Cookie Policy
Last updated: [DATE]
PLACEHOLDER: Replace with a policy that matches the cookies your deployment actually sets. The boilerplate's defaults are listed below as a starting inventory.
1. What cookies we set
Out of the box, MCP Gateway sets strictly necessary cookies only:
- Session cookie — keeps you signed in. Essential; expires with your session.
- CSRF token — protects forms against cross-site request forgery. Essential.
The bundled PostHog analytics snippet uses memory-only persistence and sets no cookies. Cloudflare Turnstile may set its own cookies on authentication forms — check Cloudflare's documentation for specifics.
2. Analytics and marketing cookies
If you add analytics or advertising tags that set cookies, list them here with their purpose, provider, and lifetime — and add a consent mechanism where your jurisdictions require one.
3. Managing cookies
Explain how visitors can control cookies through their browser and what breaks without the essential ones.
Contact
Questions about this policy: privacy@mcp.agentic-accounting.com