Cookie Policy
Last updated: June 2026
1. What Are Cookies?
Cookies are small text files placed on your device by a website. They are widely used to make websites work efficiently and to provide information to the site owner. This policy explains how AdLeak Shield uses cookies and similar technologies on www.adleakshield.com.
This policy does not cover cookies set by third-party websites you link to from the dashboard, or cookies set by the AdLeak Shield tracking snippet on your website — the snippet does not set any cookies on your visitors' browsers.
2. Cookies We Use
2.1 Strictly Necessary Cookies
These cookies are essential for the Service to function. They cannot be disabled. No consent is required for these cookies under UK PECR / EU ePrivacy rules.
| Cookie | Purpose | Duration |
|---|---|---|
| next-auth.session-token | Authenticates your login session. Removed when you sign out or it expires. | Session / 30 days |
| next-auth.csrf-token | Prevents cross-site request forgery attacks on auth requests. | Session |
| next-auth.callback-url | Remembers where to redirect you after login. | Session |
| als_imp | Used internally by admin accounts only for account impersonation (support tool). httpOnly — not accessible to JavaScript. | 2 hours |
2.2 Analytics and Performance
We use Umami Analytics on our public marketing pages to understand how visitors find and use the website (page views, referrer, browser, device type). Umami is self-hosted on our own infrastructure and is cookieless by design — it does not set any cookies on your device and does not track you across websites. All data is anonymised and aggregated. No consent banner is required because no cookies or persistent identifiers are used.
| Service | Purpose | Cookies set |
|---|---|---|
| Umami Analytics (self-hosted) | Anonymised page view and referrer tracking on public marketing pages only | None |
2.3 Marketing and Retargeting Cookies
Coming soon
We may use marketing cookies on our public-facing website in the future (e.g. Google Ads conversion tracking, retargeting pixels). When we do, we will update this policy and obtain your consent before setting any such cookies.
3. Third-Party Cookies
Some pages may cause third-party services to set their own cookies. Currently:
| Service | Context | More Info |
|---|---|---|
| Stripe | Stripe may set cookies when you visit the payment or billing portal pages. | stripe.com/gb/privacy |
4. Managing Cookies
You can control and delete cookies through your browser settings. Deleting or blocking the strictly necessary cookies will prevent you from logging in to AdLeak Shield.
Instructions for common browsers:
Our current analytics (Umami) are cookieless and require no action from you. If we introduce optional marketing cookies in the future, a cookie banner will appear allowing you to accept or decline them before any such cookies are set.
5. Note for AdLeak Shield Users — Your Own Website
The AdLeak Shield tracking snippet you install on your website does not set any cookies on your visitors' browsers. It reads URL parameters (keyword, campaign ID, device type) and may use browser sessionStorage to maintain session continuity. It does not write to localStorage or set any first-party or third-party cookies.
However, as the website operator, you are still the data controller for data collected about your visitors. Please see Section 6 of our Terms of Service and our Privacy Policy for your obligations regarding visitor disclosure and consent.
6. Changes to This Policy
We will update this policy before introducing any new categories of cookie. The "Last updated" date at the top of this page reflects the most recent revision.
7. Contact
For any questions about our use of cookies: info@adleakshield.com