Cookie Policy
Last updated 6 May 2026. Strictly-necessary cookies only by default. No advertising, no cross-site tracking — ever.
1. What cookies are
Cookies are small text files placed on your device by the websites you visit. They are widely used to make websites work or work more efficiently, and to provide information to the operators of the site. We treat localStorage and sessionStorage entries used by Yoetz.ai with the same standards as cookies.
2. Our default position
By default, Yoetz.ai sets only strictly-necessary cookies that you cannot turn off without breaking the Service (login, security, billing fraud prevention). We do not use advertising cookies, cross-site tracking pixels, social media tracking, or third-party data brokers — anywhere on this site or in the dashboard.
3. Optional cookies
Where the cookie banner offers it, you can opt in to first-party, IP-anonymised analytics that help us understand which features are used and where users get stuck. These cookies are not shared with any third party. You can change your choice at any time by clicking "Cookie settings" in the footer.
4. Why we keep this list short
Every additional tracker is an additional way for someone other than us — and you — to learn about your use of an HR audit tool. We deliberately reject the industry-standard advertising stack to protect both our customers and the workers whose data lives in the tenants we audit.
5. Doing Not Track / Global Privacy Control
We honour the Global Privacy Control (Sec-GPC: 1) and DNT browser signals as a binding opt-out from any non-essential cookies, even before you interact with the banner.
6. Changing your mind
You can clear cookies from your browser at any time. You can revoke optional analytics consent from the Cookie Settings link in the footer. Disabling strictly-necessary cookies will prevent you from logging in.
7. Contact
Cookie questions: privacy@yoetz.ai.
Cookies in use
Every cookie Yoetz.ai may set on your device — what it does, how long it lives, and who runs it.
| Name | Type | Purpose | Duration | Provider |
|---|---|---|---|---|
| sb-access-token | Strictly necessary | Keeps you signed in to your Yoetz.ai dashboard. | Session / 1 hour rolling refresh | Yoetz.ai (first-party) |
| sb-refresh-token | Strictly necessary | Refreshes your session without forcing a re-login. | 30 days | Yoetz.ai (first-party) |
| yoetz_consent | Strictly necessary | Remembers your cookie banner choice so we don't ask again. | 12 months | Yoetz.ai (first-party) |
| yoetz_csrf | Strictly necessary | Protects form submissions against cross-site request forgery. | Session | Yoetz.ai (first-party) |
| __stripe_mid / __stripe_sid | Strictly necessary | Stripe fraud prevention on the billing checkout iframe. | Up to 1 year / 30 minutes | Stripe |