Cookie Disclosure

1. What Cookies We Use

APIMesh uses a single cookie, strictly necessary for authentication:

Name	Purpose	Type	Duration
session	Authentication session identifier	httpOnly, Secure, SameSite=Lax	Session (expires on browser close or after idle timeout)

2. What We Don't Use

• No Google Analytics or any analytics platform
• No Facebook Pixel or advertising trackers
• No cross-site tracking cookies
• No fingerprinting scripts
• No social media widgets that set cookies

3. Why No Cookie Banner

Under the GDPR and ePrivacy Directive, strictly necessary cookies do not require user consent. Since our only cookie is essential for login functionality, no consent banner is needed. If we ever add non-essential cookies in the future, we will add a consent mechanism before doing so.

4. Third-Party Cookies

APIMesh does not set any third-party cookies. When you purchase credits via Stripe Checkout, you are redirected to Stripe's domain where their own cookies may apply under Stripe's cookie policy.

5. Contact

Questions about our cookie practices? Email support@apimesh.xyz.