Last updated: March 2026
Cookies are small text files placed on your device by a website when you visit it. They are widely used to make websites work efficiently, remember your preferences, and provide reporting information to site owners.
Cookies set by the website you are visiting are called “first-party cookies.” Cookies set by parties other than the website owner are called “third-party cookies.” Third-party cookies enable third-party features or functionality to be provided on or through a website — for example, interactive content, analytics, and advertising.
Delegate uses cookies for three core purposes:
The table below lists each cookie Delegate sets, what it does, how long it persists, and its category.
| Cookie Name | Purpose | Duration | Type |
|---|---|---|---|
| next-auth.session-token | Authenticates your session and keeps you signed in | Session | Essential |
| next-auth.csrf-token | Prevents cross-site request forgery attacks | Session | Essential |
| theme | Remembers your preferred light or dark mode | 1 year | Functional |
| workspace-id | Restores your last active workspace on login | 30 days | Functional |
| _ga | Google Analytics — distinguishes unique users and sessions | 2 years | Analytics |
| _gid | Google Analytics — identifies a session within a day | 24 hours | Analytics |
Some features of Delegate involve third-party services that may set their own cookies. We do not control these cookies; please refer to the relevant third-party privacy policy for more information.
Google Analytics sets cookies to help us measure how users interact with Delegate. If you have connected Google OAuth, Google may also set authentication-related cookies. See the Google Privacy Policy at policies.google.com/privacy for full details.
Stripe processes payments for Pro and Max subscriptions and sets cookies to detect fraud and maintain the integrity of the checkout flow. See the Stripe Privacy Policy at stripe.com/privacy for full details.
You can control and delete cookies through your browser settings. Most browsers allow you to refuse new cookies, delete existing cookies, and be notified when a new cookie is placed on your device. Below are links to cookie management instructions for the most common browsers:
Please note: Disabling essential cookies (such as next-auth.session-token) will prevent you from signing in and using Delegate. Functional and analytics cookies can be disabled without affecting core functionality.
We may update this Cookie Policy from time to time to reflect changes in technology, regulation, or our business practices. When we make material changes we will update the “Last updated” date at the top of this page.
We encourage you to review this policy periodically. Continued use of Delegate after any changes constitutes your acceptance of the updated policy.
If you have any questions about this Cookie Policy or how we handle your data, please reach out to our privacy team: