Cookie Policy

Last updated: April 2026

This Cookie Policy explains how DoorStax and its service providers use cookies and similar technologies when you visit our website or use the DoorStax platform. It should be read alongside our Privacy Policy, which describes how we handle your personal information more broadly.

1. What are cookies?

Cookies are small text files that a website places on your device to remember information between page loads or visits. They can be set by the site you are visiting ("first-party cookies") or by a third party whose content is embedded in the site ("third-party cookies"). "Similar technologies" in this policy means localStorage, sessionStorage, pixels, and other browser-based storage mechanisms.

2. How we use cookies

DoorStax uses cookies for the following purposes:

Strictly necessary

  • Authentication. NextAuth session cookies and CSRF tokens that keep you signed in and protect form submissions. Without these, the Service cannot function.
  • Impersonation. When an administrator is impersonating another user for support, a short-lived cookie records the active impersonation context.
  • Security. Cookies used for rate limiting and abuse prevention.

Preferences

  • Theme preference (light vs. dark mode) and sidebar-collapsed state.
  • Filter selections on the dashboard (period, property scope) passed as URL search parameters.

Analytics and performance

  • Aggregated analytics cookies and pixels that tell us which pages are used and where errors occur. We use Vercel Analytics and similar privacy-respecting tools that do not track individual users across other websites.

Payment processor (Kadima)

  • When you enter payment information into a Kadima hosted card field or complete an ACH bank setup, Kadima may set its own cookies within its iframe for fraud prevention and session management. These cookies are governed by Kadima's privacy policy at kadimapayments.com/privacy.

3. Third parties

Cookies placed by the following third parties may appear while using DoorStax:

  • Vercel — hosting and analytics (performance, error monitoring).
  • Kadima Payments — payment processor hosted fields and vault.
  • Resend — transactional and marketing email delivery (open-tracking pixel where you consented).

DoorStax does not sell or share cookie-derived data for cross-context behavioral advertising.

4. Managing cookies

Most browsers allow you to control cookies through their settings: you can block or delete cookies, or configure your browser to notify you when a cookie is being set. Blocking strictly-necessary cookies will prevent you from signing in to DoorStax.

For general information about cookies and how to manage them, see:

5. Changes to this policy

We may update this Cookie Policy when we add new tools or change providers. The "Last updated" date at the top of the page will reflect the most recent revision.

6. Contact

Questions about cookies:

Email: privacy@doorstax.com