1. What Are Cookies
Cookies are small text files placed on your device when you visit a website. They are widely used to make websites work efficiently and to provide information to site owners. Tailro uses a minimal set of cookies strictly necessary to operate the platform.
2. Cookies Tailro Uses
The following table lists all cookies set by the Tailro platform:
| Cookie Name | Purpose | Duration | Type |
|---|
| tailro_auth / jwt | Authentication — stores your session token so you remain logged in to the Tailro dashboard. Set as httpOnly and Secure to prevent client-side access. | Session / up to 30 days | Strictly necessary (first-party) |
| oauth_state | OAuth security — a temporary state parameter used during Google or Shopify OAuth flows to prevent CSRF attacks. Cleared immediately after the OAuth callback completes. | Temporary (minutes) | Strictly necessary (first-party) |
Note on localStorage: Certain authentication tokens may be stored in your browser's localStorage rather than in cookies, depending on the platform configuration. localStorage data is not transmitted to our servers automatically and is not a cookie, but is used to maintain your session state on the client side.
3. Third-Party Cookies
Tailro's own backend does not set any third-party tracking or analytics cookies. However, if you interact with a merchant's booking page that embeds third-party scripts (such as Google Analytics or Shopify widgets), those third parties may set their own cookies subject to their own privacy policies:
| Third Party | Why It May Set Cookies | Their Policy |
|---|
| Google | OAuth login flow, Google Calendar sync | policies.google.com/privacy |
| Shopify | Shopify Customer Account login on merchant booking pages | shopify.com/legal/privacy |
Tailro has no control over third-party cookies. Please refer to each third party's privacy and cookie policy for details on how they use your data.
4. Analytics & Tracking Cookies
Tailro does not currently use any of the following on its platform:
- Third-party analytics cookies (e.g. Google Analytics, Mixpanel)
- Advertising or retargeting cookies (e.g. Facebook Pixel, Google Ads)
- Cross-site tracking cookies
If we introduce non-essential cookies in the future, we will update this policy and request your consent where required by law.
5. Consent & Legal Basis
The cookies Tailro sets are strictly necessary to provide the core service you have requested (authentication and OAuth security). Under GDPR, strictly necessary cookies do not require prior consent.
If you are an EU-based user accessing a merchant's Tailro-powered booking page that embeds non-essential third-party scripts, a cookie consent banner may be required under GDPR. Merchants are responsible for implementing appropriate consent mechanisms on their booking pages.
6. How to Manage & Delete Cookies
You can control cookies through your browser settings. Most browsers allow you to:
- View cookies currently stored on your device
- Block all cookies (note: this will prevent you from logging into Tailro)
- Delete all cookies or specific cookies
- Be notified when a cookie is set
For instructions on how to manage cookies in your browser, visit:
- Google Chrome: Settings → Privacy and security → Cookies
- Mozilla Firefox: Settings → Privacy & Security → Cookies and Site Data
- Safari: Preferences → Privacy → Manage Website Data
- Microsoft Edge: Settings → Cookies and site permissions
Deleting or blocking authentication cookies will log you out of the Tailro platform and you will need to re-authenticate on your next visit.
7. Changes to This Cookie Policy
We may update this Cookie Policy from time to time. The effective date at the top of this page will reflect the most recent version. We will notify merchants of material changes via email.