Legal
Cookie Policy
Last updated: April 27, 2025
This Cookie Policy explains what cookies are, which ones Threado uses, and what choices you have. We keep our cookie usage minimal — only what is strictly necessary to run a secure, authenticated platform.
1. What Are Cookies
Cookies are small text files that are stored on your device when you visit a website. They help websites remember information about your visit, such as your login state, preferences, and session data. Some cookies are essential for a website to function, while others are used for analytics or personalization.
2. How Threado Uses Cookies
Threado uses cookies in a minimal and privacy-respecting way. We only set cookies that are strictly necessary to operate the platform securely. We do not use advertising cookies, retargeting cookies, or any cookies that track your activity across third-party websites. The cookies we set include: • Session Cookie (next-auth.session-token): Set by our authentication system (NextAuth.js) when you log in. This cookie keeps you signed in as you navigate between pages. It expires when your session ends or after 30 days of inactivity. This cookie is strictly necessary — without it, you cannot access your dashboard. • CSRF Token Cookie (next-auth.csrf-token): A security cookie set to protect your account from cross-site request forgery attacks. It is required for authentication to work securely. • Callback URL Cookie (next-auth.callback-url): A temporary cookie that stores where to redirect you after login completes. It is deleted immediately after use.
3. Analytics
We use Umami Analytics to understand how users interact with Threado. Umami is a privacy-first, open-source analytics tool that does not use cookies and does not collect any personally identifiable information. It does not track you across websites and is fully compliant with GDPR, CCPA, and PECR without requiring a cookie consent banner.
4. Third-Party Cookies
Threado does not embed third-party advertising or social media widgets that set cookies. The third-party services we use (listed below) may set their own cookies when you interact with them directly, but they are not injected into Threado pages: • Freemius (billing): Sets cookies only on the Freemius-hosted checkout page, not on threado.app. • Meta Threads API: Operates server-to-server and does not set cookies on our platform.
5. Your Cookie Choices
Because the cookies Threado sets are strictly necessary for the platform to function, they cannot be disabled without breaking your ability to log in and use the service. You can manage or delete cookies through your browser settings: • Chrome: Settings → Privacy and Security → Cookies and other site data • Firefox: Settings → Privacy & Security → Cookies and Site Data • Safari: Preferences → Privacy → Manage Website Data • Edge: Settings → Cookies and site permissions Please note that clearing cookies will log you out of Threado and you will need to sign in again.
6. Cookie Consent Banner
We display a cookie notice on your first visit to inform you about our use of strictly necessary cookies. By continuing to use Threado, you acknowledge this use. Because we do not use optional, tracking, or advertising cookies, we do not require an opt-in consent mechanism under most privacy regulations.
7. Changes to This Policy
We may update this Cookie Policy as our technology or legal requirements change. We will update the "Last Updated" date at the top of this page when changes are made. We encourage you to review this page periodically.
8. Contact Us
If you have questions about how we use cookies, please contact us at: support@threado.app
Cookie Summary
| Name | Purpose | Type | Duration |
|---|---|---|---|
| next-auth.session-token | Keeps you logged in | Strictly Necessary | 30 days |
| next-auth.csrf-token | CSRF protection | Strictly Necessary | Session |
| next-auth.callback-url | Post-login redirect | Strictly Necessary | Session |