Cookie Policy
OnTarget Studio — by OnTarget Creators Ltd
Effective Date: 18 February 2026 Last Updated: 26 February 2026
1. Introduction
This Cookie Policy explains how OnTarget Studio ("the Service"), operated by OnTarget Creators Ltd ("OnTarget Creators", "we", "us", "our"), uses cookies and similar technologies.
This policy should be read alongside our Privacy Policy.
2. What Are Cookies?
Cookies are small text files stored on your device by your web browser. They are used to remember information about your visit, such as your login session or preferences.
Local storage is a similar technology that stores data in your browser, but unlike cookies, this data is not sent to our servers with each request.
3. Cookies We Use
We use only strictly necessary cookies and local storage. We do not use any tracking, analytics, advertising, or third-party cookies.
3.1 Authentication Cookies (Strictly Necessary)
| Cookie Name Pattern | Provider | Purpose | Duration | Type |
|---|---|---|---|---|
| `sb-*` | Supabase | Maintains your authenticated session. Without this cookie, you cannot stay logged in. | Persistent (access token ~1 hour, refresh token ~7 days, cleared on sign out) | First-party, strictly necessary |
These cookies are essential for the Service to function. They are set when you sign in with Google or Microsoft and are removed when you sign out or your session expires.
3.2 Local Storage (Functional)
| Key | Purpose | Duration | Data Stored |
|---|---|---|---|
| `theme` | Remembers your dark/light mode preference | Persistent (until cleared) | "dark" or "light" |
Local storage data never leaves your device and is not transmitted to our servers or any third party.
3.3 Session Storage (Functional)
| Key | Purpose | Duration | Data Stored |
|---|---|---|---|
| `ontarget-pending-url` | Temporarily stores navigation state during sign-in | Auto-clears after 5 minutes or on tab close | URL path |
| `ontarget-pending-type` | Temporarily stores analysis type during sign-in | Auto-clears after 5 minutes or on tab close | Analysis type string |
| `ontarget-pending-analysis` | Temporarily stores pending analysis data during sign-in | Auto-clears after 5 minutes or on tab close | Analysis configuration |
| `outlier_privacy_seen` | Records that you have seen the Outlier privacy notice | Session (cleared on tab close) | Boolean flag |
| Session storage data never leaves your device, is not transmitted to our servers, and is automatically cleared when you close the browser tab. |
YouTube OAuth Cookies
| Cookie | Purpose | Duration | Data Stored |
|---|---|---|---|
| `youtube_oauth_state` | CSRF protection during YouTube OAuth flow (httpOnly, secure) | 5 minutes | Encrypted state token and channel context |
This cookie is httpOnly (not accessible to JavaScript), secure (HTTPS only in production), and automatically cleared after use or after 5 minutes.
4. Cookies We Do NOT Use
OnTarget Studio does not use:
- Google Analytics or any analytics cookies
- Facebook Pixel, TikTok Pixel, or any advertising pixels
- Session recording tools (Hotjar, FullStory, LogRocket)
- Cross-site tracking cookies
- Third-party cookies of any kind
- Fingerprinting or similar tracking technologies
5. Cookie Consent
Because we only use strictly necessary cookies that are essential for the Service to function, we are exempt from the requirement to obtain cookie consent under:
- EU ePrivacy Directive (Article 5(3)) — strictly necessary cookies are exempt
- UK PECR — same exemption for strictly necessary cookies
- New Zealand Privacy Act 2020 — no specific cookie consent requirement
- Australian Privacy Act — no specific cookie consent requirement
We disclose all cookies transparently in this policy for your information.
5.1 Do Not Track
Some browsers send a "Do Not Track" (DNT) signal with web requests. Because OnTarget Studio does not use any tracking, analytics, or advertising cookies, our practices are consistent with DNT signals by default. We do not alter our data collection or use practices in response to DNT signals because we already do not track users for advertising or analytics purposes.
6. Managing Cookies
You can control cookies through your browser settings:
- Chrome: Settings > Privacy and Security > Cookies
- Firefox: Settings > Privacy & Security > Cookies
- Safari: Preferences > Privacy > Cookies
- Edge: Settings > Privacy > Cookies
Note: If you block or delete authentication cookies (`sb-*`), you will be signed out of OnTarget Studio and will need to sign in again.
Clearing local storage can be done through your browser's developer tools (Application > Local Storage).
7. Error Monitoring (Sentry)
Our error monitoring service (Sentry) may set technical identifiers for error tracking purposes in production. These are:
- Used only to group and track application errors
- Active only in the production environment
- Sampled at 10% (not all sessions are tracked)
- Not used for advertising, analytics, or user profiling
- PII (emails, user IDs, authentication tokens) is automatically scrubbed from error traces before transmission
8. Changes to This Policy
We will update this Cookie Policy if we change the cookies or similar technologies we use. Material changes will be communicated through our Privacy Policy update process.
9. Contact Us
If you have questions about this Cookie Policy:
- Email: privacy@ontargetcreators.com
- Website: ontargetcreators.com
This Cookie Policy was last reviewed on 2026-02-26.