Legal
Cookie Policy
Last updated: April 20, 2026
This is a plain-language summary, not individualized legal advice. Consult a lawyer for your situation.
Mimicly uses a small, focused set of cookies. We do not run advertising, do not use analytics that build profiles across sites, and do not share cookie data with marketing networks. This page tells you exactly what we set and why.
1. What cookies are
Cookies are small text files saved in your browser by a website. They let the site remember short pieces of information — for example, that you are signed in — across page loads. Some cookies expire when you close the tab (session cookies); others last for a set period (persistent cookies).
2. Categories we use
- Strictly necessary: required for the site to function — signing you in, protecting the service from automated abuse. These cannot be disabled without breaking the app.
- Preferences: remember small choices you have made, such as whether you have already accepted this policy.
We do not use marketing, advertising, or cross-site tracking cookies.
3. The exact cookies we set
| Name | Category | Purpose | Duration |
|---|---|---|---|
| next-auth.session-token | Strictly necessary | Keeps you signed in between page loads. Set by our authentication layer after successful login via Google or email + password. | 30 days, or until you sign out |
| mimicly.consent | Preferences | Records that you have seen and acknowledged the cookie banner, so we do not show it again. | 12 months |
| cf_challenge / __cf_bm | Strictly necessary | Cloudflare Turnstile bot-check. Issued by Cloudflare while verifying that a sign-up or sign-in request is coming from a real browser. | Short-lived (session to ~30 minutes) |
4. Third parties
The Cloudflare Turnstile cookie is set by Cloudflare on our behalf to prevent automated abuse. Cloudflare acts as our processor for this limited purpose. No other third party sets cookies through Mimicly. Payment flows happen on the payment processor's own domain: Lemon Squeezy Checkout (see Lemon Squeezy's privacy policy) for new web purchases, or, for customers who subscribed before April 2026, Stripe Checkout (see Stripe's privacy policy).
5. Controlling cookies
Because we do not use non-essential tracking, there is little to opt out of. You can still clear cookies from your browser's settings at any time; doing so will sign you out. Browsers let you block cookies entirely, but Mimicly will not function correctly without the session cookie.
6. Changes
If we add new cookies, we will update this page and the “Last updated” date. If the new cookies are not strictly necessary, we will ask for your consent first.
7. Contact
Questions? Email info@mimicly.net. See also our Privacy Policy.