1. What we use
NusaBook uses a small number of cookies and localStorage entries. We do not run third-party advertising trackers. We do not sell or share cookie data with marketing networks.
Strictly necessary
These keep the site working. You cannot turn them off and still use NusaBook.
- Supabase auth session — keeps you signed in. Set on login, cleared on sign out.
- CSRF / route protection — prevents cross-site request forgery. Transient.
- cookie-consent — remembers your choice from the consent banner so we don't ask again.
localStorage, never read by a server.
Functional (optional)
Improve your experience. You can turn these off without breaking the app.
- Preferences — UI choices like sidebar collapsed state, last-visited dashboard tab.
localStorage.
Analytics (optional)
Help us understand which pages people use. Off by default until you accept.
- Privacy-friendly analytics — currently disabled. When enabled in future, we use a tracker that does not set third-party cookies, does not fingerprint, and is hosted by us (e.g. Plausible self-host). Off until you opt in.
Marketing
We do not use marketing cookies, retargeting pixels, or social media trackers on this site.
2. How to control them
The first time you visit NusaBook, the consent banner asks for your preference. You can also change it any time by clicking the "Cookie settings" link in the footer.
You can additionally block or delete cookies in your browser settings. Doing so may sign you out of NusaBook.
3. Third-party cookies (server-side)
Some sub-processors set their own cookies when you visit their properties (Stripe checkout, the Vercel-hosted preview banner). We do not control those — see each vendor's policy.
4. Changes
We update this policy when our cookie set changes. The "Last updated" date reflects the most recent revision.
5. Contact
Cookie questions: hello@nusabook.com.