Essential Cookies (Required)
These cookies and browser storage entries are necessary for the service to function:
| Storage | Purpose | Duration |
|---|
| sc_access / sc_refresh | httpOnly authentication cookies that keep you signed in and secure your session | Until logout or expiry |
| Consent and runtime storage | Stores cookie choices, essential app recovery state, and workspace loading preferences | Until changed, logout, or browser cleanup |
| Stripe cookies | Fraud prevention during checkout | Controlled by Stripe; typically minutes to 1 year depending on cookie |
You cannot disable these without breaking the service.
Preference Cookies (Optional)
When you enable preference cookies, we save your theme (light/dark), sidebar layout, and similar UI choices to localStorage so they persist across visits.
When you disable preference cookies: We use session storage only — your theme and layout choices apply during your visit but are cleared when you close the tab. We never write to long-term storage without your consent.
You can turn preference cookies on or off in Settings → Cookie Preferences.
Analytics — Tier 1: Anonymous Cookieless (No Consent Required)
We use PostHog (EU Cloud) in a privacy-minimizing mode on general marketing and firm-facing pages. This tier:
- Uses in-memory analytics only, with no analytics cookies or localStorage identifiers
- Is used to understand aggregate page and performance usage
- Respects Do Not Track (DNT) signals
- Is not used on client-facing portal pages
Legal basis: Legitimate interest, subject to applicable law and your browser privacy choices.
Analytics — Tier 2: Full Analytics (Analytics Consent Required)
When you grant analytics consent, we upgrade to identified mode, which additionally:
- May store analytics identifiers in cookies or browser storage
- Enables Sentry diagnostic replay on selected firm-facing pages
- Links usage events to your account (authenticated users only) to understand feature adoption
| Cookie / Storage | Purpose | Duration |
|---|
| Analytics identifiers | Used for analytics across visits after you consent | Up to 1 year, unless cleared earlier |
If you revoke analytics consent, we immediately stop diagnostic replay, delete the stored analytics cookie/localStorage entry, and revert to Tier 1 cookieless mode. You can manage this in Settings → Cookie Preferences.
Sentry Session Replay (analytics consent required): When analytics consent is granted, Sentry may record sessions on selected firm-facing pages to assist with error diagnosis. Replay masks all text and inputs, blocks media, strips sensitive request details, and is not used on sensitive product areas such as client portals, checkout, signed documents, files, compliance tools, or client records. Revoking analytics consent disables Sentry Session Replay.
In both tiers we never track: personal information, activity across other websites, precise location, form values, or any client financial data.