Cookie Policy
Cookies
Last updated: 2026-05-20
Short version
Casemoat uses the minimum set of cookies + local storage required to keep firm users signed in and the workspace functional. No advertising trackers. No cross-site tracking.
What we use
| Name | Type | Purpose | Lifetime |
|---|---|---|---|
| sb-* (Supabase) | Essential | Sign-in session | 1 hr / refresh |
| casemoat-firm | Essential | Active firm workspace | Session |
| casemoat-preferences | Preference | Sidebar state, density, column order | 1 year (localStorage) |
| __stripe_mid / __stripe_sid | Essential | Stripe fraud prevention | 1 yr / 30 min |
| __cf_bm | Essential | Cloudflare bot management | 30 min |
| casemoat-csrf | Essential | CSRF protection | Session |
What we don't use
- No Google Analytics, Google Ads, Tag Manager
- No Meta Pixel, LinkedIn Insight, X Pixel
- No retargeting / advertising cookies
- No cross-firm data sharing via cookies (tenant isolation enforced server-side)
How to opt out
Essential cookies cannot be opted out without breaking sign-in. Clear preference cookies in your browser. Stripe + Cloudflare cookies can be managed at Stripe and Cloudflare.
GPC / Do Not Track
Honored where applicable under CCPA. We don't run ad cookies — nothing extra to disable.
Changes
We update the date above when cookies change.
Contact
legal@pattenlabs.com · Patten Labs LLC, Dallas, TX