Cookie Policy

Last updated: June 2026

1. What Are Cookies?

Cookies are small text files placed on your device by a website. They are widely used to make websites work efficiently and to provide information to the site owner. This policy explains how AdLeak Shield uses cookies and similar technologies on www.adleakshield.com.

This policy does not cover cookies set by third-party websites you link to from the dashboard, or cookies set by the AdLeak Shield tracking snippet on your website — the snippet does not set any cookies on your visitors' browsers.

2. Cookies We Use

2.1 Strictly Necessary Cookies

These cookies are essential for the Service to function. They cannot be disabled. No consent is required for these cookies under UK PECR / EU ePrivacy rules.

CookiePurposeDuration
next-auth.session-tokenAuthenticates your login session. Removed when you sign out or it expires.Session / 30 days
next-auth.csrf-tokenPrevents cross-site request forgery attacks on auth requests.Session
next-auth.callback-urlRemembers where to redirect you after login.Session
als_impUsed internally by admin accounts only for account impersonation (support tool). httpOnly — not accessible to JavaScript.2 hours

2.2 Analytics and Performance

We use Umami Analytics on our public marketing pages to understand how visitors find and use the website (page views, referrer, browser, device type). Umami is self-hosted on our own infrastructure and is cookieless by design — it does not set any cookies on your device and does not track you across websites. All data is anonymised and aggregated. No consent banner is required because no cookies or persistent identifiers are used.

ServicePurposeCookies set
Umami Analytics (self-hosted)Anonymised page view and referrer tracking on public marketing pages onlyNone

2.3 Marketing and Retargeting Cookies

Coming soon

We may use marketing cookies on our public-facing website in the future (e.g. Google Ads conversion tracking, retargeting pixels). When we do, we will update this policy and obtain your consent before setting any such cookies.

3. Third-Party Cookies

Some pages may cause third-party services to set their own cookies. Currently:

ServiceContextMore Info
StripeStripe may set cookies when you visit the payment or billing portal pages.stripe.com/gb/privacy

4. Managing Cookies

You can control and delete cookies through your browser settings. Deleting or blocking the strictly necessary cookies will prevent you from logging in to AdLeak Shield.

Instructions for common browsers:

Our current analytics (Umami) are cookieless and require no action from you. If we introduce optional marketing cookies in the future, a cookie banner will appear allowing you to accept or decline them before any such cookies are set.

5. Note for AdLeak Shield Users — Your Own Website

The AdLeak Shield tracking snippet you install on your website does not set any cookies on your visitors' browsers. It reads URL parameters (keyword, campaign ID, device type) and may use browser sessionStorage to maintain session continuity. It does not write to localStorage or set any first-party or third-party cookies.

However, as the website operator, you are still the data controller for data collected about your visitors. Please see Section 6 of our Terms of Service and our Privacy Policy for your obligations regarding visitor disclosure and consent.

6. Changes to This Policy

We will update this policy before introducing any new categories of cookie. The "Last updated" date at the top of this page reflects the most recent revision.

7. Contact

For any questions about our use of cookies: info@adleakshield.com