Cookie Policy

Last updated: May 7, 2026

Cookies are small text files a website stores in your browser. We use them sparingly and only for two purposes: keeping you signed in, and (with your permission) understanding how iDesign Platform is used.

The cookies we set

Strictly necessary

These run regardless of your consent because the product can't function without them.

• Session cookie — set by NextAuth. Keeps you signed in across pages. Expires when your session ends or you sign out.
• CSRF token — set by NextAuth. Protects sign-in and account actions from cross-site request forgery.

Analytics (optional, opt-in)

Only set if you click "Accept" on the cookie banner.

• PostHog — anonymous product analytics. Helps us see which tools get used, where people get stuck, and where to invest. Stored in a first-party cookie + localStorage.

Third-party (during checkout only)

• Stripe — when you proceed to checkout, Stripe sets cookies on its own domain to process payment securely and prevent fraud. We don't see or control these.

Local storage (not cookies, but related)

We store your cookie consent decision (idesign.consent) in your browser's localStorage so we don't ask again. Clearing your site data resets this.

Your choices

• Decline analytics — click "Decline" on the banner. The product works the same; we just don't see usage data from your sessions.
• Change your mind — clear your browser data for this site to make the banner reappear.
• Block all cookies — your browser settings let you do this. Note that blocking the strictly-necessary ones will prevent sign-in.

Do Not Track

We respect the browser's "Do Not Track" signal where one is present — analytics is suppressed regardless of your banner choice.

Contact

Questions? Email privacy@idesignplatform.com.