Cookie Policy

Last updated: 5 June 2026

This policy explains what cookies Waevin uses, why we use them, and how you can manage them. We keep our use of cookies to a minimum.

What are cookies?

Cookies are small text files that a website places on your device when you visit. They are widely used to make websites work correctly, remember your preferences, and help site owners understand how their site is being used.

Cookies do not contain executable code. They cannot damage your device. Some cookies are deleted when you close your browser (session cookies); others remain until they expire or you delete them (persistent cookies).

Strictly necessary cookies

These cookies are required for the platform to function. You cannot disable them. Doing so would prevent you from logging in.

Name	Purpose	Duration
authjs.session-token	Stores your authenticated session so you remain logged in between page loads. Set by NextAuth, our authentication library. Contains an encrypted reference to your session, not your password or personal data.	30 days (refreshed on activity)
authjs.csrf-token	A security token that prevents cross-site request forgery (CSRF) attacks. Required for all form submissions and authenticated actions.	Session (deleted when browser closes)
authjs.callback-url	Records where to redirect you after login completes. Used to return you to the page you were trying to access.	Session (deleted when browser closes)
__stripe_mid	Set by Stripe for fraud detection and payment security. Required for the checkout to function. See Stripe's privacy policy for details.	1 year
__stripe_sid	Set by Stripe for session identification during payment processing. Required for checkout.	30 minutes

Functional cookies

These cookies remember your preferences to improve your experience. They can be disabled, but some features may work less smoothly.

Name	Purpose	Duration
tcga_prefs	Stores UI preferences such as your preferred listing sort order.	1 year

Analytics cookies

Waevin does not currently use any analytics cookies. We do not use Google Analytics, Mixpanel, or any other behavioural tracking service. If we introduce analytics in the future, we will update this policy and obtain consent before setting any analytics cookies.

Third-party cookies

The only third-party cookies set on Waevin are those placed by Stripe for payment processing and fraud prevention. These cookies are strictly necessary for the checkout to function securely.

Stripe

Stripe sets __stripe_mid and __stripe_sid to detect fraudulent payment activity and maintain session state during the checkout flow. Without these cookies, payments cannot be processed.

View Stripe's cookie policy

We do not use Facebook Pixel, Google Ads cookies, or any other advertising or retargeting cookies. We will not introduce these without updating this policy and seeking your consent.

How to manage cookies

You can control and delete cookies through your browser settings. Note that disabling strictly necessary cookies will prevent you from logging in to Waevin.

Google ChromeSettings > Privacy and security > Cookies and other site data

Mozilla FirefoxSettings > Privacy & Security > Cookies and Site Data

Apple SafariPreferences > Privacy > Manage Website Data

Microsoft EdgeSettings > Cookies and site permissions > Manage and delete cookies and site data

Clearing all cookies will log you out of Waevin. You can log back in and your account data will not be affected.

Updates to this policy

We will update this Cookie Policy when our use of cookies changes. If we introduce new cookies that require your consent, we will display a new consent notice and, where required by law, notify you by email. The date at the top of this page reflects when the policy was last changed.

Contact

Questions about our use of cookies:

Waevin

privacy@waevin.com