Last updated: April 10, 2026
Cookies are small text files stored on your device when you visit a website. They help websites remember your preferences and session state.
STOA uses only essential cookies required for the service to function. We do not use advertising, analytics, or third-party tracking cookies.
| Cookie | Purpose | Duration | Type |
|---|---|---|---|
| __cf_bm | Cloudflare bot management — protects against automated abuse | 30 minutes | Essential |
| cf_clearance | Cloudflare security challenge — verifies you are human | Up to 24 hours | Essential |
Authentication in STOA is handled via Bearer tokens in HTTP headers, not cookies. Your session token is stored in your browser's local storage, not as a cookie.
When you complete a payment through Stripe, Stripe may set cookies on their own domain (stripe.com) during the checkout process. These are governed by Stripe's privacy policy.
Our site is served through Cloudflare, which may set essential security cookies to protect against malicious traffic. These are strictly necessary and cannot be disabled without breaking the service.
Since we only use essential cookies, there is no optional cookie consent to manage. You can configure your browser to block all cookies, but this may prevent Cloudflare security features from working correctly, which could block access to the site.
If we ever add non-essential cookies (such as analytics), we will update this policy and implement a cookie consent mechanism before doing so.
Questions about our cookie practices? Contact support@stoago.com.