cookie settings
we will never sell you ads and we are working hard to compete with those who do
manage your preferences
control what data we collect and how it's used. your choices are saved locally and respected across all our services.
what we track
transparency is important. here's exactly what each category means.
essential
required for the site to function. includes authentication, session management, and security features. cannot be disabled.
personalization
remembers your preferences like theme, language, and ui customizations. helps us provide a better experience.
analytics
helps us understand how you use doobls so we can improve. all data is anonymized and never sold.
cookies we set
every cookie and its purpose, listed transparently.
essential cookies
| name | duration | purpose |
|---|---|---|
| app-session | 7 days | encrypted session token containing your user and workspace id. http-only, secure. |
| workspace-slug | 1 day | stores the current workspace subdomain for multi-tenant routing. |
| hanko | session | authentication token set by hanko (our passwordless auth provider). http-only. |
| sidebar:state | 7 days | remembers whether your sidebar is expanded or collapsed. |
personalization (local storage)
| key | duration | purpose |
|---|---|---|
| doobls_cookie_preferences | persistent | your cookie consent choices (this page). |
| doobls:client-id | persistent | anonymous browser identifier for guest sessions. |
| doobls:workspace-id | persistent | your current workspace context. |
| doobls:chat-history | persistent | guest chat messages (cleared on login or manually). |
analytics
| service | cookies | purpose | consent |
|---|---|---|---|
| posthog | ph_* | session recording and event tracking. only active when you enable analytics. | required |
| plausible | none | privacy-first page view analytics. cookie-free by design, gdpr-compliant without consent. | not needed |
third-party services
external services embedded on our pages that may set their own cookies.
| service | purpose | cookies |
|---|---|---|
| hanko | passwordless authentication (passkeys, email login) | session token (essential, http-only) |
| cloudflare turnstile | captcha verification to prevent abuse | challenge tokens (essential, short-lived) |
| cal.com | meeting booking widget (embedded on some pages) | session cookies when interacting with the calendar |
| open-meteo / geojs | approximate location and weather for contextual agent responses | none (api calls only, no cookies) |
our privacy commitment
what we promise
- we will never sell your data to third parties
- we will never show you targeted ads
- all data is encrypted at rest (aes-256-gcm)
- eu-sovereign infrastructure (data never leaves europe)
- gdpr compliant with full data portability
- you can delete all your data at any time
for more details, see our privacy policy.