This Cookie Policy explains what cookies and similar technologies erabot.ai uses, why we use them, and how you can opt out. It supplements our Privacy Policy.
1. What are cookies?
Cookies are small text files that websites store on your device. We also use similar technologies such as session tokens and local storage keys for the same purposes. In this policy, “cookies” refers to all of these technologies collectively.
2. Cookies we use
erabot.ai uses cookies for four purposes. Each purpose is described below.
2.1 Authentication (strictly necessary)
access_token— an HTTP-only, Secure, SameSite=Lax session cookie used to keep you signed in. Contains a short-lived JWT. Cannot be read by JavaScript. Required for the product to work.refresh_token— an HTTP-only, Secure, SameSite=Lax cookie used to refresh your access token without forcing you to sign in every 15 minutes. Required for the product to work.
These cookies are strictly necessary. You cannot opt out of them without losing the ability to use the Service. They are not used for tracking, advertising, or analytics.
2.2 Anonymous trial (strictly necessary)
try_session_id— a random UUID that lets you run one scan without creating an account. Expires after 24 hours or when you sign up (whichever comes first). If you sign up, any scans you started with this session are migrated to your new account and the cookie is cleared. Required for the try-before-signup flow.
2.3 Product analytics (opt-out available)
- PostHog cookies (
ph_*) — capture anonymized feature usage such as which buttons you click, how long scans take, and which pages you visit. PostHog is used to improve the product and identify friction points. We do not use PostHog data for advertising.
You can opt out of PostHog tracking by clicking “Decline” on the cookie notice banner. Opting out disables PostHog immediately on your device and no new analytics events will be captured.
2.4 Error tracking (no cookies by default)
Sentry is used for error tracking. Sentry does not set any cookies on your device by default. Error events are scrubbed of personally identifiable information (emails, IP addresses, and request bodies) before being transmitted to Sentry's servers.
3. Summary table
| Cookie / Purpose | Category | Expires | Opt-out |
|---|---|---|---|
access_token | Strictly necessary (auth) | 15 minutes | No (required) |
refresh_token | Strictly necessary (auth) | 7 days | No (required) |
try_session_id | Strictly necessary (anonymous trial) | 24 hours | No (required for trial flow) |
PostHog (ph_*) | Product analytics | 1 year | Yes (cookie banner) |
| Sentry | Error tracking | None (no cookies set) | N/A |
4. How to opt out
Click “Decline” on the cookie notice banner at the bottom of the page. Product analytics will be disabled immediately. Authentication and anonymous-trial cookies are required for the product to function and cannot be declined — if you decline these, you will not be able to sign in or start a trial scan.
You can also clear all cookies set by erabot.ai through your browser settings. Most browsers support per-site cookie clearing under Settings → Privacy.
5. Third-party cookies
We do not use advertising cookies, retargeting pixels, or third-party tracking scripts. The only third-party service that sets cookies on your device is PostHog for product analytics, which you can disable via the cookie banner.
6. Changes to this Cookie Policy
We will update this page whenever we add or remove cookies or change how existing cookies are used. Material changes will be notified via the cookie notice banner. The last-updated date at the top of this page reflects the most recent change.
7. Contact us
Cookie and privacy questions: privacy@erabot.ai
For the full picture of how we handle your data, see our Privacy Policy.
This Cookie Policy is effective as of April 11, 2026. erabot.ai is operated by Rohan Shah.