instxnt uses a minimal set of cookies to provide core functionality and a secure session experience. This page explains the cookies we use, why we use them, and how you can control them.
What are cookies?
Cookies are small data files stored on your device when you visit a website. They help websites remember your preferences, maintain your login session, and track behavior for analytics. Most browsers allow you to control or delete cookies through settings.
Essential Cookies
These cookies are required for the service to function and cannot be disabled:
Session Cookie
Name: session
Purpose: Maintains your authentication and session state while logged into instxnt dashboard.
Duration: Session cookie (deleted when browser closes) or up to 7 days depending on configuration.
Security: Set with HttpOnly, Secure, and SameSite=Lax flags to prevent unauthorized access and CSRF attacks.
CSRF Protection Tokens
Purpose: Prevent cross-site request forgery attacks on state-changing operations.
Duration: Session-based; automatically refreshed.
Analytics & Tracking Cookies
We use the following third-party services to understand how users interact with instxnt. These cookies are not essential and you may opt out:
Google Analytics 4 (GA4)
Cookies set: _ga, _ga_[MEASUREMENT_ID], _gat
Purpose: Tracks page views, user demographics, device types, and user flows to help us improve the platform.
Data retention: 14 months by default.
Privacy: Google Analytics data is aggregated and anonymized. Learn more: Google Privacy Policy.
Google Tag Manager (GTM)
Cookies set: Various tracking pixels and event tags managed by GTM.
Purpose: Manages analytics and event tracking scripts without requiring code changes.
Privacy: GTM does not itself collect data; it manages other Google tracking tools.
How to opt out of Google Analytics:
- Install the Google Analytics Opt-out Browser Add-on
- Or disable cookies in your browser settings
- Or email [email protected] to request manual opt-out
Third-Party Service Cookies
The following services may set cookies when you interact with their integrations:
- Stripe: Payment processing. See Stripe Privacy Policy.
- Cloudflare: CDN and security. See Cloudflare Privacy Policy.
- Custom store integrations: If you (as a store owner) enable third-party pixels, analytics, or custom scripts, those providers set their own cookies per their policies.
No Tracking Cookies by Default
instxnt does not set any marketing, advertising, or third-party tracking cookies by default. We do not sell cookie data or share it with ad networks.
Exception: If you are a store owner and enable third-party integrations (Facebook Pixel, TikTok Pixel, custom analytics, etc.), those platforms may set cookies on your store. You are responsible for disclosing those cookies to your customers.
Consent and Control
For EU/UK residents: We obtain consent before storing non-essential cookies. If you have not given consent, only essential session cookies are set. You can manage or withdraw consent anytime through your browser preferences or by contacting us.
Browser controls: Most browsers allow you to view, delete, or block cookies:
- Chrome: Settings → Privacy and security → Cookies and other site data
- Safari: Preferences → Privacy → Manage Website Data
- Firefox: Preferences → Privacy & Security → Cookies and Site Data
- Edge: Settings → Privacy, search, and services → Clear browsing data
Note: Disabling essential cookies may prevent you from logging in or using core features.
Do Not Track (DNT) Signals
Some browsers support "Do Not Track" (DNT) signals. instxnt respects DNT signals and will not set analytics cookies if DNT is enabled, where technically feasible. However, essential cookies for authentication and security will still be set regardless of DNT.
Changes to This Policy
We may update this Cookie Policy from time to time. A change log and updated date will appear on this page. Your continued use of instxnt after changes take effect means you accept the updated policy.
Questions?
For questions about cookies or privacy, contact us at [email protected].