We use cookies sparingly. Only first-party cookies. No advertising pixels, no Google Analytics, no Facebook Pixel, no session replay. Here’s the complete list.
| Name | Purpose | Lifetime | Type |
|---|---|---|---|
| authjs.session-token | Keeps you signed in to the admin / agent CRM | 30 days | Strictly necessary |
| authjs.csrf-token | Protects against cross-site request forgery | Session | Strictly necessary |
| authjs.callback-url | Redirects you back after login | Session | Strictly necessary |
What we don't use
- Google Analytics, Mixpanel, Amplitude, Heap — no analytics tools at all
- Facebook Pixel, Google Ads, TikTok Pixel, LinkedIn Insight
- Session replay (Hotjar, FullStory, LogRocket, etc.)
- Third-party fonts that drop tracking cookies (we self-host fonts)
- CDNs that fingerprint visitors
On client websites we build
By default, we don’t add any tracking to the small-business sites we build. If you want Google Analytics or Meta Pixel on your client site, we’ll add it on request and update your privacy policy with the disclosure.
How to control them
Every modern browser lets you block or clear cookies in settings. Blocking the strictly-necessary cookies above will log you out of the admin/agent CRM but won’t affect the public marketing site.
Contact
Questions: contact@wibru.com.
Wibru — Office 3564, 182-184 High Street North, East Ham, London E6 2JA, United Kingdom.