Cookie Policy
We use only the minimum needed to run the service — no ad tracking, no Google Analytics, no retargeting. Cookie banner acceptance covers only the functional cookies listed below.
Version: 1.0
Legal basis
Cookies strictly necessary for service operation (technical) are exempt from consent under ePrivacy Directive Art. 5(3). Third-party cookies in iframes (Stripe Checkout) are subject to consent expressed at the moment of initiating payment.
Cookies / local storage list
| Name | Purpose | Lifetime | Party |
|---|---|---|---|
| NEXT_LOCALE | Language preference (PL/EN) memory | 1 year | fakesme (own) |
| authjs.session-token | Authenticated admin session | 30 days | fakesme (own) |
| authjs.csrf-token | CSRF protection at sign-in | session | fakesme (own) |
| authjs.callback-url | Magic-link return URL | session | fakesme (own) |
| fakeme-cookie-consent | Banner acceptance memory (localStorage, not a cookie) | until cleared | fakesme (own) |
| __stripe_mid, __stripe_sid | Stripe Checkout anti-fraud (only during payment iframe) | 1 year / 30 min | Stripe (third-party) |
Third parties
Payments: Stripe (stripe.com) — own cookie policy at https://stripe.com/cookies-policy/legal. Hosting: Vercel — no third-party cookies at runtime. Transactional email: Resend — no cookies (we do not use tracking pixels in emails).
How to manage cookies
Functional cookies (admin session, language) are required for the service to work — without them sign-in and language switching will fail. Stripe cookies appear only after you click the payment button (before clicking they do not exist). You can always clear them in your browser privacy settings.
Contact
Cookie questions: kontakt@fakesme.com.