Cookie policy

What we use

• Strictly necessary cookies to keep sessions secure and route authenticated requests.
• Functional preference cookies to remember language and interface settings.
• Short-lived security cookies during OAuth flows to verify provider callback state.
• Local storage entries for non-essential interface preferences on supported features.

Cookies set by Ichimai

• ichimai_locale: stores language preference (English or Italian).
• sidebar_state: stores dashboard sidebar open/collapsed preference for 7 days.
• quote_generate_complex_mode: stores quote editor mode preference for up to 1 year.
• procedure-sources-sort: stores sorting preference in knowledgebase sources for up to 1 year.
• xero_oauth_state, notion_oauth_state, google_drive_oauth_state, onedrive_oauth_state: short-lived security cookies (about 10 minutes) used during OAuth sign-in handshakes.

Third-party technologies

• Google reCAPTCHA is used on early access forms to reduce automated abuse and may set cookies under Google domains.
• Supabase authentication and session handling may set security cookies required for login and protected routes.

Local storage

• Theme preference is stored locally in the browser by the theme system.
• Selected quote sending behaviour can be stored as ichimai:quotes:xero-send-action.

Managing cookies

You can control or delete cookies from your browser settings. If you disable essential cookies, parts of Ichimai may not function correctly.

Policy updates

We may update this policy as features and integrations evolve. Any update will be published on this page.