Cookie Policy
Effective date: March 17, 2026
1. What Are Cookies?
Cookies are small text files placed on your device by a website. We also use browser local storage — a similar mechanism that stores data locally on your device but is not sent to our servers on every request. This policy covers both.
2. Strictly Necessary — Cookies
These are required for the Service to work correctly. You cannot opt out without losing core functionality such as staying signed in.
| Cookie name | Purpose | Duration |
|---|---|---|
auth_present | A lightweight flag (contains no personal data) that tells our server-side routing whether you have an active session. The actual authentication token is stored only in your browser's local storage, not in a cookie. | 7 days |
3. Strictly Necessary — Local Storage
The following items are stored in your browser's local storage. They never leave your device except as part of normal API requests to our servers.
| Key | Purpose | Duration |
|---|---|---|
token | Your JSON Web Token (JWT) authentication credential. Used to authorise API requests without requiring you to log in on every page. The token expires after 7 days. | 7 days |
theme | Stores your light/dark mode preference so the correct theme loads instantly on your next visit without a flash of the wrong colour scheme. | Persistent (until cleared) |
4. Analytics Cookies (Google Analytics)
We use Google Analytics 4 to understand how visitors interact with the site — for example, which features are used most and where users encounter errors. The data is aggregated and does not identify you personally.
| Cookie name | Purpose | Duration |
|---|---|---|
_ga | Registers a unique identifier used to generate statistical data on how you use the site. | 2 years |
_ga_* | Used by Google Analytics 4 to persist session state across page views. | 2 years |
Google Analytics is operated by Google LLC and is subject to Google's Privacy Policy. You can opt out of Google Analytics tracking across all websites by installing the Google Analytics Opt-out Browser Add-on.
5. Third-Party Authentication Cookies
If you choose to sign in using Google or GitHub OAuth, those providers set their own cookies on their respective domains (accounts.google.com, github.com) as part of their authentication process. We have no control over these cookies. Please refer to Google's Privacy Policy and GitHub's Privacy Statement for details.
6. What We Do Not Use
We do not use:
- Advertising or tracking cookies from ad networks.
- Cross-site tracking technologies.
- Cookies that share your data with data brokers.
- Fingerprinting or other persistent device identification techniques.
7. Managing Cookies and Local Storage
Cookies: You can view, block, or delete cookies through your browser settings. Note that blocking the auth_present cookie will not prevent you from using the Service (your session is maintained via local storage), but may affect server-side route protection behaviour.
Local storage: You can clear local storage through your browser's developer tools (Application → Local Storage → jobtools.io → Clear). This will sign you out and reset your theme preference.
Guidance for common browsers:
8. Changes to This Policy
We will update this policy if we add or remove cookies or local storage keys. The effective date at the top of this page reflects the date of the most recent revision.
9. Contact
Questions about this policy? Email support@jobtools.io.