Authentication cookies
| Name | Purpose | TTL | Properties |
|---|---|---|---|
ada_access |
Short-lived auth token used by the product. | 24 hours | HttpOnly, Secure, SameSite Lax. |
ada_refresh |
Refresh cookie used to renew the access token. | 30 days | HttpOnly, Secure, SameSite Strict. Path scoped to /api/auth. |
ada_csrf |
Double-submit CSRF token, readable by JavaScript so the client can send it as a header. | 24 hours | Readable, Secure, SameSite Lax. |
Local storage
- tour-completion flags: remembers which onboarding tours you have already seen.
- language preference: your selected UI language.
What we do not use
- No third-party tracking cookies.
- No advertising cookies.
- No analytics SDK on the marketing site (this page included).
How to clear cookies
Standard browser controls. In Chrome: Settings, Privacy and security, Site settings, View permissions and data stored across sites, find random-assistant.com, Clear data. Equivalent paths exist in Firefox, Safari, and Edge.