1. The Short Version
Apeiron is built to be quiet. We do not use advertising cookies, cross-site trackers, social-media pixels, session replay tools, or behavioral analytics on apeironweb.com or on any client site we host.
The only storage we rely on is the small amount of data strictly necessary to keep you logged in to the founder dashboard or client portal, to remember your preferences, and — on apeironweb.com only — to collect fully anonymized, cookieless page-load performance data through Cloudflare Web Analytics so we can keep the site fast and reliable.
Because we do not use non-essential cookies, we do not show a cookie banner. This policy explains everything we do use, and how to control it.
2. What These Technologies Are
When you visit a website, that site can store small pieces of information on your device. The most common types are:
- Cookies — small text files set by a website and sent back on later visits.
- localStorage and sessionStorage — browser storage APIs that websites use to remember things between visits or during a single session.
- IndexedDB — a larger browser database, used by some apps to cache data for offline use.
- Pixels, beacons, and fingerprints — techniques for tracking visitors without traditional cookies.
Throughout this policy we call all of these "storage technologies" for simplicity.
3. Storage Technologies We Use
Here is everything Apeiron itself stores on your device. All of it is first-party (owned by apeironweb.com or by the specific client site), and all of it falls into categories that the law treats as strictly necessary — meaning it is required for a service you have asked for, such as staying logged in or keeping the site working.
| Key | Type | Purpose | Lifetime |
|---|---|---|---|
sb-*-auth-token |
localStorage | Supabase authentication session for the founder dashboard and client portal. Without it, you cannot stay signed in. | Until sign-out or session expiry |
| UI preference keys (theme, view state, sidebar) | localStorage | Remember visual preferences such as selected tab, sidebar state, or view mode. | Until you clear site data |
| Client portal access cookies | Cookie / localStorage | Keep you signed in to a specific client portal or upload page after you enter your access code. | Session, unless you select "remember me" |
Cloudflare security tokens (e.g. __cf_bm, cf_clearance) |
Cookie | Set by Cloudflare, our hosting and security provider, to detect bots and protect the site from abuse. | Up to 30 minutes (bot management) or 30 days (challenge clearance) |
We do not set any cookies or storage keys for advertising, cross-site tracking, profiling, A/B testing, heatmaps, session replay, or behavioral analytics.
4. Cloudflare Web Analytics (Cookieless)
On apeironweb.com only, we use Cloudflare Web Analytics to understand aggregate performance — how quickly pages load, whether the site is reachable, and roughly how many visits a page receives.
Cloudflare Web Analytics is explicitly designed to be privacy-first:
- It does not set any cookies.
- It does not use browser fingerprinting.
- It does not create persistent identifiers for visitors.
- It collects only aggregated, anonymized signals (page URL, country-level location, referrer, and Core Web Vitals timings).
Because there is no cookie and no personal identifier involved, this does not require consent under ePrivacy rules. If Cloudflare ever changes how this works, we will update this policy first.
We do not use Cloudflare Web Analytics on any client site unless the client has explicitly requested it in writing.
5. Stripe (Payments)
When you pay an Apeiron invoice, you are redirected to a Stripe-hosted checkout page. Stripe sets its own cookies and storage on its own domain to handle the payment and to detect fraud. We do not embed Stripe's tracking scripts on apeironweb.com itself — the redirect happens only when you click a payment link.
Stripe's cookie and privacy practices are governed by the Stripe Privacy Policy and the Stripe Cookie Policy.
6. Fonts and External Assets
apeironweb.com currently loads the DM Sans and DM Mono typefaces from Google Fonts. When your browser fetches a font file, Google receives your IP address as part of the standard web request. Google Fonts does not set cookies and, according to Google's documentation, does not use requested font files to profile users.
We are in the process of self-hosting these fonts on apeironweb.com to remove even that minimal exposure. Client sites we build may use Google Fonts until the same migration is completed there.
We do not load any other external scripts, iframes, or widgets on apeironweb.com.
7. Third-Party Services Behind the Scenes
Some of the services that power apeironweb.com — Supabase (database and auth), Cloudflare (hosting and security), Resend (transactional email), and Stripe (payments) — may set their own operational cookies within their own infrastructure. These are strictly necessary for the underlying service to function and do not track you across other websites.
For more detail on our sub-processors, see our Privacy Policy.
8. Client Sites Hosted by Apeiron
Websites we build and host for clients follow the same default: first-party, strictly-necessary storage only, no advertising or tracking cookies. If a client asks us to add analytics, a marketing pixel, or a chat widget, we will install it with the client's consent and the client's own privacy disclosures will cover it. Apeiron does not quietly inject analytics of any kind into client sites.
9. Your Choices
Because we only use strictly-necessary storage, there is nothing to opt out of on our end. You still have full control through your browser:
- Clear site data. Your browser's settings let you delete cookies, localStorage, and other storage for a specific site or for all sites.
- Block cookies. You can block first-party or third-party cookies entirely. Note that blocking cookies will prevent you from staying signed in to the dashboard or client portal.
- Global Privacy Control and Do Not Track. We honor the intent of these signals by not adding tracking technologies in the first place.
- Private browsing. Opening the site in a private or incognito window will discard all storage when you close the window.
10. Children
Our services are not directed to children under 13. We do not knowingly collect personal information from children. See our Privacy Policy for details.
11. Changes to This Policy
If we add any new storage technology — even a strictly-necessary one — we will update this page and change the Effective Date at the top. If we ever add something that is not strictly necessary, we will also add a consent banner and will not activate it for you until you opt in.
12. Contact
Questions about cookies or storage on our sites?
Apeiron (d/b/a of Python-Visuals Web Design)
Email: [email protected]
Web: apeironweb.com