Cookie Policy

Last updated:

We keep cookies to a minimum: strictly necessary session cookies to keep you signed in, and nothing else, unless this page says otherwise.

1. What cookies are

Cookies are small text files placed on your device when you visit a website. They can be "session" cookies, which expire when you close your browser, or "persistent" cookies, which remain until they expire or you delete them. This policy covers cookies and equivalent technologies (such as local storage) used on amaesa.co.uk and within the Amaesa Tax platform.

3. The cookies we use

We currently use only strictly necessary cookies. We don't set any analytics, advertising, or non-essential cookies today. If that changes, we'll update this policy and add a consent mechanism before any non-essential cookie is set, as PECR requires.

CookiePurposeCategoryDuration
sb-*-auth-tokenKeeps you signed in to the firm portal, client portal, or master admin console (set by our authentication provider, Supabase).Strictly necessary — no consent requiredSession / up to 7 days, refreshed on activity
sb-*-auth-token-code-verifierSupports the sign-in flow (PKCE) during authentication.Strictly necessary — no consent requiredShort-lived, cleared after sign-in completes

4. Third-party cookies

Some pages embed content from third parties (for example, Stripe's hosted payment fields when you manage billing). Those third parties may set their own cookies under their own privacy and cookie policies, which we encourage you to review. We don't control those cookies.

5. Managing cookies

You can control or delete cookies through your browser settings — most browsers let you block cookies entirely, or just third-party cookies. Because the cookies we currently set are strictly necessary for signing in, blocking them will prevent you from using the firm portal, client portal, or master admin console.

6. Changes to this policy

We'll update this page whenever the cookies we use change. See our Privacy Policy for how we handle the personal data associated with your account more broadly.

7. Contact us

Questions about this policy: privacy@amaesa.co.uk