← Back to TinSuite
Cookie Policy
Last updated: April 28, 2026
What we use
TinSuite uses cookies (and similar local storage) for three reasons:
Required
Strictly necessary
Login session (JWT in localStorage), CSRF tokens, fraud detection. Without these the app can't work.
Optional
Analytics
Anonymous product usage telemetry. Helps us understand which features matter. Plausible-style — no cross-site tracking.
Optional
Marketing
Personalized re-targeting ads about TinSuite on other sites you visit. Off by default.
Specific cookies we set
accessToken— short-lived JWT (15 min). Necessary.refreshToken— refresh JWT (7 days). Necessary.tin-cookie-consent— your consent choice. Necessary.tin-locale— UI language preference. Necessary.tin-workspace— current workspace context. Necessary._pl_*— Plausible analytics (only if you've opted in). Analytics.
Third-party processors
Some cookies are set by sub-processors we use to deliver the service:
- Stripe — payment processing (when you pay, or look at invoices)
- Plaid — bank connection (when you connect a bank account)
- Resend — transactional email delivery (no cookies, server-side only)
How long do cookies last?
- Session: removed when you close the browser
- Login refresh token: 7 days from last sign-in
- Consent preference: 12 months, then we ask again
Managing cookies in your browser
You can also block or delete cookies via your browser settings. Note that strictly necessary cookies are required — without them you won't be able to sign in.
Update your preferences
Your current consent has not been recorded yet.