Last updated: April 2026
Ava-Twin uses cookies and similar browser storage mechanisms strictly to operate the Service. We do not use advertising cookies, cross-site tracking cookies, or analytics cookies that profile users.
Cookies are small text files stored by your browser when you visit a website. They help websites remember your preferences, keep you signed in, and operate securely.
All cookies set by Ava-Twin are strictly necessary for the Service to function. We do not set any optional or tracking cookies.
| Cookie | Purpose | Duration | Type |
|---|---|---|---|
| sb-access-token | Supabase authentication session | Session | Strictly necessary |
| sb-refresh-token | Supabase authentication refresh | 30 days | Strictly necessary |
| cf_clearance | Cloudflare bot protection (Turnstile) | 30 days | Strictly necessary |
| csrf_token | Cross-site request forgery protection | Session | Strictly necessary |
In addition to cookies, Ava-Twin may use browser local storage for non-sensitive preferences.
| Key | Purpose | Persistence |
|---|---|---|
| ava-twin-theme | User theme preference (if applicable) | Persistent |
Ava-Twin does not set third-party advertising cookies. Our sub-processors (Supabase, Stripe, Vercel, Cloudflare) may set cookies for their own technical purposes (authentication, payment processing, DDoS protection). These are covered under each processor's cookie policy.
You can control cookies through your browser settings. Blocking strictly necessary cookies will prevent you from signing in and using the Service. We do not set optional cookies, so there is no cookie consent banner required.
Ava-Twin honors Do Not Track (DNT) browser signals by default — we do not conduct tracking or analytics that profile users.
This Cookie Policy may be updated as our cookie usage evolves. Material changes will be announced in our changelog and dashboard.
For general questions, email hello@ava-twin.me.
For privacy inquiries, email privacy@ava-twin.me.
For legal questions, email legal@ava-twin.me.