Back to home
Legal

Cookie Policy

Last updated: April 28, 2026

1. What Are Cookies?

Cookies are small text files stored on your device (computer, tablet, or mobile) when you visit a website. They allow the website to remember your actions and preferences over time, so you don't have to re-enter settings on each visit. Cookies can be "session" cookies (deleted when you close your browser) or "persistent" cookies (remain on your device for a set period).

2. How BayouBot Uses Cookies

BayouBot uses a minimal set of cookies. We do not use advertising cookies, retargeting pixels, or third-party tracking cookies. The cookies we set are described below.

3. Types of Cookies We Use

Essential Cookies

These cookies are required for the website to function properly. They cannot be disabled without breaking core functionality.

  • next-auth.session-token (or __Secure-next-auth.session-token on HTTPS) — a JWT session cookie set by NextAuth.js when you log in to the admin or client dashboard. Expires when the session ends or after 30 days. HttpOnly, SameSite=Lax.
  • next-auth.csrf-token — CSRF protection token set by NextAuth.js. Session-scoped.
  • ms_oauth_state — a short-lived (10 min) state cookie used during Microsoft OAuth flows to prevent CSRF attacks. Deleted after the OAuth callback completes.

Analytics Cookies / Local Storage

We use Vercel Analytics, which is a privacy-first analytics tool. Vercel Analytics does not set cookies; it collects anonymized, aggregated page view data (URL, referrer, device type, country) without tracking individuals across sites or building user profiles.

We also store your cookie consent preference in localStorage (key: bb_cookie_consent) so the consent banner does not reappear on every visit.

Marketing / Advertising Cookies

We do not use Facebook Pixel, Google Ads remarketing, or any other advertising cookies. No marketing cookies are set on this website.

4. Third-Party Cookies

BayouBot does not embed third-party advertising or social-media widgets that set cookies. However, the following third-party integrations may interact with your browser:

  • Stripe (checkout): If you complete a payment, Stripe may set cookies on their hosted checkout pages to prevent fraud. These are governed by Stripe's Cookie Policy.
  • Microsoft (OAuth sign-in): If you use "Sign in with Microsoft," Microsoft may set cookies on their login pages as part of the OAuth flow. These are governed by Microsoft's Privacy Statement.
  • Google Fonts / Font Awesome (CDN): Our site loads web fonts from Google Fonts and Font Awesome CDN. These CDNs may log your IP address in their server logs; they do not set tracking cookies on our site.

5. How to Manage or Disable Cookies

You can control cookies through your browser settings. Most browsers allow you to view, delete, and block cookies. Note that disabling essential cookies (particularly the session cookie) will prevent you from logging in to protected areas of the site.

To withdraw consent and clear our stored preference, click "Manage Preferences" in the cookie banner or clear your browser's localStorage for this site.

6. Changes to This Policy

We may update this Cookie Policy from time to time. Changes will be reflected by updating the "Last updated" date at the top of this page. Continued use of our website after changes are posted constitutes acceptance of the updated policy.

7. Contact Us

Questions about our use of cookies? Email [email protected]. For broader privacy questions, see our Privacy Policy.

Questions about this page? Email us at [email protected]