Email: support@verbadiem.com