Cookie Policy
Last Updated: December 23, 2025
Signupkit is operated by Elementra LLC, a company registered in Delaware, USA ("we," "our," or "us"). This Cookie Policy explains how we use cookies and similar technologies (such as local storage) on our website and platform (the "Service") at signupkit.co. It should be read alongside our Privacy Policy.
What Are Cookies?
Cookies are small text files placed on your device when you visit a website. They help websites function efficiently and provide information to owners.
How We Use Cookies
We use cookies and similar technologies to:
- Authenticate and secure your account
- Maintain your login session
- Remember your preferences for enhanced experience
- Analyze usage to improve the Service (via Datafast)
Types of Cookies We Use
Strictly Necessary Cookies
These are essential for core functionality (e.g., logging in, security). They cannot be disabled via our settings, as the Service requires them. No consent needed under EU law, but you can manage via browser (may impair functionality).
| Name | Purpose | Duration | Provider |
|---|---|---|---|
| better-auth.session_token or __Secure-better-auth.session_token | Maintains login session and authenticates identity | 30 days | Signupkit (First-party, HTTP-only, Secure) |
| Cookie Cache (internal) | Caches session for performance/security | 30 days | Signupkit (First-party) |
Functional/Preference Cookies
These remember your choices for personalized features (not essential for basic use).
| Name | Purpose | Duration | Provider | Consent Required? |
|---|---|---|---|---|
| sidebar_state | Remembers sidebar open/closed in dashboard | 7 days | Signupkit (First-party) | Yes (non-essential) |
Analytics Cookies (Third-Party)
We use Datafast for usage analytics to improve the Service (e.g., traffic patterns, feature usage).
- Provider: Datafast (datafa.st)
- Purpose: Collect anonymized/non-personal data (e.g., visitor behavior, IPs via cookies) for insights
- Duration: Varies (typically session or persistent)
- Type: First-party cookies set via Datafast script
- Consent Required?: Yes (non-essential analytics)
See Datafast's privacy details in their policy. We do not use advertising/marketing cookies.
Other Third-Party Cookies
- Stripe (payments): Fraud prevention, preferences (stripe.com domain).
- Google (OAuth login): Authentication/consent (google.com domain).
These are set only during relevant actions and controlled by those providers (subject to their policies).
Consent and Management
For EU/EEA visitors, we display a cookie consent banner on first visit (and as needed) to obtain your informed consent before setting non-essential cookies (functional/analytics/third-party). Strictly necessary cookies set without consent.
- Accept/Reject: Granular choices (e.g., accept all, reject non-essentials).
- Withdraw: Re-open banner via footer link or delete cookies in browser.
- No banner if only essentials: But we use non-essentials → banner shown.
You can also manage via browser settings (may limit functionality):
- Chrome: Settings > Privacy > Cookies
- Firefox: Options > Privacy > Cookies
- Etc.
Blocking all cookies may prevent login or full use.
Security, Duration, and Updates
- Our cookies use Secure/HTTP-only/SameSite attributes where possible.
- Durations: As listed (session = browser close; persistent = fixed period).
- We may update this policy; material changes posted here (and via banner if needed).
Your Rights and Contact
Under GDPR/ePrivacy, you can access info, object, or complain to a supervisory authority.
Questions: hello@elementra.io or signupkit.co.
Links: Privacy Policy | Terms of Service.