Skip to main content

PostLane

ProductPricingDownloadDocs
Sign inGet started

legal/cookies — postlane.dev

Last updated 22 June 2026

Cookies

A short, honest account of every cookie we set. Spoiler: there are very few, and none of them track you.

§ 01

Overview

We use cookies only where necessary for the service to work. We do not use advertising cookies, cross-site tracking cookies, or cookies that build a profile of your behaviour across the web.

Public-facing marketing pages (those you can view without signing in) set no cookies at all. Cookies are only set when you sign in or when Cloudflare Turnstile runs on the sign-in page.

§ 02

Cookies we set

The following cookies may be present in your browser when you use postlane.dev:

Name

Purpose

Duration

Third party?

sb-<ref>-auth-token

Keeps you signed in to postlane.dev. Set by Supabase on successful login. Contains your encrypted session token.

Session / up to 7 days

No — first party (Supabase-managed, self-hosted on our domain)

postlane-pending-token

Holds a short-lived activation token while the desktop app completes sign-in. Deleted immediately after activation.

5 minutes

No — first party

postlane-desktop-port

Stores the local port the desktop app is listening on, used to complete the OAuth callback without requiring manual input.

Session

No — first party

cf_clearance / __cf_bm

Cloudflare Turnstile anti-bot cookie, set on the sign-in page only. Contains no personal data.

Up to 30 minutes

Yes — Cloudflare (see /subprocessors)

§ 03

Analytics

We use a self-hosted instance of Plausible Analytics at plausible.postlane.dev to understand aggregate site traffic. Plausible does not use cookies, does not track individuals across sessions or sites, and does not share data with any third party.

The data Plausible collects is aggregated and anonymous: page views, referral sources, country of origin (derived from anonymised IP), and browser type. No personal information is stored.

§ 04

How to control cookies

You can control cookies through your browser settings. Most browsers allow you to block, delete, or receive warnings before accepting cookies.

  • Blocking essential cookies will prevent you from signing in to postlane.dev.

  • Blocking Cloudflare’s cookie may cause the sign-in page to repeatedly show the bot-detection challenge.

  • Blocking all cookies will not prevent you from reading marketing pages, docs, or this policy.

Browser-specific instructions: Chrome · Firefox · Safari.

§ 05

Updates to this policy

We will update this page if we add, remove, or change any cookies. The date at the top of the page reflects the last update. For significant changes, we will post a note in our changelog.

§ 06

Contact

If you have questions about our use of cookies or wish to exercise your rights under the UK GDPR, please contact us. You can also read our full privacy policy.

Questions about cookies?

We respond to privacy enquiries within one business day.

Contact us →