1. What they are
Cookies are small text files your browser stores for a site. Some expire when you close the tab, some stick around until you delete them or they time out. We also use browser localStorage for the same purposes — everything here applies to both.
2. The four categories
Necessary — always on
Let you log in, stay logged in, and protect against CSRF attacks. If these are blocked, the product stops working.
| Name | Purpose | Expiry |
|---|---|---|
sb-* | Supabase auth session cookies. | Session + refresh |
kh-cookie-consent (localStorage) | Remembers your cookie choices so we don't nag. | 12 months |
Functional — optional
Remembers in-product UI preferences (theme, dismissed banners, last-opened tab). Turning these off doesn't break anything but you'll see more defaults.
Analytics — optional
Anonymized visit counts and feature usage, sent to a privacy-respecting analytics provider (no IP logging, no fingerprinting, no cross-site tracking). We use them to know which pages are confusing and which features ship dead.
Marketing — none today
We don't run retargeting pixels (Meta, LinkedIn Insight, TikTok, etc.) and we don't share data with ad networks. If we ever turn one on we'll re-show the consent banner and add it here.
3. Managing your choices
The banner you saw on first visit has Accept all / Necessary only / Customize. You can re-open it anytime by clearing kh-cookie-consentfrom your browser's site data panel, or by emailing privacy@knockhaus.app.
Most browsers let you block cookies globally or per-site. Blocking necessary cookies will log you out.
4. Do Not Track
We honor the browser-level Do Not Track signal for optional analytics — if your browser sends DNT=1 we treat it as a “Necessary only” choice.
5. Changes
When we add or remove a cookie, we'll update this page and bump the last-updated date at the top. Substantial changes trigger a fresh consent prompt.