Message Crystal — Cookie Policy
Effective: April 21, 2026
This Cookie Policy explains how Message Crystal LLC ("Message Crystal," "we," "us") uses cookies and similar browser technologies on the Message Crystal web application at message-crystal.com and its subdomains (the "Web Service").
This Cookie Policy applies only to the Web Service. The Message Crystal mobile application does not use cookies; tracking technologies used in the mobile application (such as push notification tokens) are described in the Privacy Policy.
1. What Are Cookies?
Cookies are small text files placed on your device by a website you visit. "Similar technologies" include local storage, session storage, and pixel tags — this policy uses "cookies" to refer to all of them.
Cookies may be:
- First-party (set by message-crystal.com) or third-party (set by a service we embed).
- Session (deleted when you close the browser) or persistent (remain until they expire or you delete them).
- Strictly necessary (required for the Web Service to function) or optional (analytics, preferences).
2. Cookies We Use
| Category | Cookie / Technology | Provider | Purpose | Duration |
|---|---|---|---|---|
| Strictly necessary | Supabase session cookies | Supabase | Authenticates your session and keeps you signed in | Session / 7 days |
| Strictly necessary | reCAPTCHA cookies | Distinguishes humans from bots during sign-up and sensitive actions | Up to 6 months | |
| Strictly necessary | sidebar:state | First party | Remembers whether the app sidebar is expanded or collapsed | 1 year |
| Analytics | PostHog identifiers | PostHog | Product analytics — feature usage, funnels, and anonymized session data | Up to 1 year |
We do not use cookies for advertising or cross-site behavioral targeting.
3. Your Choices
3.1 Consent banner
The first time you visit the Web Service you will see a cookie consent banner. You can accept all cookies, reject all optional cookies, or choose specific categories. You can change your choice at any time by clicking "Cookie settings" in the footer of the Web Service.
Strictly necessary cookies cannot be disabled through the banner because the Web Service cannot function without them.
3.2 "Do Not Sell or Share My Personal Information"
California residents can exercise the CCPA/CPRA opt-out by clicking the "Do Not Sell or Share My Personal Information" link in the footer. Message Crystal does not sell personal information or share it for cross-context behavioral advertising; the link allows you to confirm and record that preference.
3.3 Browser controls
Most browsers let you view, manage, and delete cookies through their settings. Blocking strictly necessary cookies will cause the Web Service to stop working. Blocking analytics cookies has no effect on Web Service functionality.
3.4 Do Not Track
The Web Service does not respond to browser "Do Not Track" signals because no common standard has been adopted. Use the consent banner or your browser settings instead.
4. Changes to This Cookie Policy
We may update this Cookie Policy from time to time. Material changes will be announced in-app and by updating the "Last updated" and "Effective" dates above. Changes take effect thirty days after the Last updated date.
5. Contact
Message Crystal LLC
107 Hickory Hollow Circle
Warrington, PA 18976
Email: legal@message-crystal.com