Cookies.

This site runs without third-party analytics, without ads, and without trackers. A small number of strictly necessary cookies exist only to keep the admin session alive when the team logs into the back office.

What we set

• vault-admin-token — HttpOnly JWT, only written after the team logs in at /admin/login. Expires in 24 hours.

What we don't set

• No Google Analytics, no Facebook Pixel, no TikTok tag.
• No A/B testing cookies.
• No re-targeting or advertising cookies.

Clearing cookies only signs out the admin — nothing about your experience as a public visitor changes.