Cookie Policy

Last updated: May 2026

What cookies we use

CompAeros uses a minimal set of cookies, all essential to the operation of the platform:

Authentication session cookie

Name: __session (or similar). Purpose: maintains your signed-in state after authenticating with Google or email/password. Duration: session-length, expires when you sign out or after 30 days of inactivity. Required: yes — the platform cannot function without it for authenticated features.

CSRF token cookie

Name: __csrf. Purpose: protects state-mutating actions (form submissions, deal room updates) from cross-site request forgery attacks. Duration: session-length. Required: yes for security.

Cookie consent preference

Name: compaeros_consent. Purpose: remembers whether you have seen and responded to the cookie consent banner. Duration: 12 months. Required: yes, to avoid showing the banner on every page visit.

What we do not use

We do not currently use advertising cookies, third-party tracking cookies, or persistent analytics cookies beyond Cloudflare's platform-level analytics (which are aggregate and do not identify individuals).

Managing cookies

You can control cookies through your browser settings. Blocking the authentication session cookie will prevent sign-in. Blocking the CSRF cookie may cause form submissions to fail. All other cookies on this platform are optional from a functionality perspective.

Changes

If we introduce new cookies, we will update this policy and re-display the consent banner where consent is required.