Cookie Policy
Last Updated: 2026-05-22 Version: 1 (DRAFT — pending lawyer review) Effective Date: 2026-06-18
This Cookie Policy explains how Individual Entrepreneur ARTEM KHAUSTOV (“NoParrot”, “we”, “us”) uses cookies and similar technologies on our website and web application.
We take a privacy-first approach: we use the minimum cookies necessary to operate the Service, and our analytics is cookieless.
1. What are cookies?
A cookie is a small text file placed on your device by a website to remember information across pages and visits. “Similar technologies” include local storage, session storage, and fingerprinting techniques.
2. Cookies we use
| Cookie / Storage | Type | Purpose | Duration | Set by |
|---|---|---|---|---|
transcribeai_session | Strictly necessary | Authentication session token | Session (browser close) or 30 days if “Remember me” checked | NoParrot |
cf_* (e.g., cf_bm, cf_chl_*) | Strictly necessary | DDoS protection and bot detection | Up to 30 minutes | Cloudflare |
__Secure-token | Strictly necessary | Lemon Squeezy checkout flow (only on /billing pages) | Session | Lemon Squeezy |
LocalStorage.theme | Functional | Remember light/dark theme preference | Persistent | NoParrot |
LocalStorage.locale | Functional | Remember language preference | Persistent | NoParrot |
LocalStorage.client_id | Pseudonymous analytics | Anonymous device identifier for telemetry | Persistent until cleared | NoParrot |
Important notes
- No third-party advertising cookies. We do not use Google Analytics, Facebook Pixel, or similar tracking technologies.
- Cookieless analytics. We use Plausible, which counts pageviews via URL and request headers (no cookies, no fingerprinting).
- No cross-site tracking. We do not share cookie data with third parties for behavioural advertising or cross-site profiling.
3. Why no cookie banner?
Under the ePrivacy Directive 2002/58/EC and national implementations (e.g., PECR in the UK, TTDSG in Germany), cookies that are “strictly necessary for the service explicitly requested” by the user do not require consent. All cookies in the table above qualify as strictly necessary for one of the following reasons:
- Authentication session token — required to provide the Service after login.
- Cloudflare DDoS / bot cookies — required to protect the Service from abuse.
- Lemon Squeezy checkout token — required to process your payment when you initiate checkout.
For LocalStorage entries (theme, locale, client_id), these are functional preferences that:
- Are set only after explicit user action (saving a preference, or telemetry opt-in).
- Can be controlled and cleared via the application Settings page.
- For telemetry-related entries (
client_id), can be disabled by settingTRANSCRIBEAI_TELEMETRY=0or via Settings → Privacy.
Because our cookie use is strictly necessary or functional-with-explicit-opt-in, no consent banner is displayed.
[LAWYER: confirm acceptable under ePrivacy Directive Art. 5(3) + the CJEU Planet49 ruling. Specifically —
LocalStorage.client_idfor telemetry; we treat it as opt-out (default ON, easy disable). Some EU regulators (CNIL France) may require opt-in. Decide whether to make telemetry opt-in for EU/EEA users specifically.]
4. Hardware fingerprint
If you activate a Pro/Team license on a desktop or CLI installation of the Software (not the web app), the Software reads stable hardware identifiers (motherboard UUID, CPU ID) and stores a one-way SHA-256 hash. This is not a cookie but a technically similar tracking technology under the ePrivacy Directive.
- We obtain your explicit consent through a separate dialog before activation.
- The hash is stored locally and (in hashed form) on our servers.
- See Privacy Policy §2.3 for full details.
5. How to control cookies
You can control cookies through your browser:
- Chrome: Settings → Privacy and security → Cookies and other site data
- Firefox: Settings → Privacy & Security → Cookies and Site Data
- Safari: Preferences → Privacy → Manage Website Data
- Edge: Settings → Cookies and site permissions
You can also use browser plugins like uBlock Origin, Privacy Badger, or similar tools.
Note: Blocking strictly-necessary cookies (transcribeai_session, Cloudflare cookies) will
prevent the Service from functioning correctly.
For functional preferences, use the in-app Settings page to disable them:
- Settings → Privacy → Disable telemetry — removes
client_id - Settings → Theme — controls
LocalStorage.theme
6. Do Not Track
We honour the Do Not Track (DNT) browser signal: when DNT is enabled, we treat your visit as if you had opted out of pseudonymous telemetry, regardless of your in-app settings.
We also honour the Global Privacy Control (GPC) signal in the same way.
7. Updates to this Cookie Policy
We may update this Cookie Policy if our cookie practices change. Material changes are communicated through banner notices on our website and via email to active subscribers.
The current version is always available at https://transcribeai.app/legal/cookies.
8. Contact
- Privacy questions:
privacy@noparrot.com - General contact:
support@noparrot.com
This Cookie Policy is part of and governed by our Privacy Policy.