Cookies Policy
Last updated: 11 March 2026
What cookies we use
CraftCert uses essential cookies only — no advertising, no tracking, and no third-party marketing cookies.
Authentication cookies (Supabase)
When you sign in, Supabase sets session cookies to keep you authenticated. These cookies are prefixed with sb- and are strictly necessary for the service to function. They include:
sb-*-auth-token— stores your encrypted session token. Without this cookie, you cannot remain signed in.
These cookies are first-party, secure, and httpOnly. They are not used for tracking or analytics. They expire when your session ends or after the configured session lifetime.
Payment cookies (Stripe)
When you interact with payment forms, Stripe may set cookies required for fraud prevention and payment processing. These are set by Stripe directly and are governed by Stripe's cookie policy.
Analytics — no cookies
We use GoatCounter for website analytics. GoatCounter is completely cookie-free and does not collect personal data. It provides simple, aggregate page view counts without tracking individual visitors.
Managing cookies
You can clear or block cookies through your browser settings. Note that blocking the Supabase authentication cookies will prevent you from signing in to CraftCert.
Contact
If you have any questions, please contact us at support@craftcert.co.uk.