Strictly necessary & functional Required Authentication, security, and the core link service. These can't be turned off and don't require consent. This also includes the first-party click-measurement cookie set on a short-link redirect — it carries an opaque token with no personal data, and because a redirect happens instantly there's no place to show a consent prompt, so it's treated as functional.
Cookies in this category
__session Clerk authentication session (signed-in dashboard) Session
__client_uat Clerk signed-in-state signal 1y
approute_pw Remembers that you unlocked a password-protected short link 4h
ar_sess First-party, opaque token that groups a visitor's short-link clicks into a 30-minute session for click analytics. No personal data. 30m
Product analytics Optional and off by default. When you accept this category we load Google Analytics to understand which marketing and dashboard pages get used. Decline and these are never set.
Cookies in this category
_ga Google Analytics — distinguishes visitors 2y
_gid Google Analytics — distinguishes visitors 24h
Marketing Optional and off by default. We do not currently set any marketing or ad-retargeting cookies, and never on the redirect flow. If that ever changes they'll be listed here and will require your consent first.
Cookies in this category
None currently set.
Your choice itself is saved in your browser's local storage (ol_consent ), not a cookie. If you're signed in, we also keep a timestamped record of each choice on your account so we can show what you consented to and when.