Cookie & Storage Policy
Last updated: 22 May 2026
Selah keeps small bits of information on your device so the service works. We use only what we need; we do not run advertising or third-party tracking.
What we store
| Name | Purpose | How long | Required? |
|---|---|---|---|
Session cookie (_selah_key) |
Keeps you signed in. | Until you sign out or 90 days, whichever comes first. | Yes — without it you cannot use the service. |
| CSRF token cookie | Stops a third party submitting forms on your behalf. | Browser session. | Yes — security. |
| Local storage: time zone | So your day boundary for streaks matches where you are. | Until cleared. | No — defaults to UTC if removed. |
| Local storage: UI preferences | Remembers small UI choices (e.g. which translation you read last). | Until cleared. | No. |
| Supabase auth tokens | Sign-in tokens from our auth provider. | Refresh cycle, normally 1 hour for access tokens. | Yes — keeps you signed in. |
What we do not use
- No Google Analytics, no Meta pixel, no advertising trackers.
- No third-party cross-site tracking.
- No fingerprinting.
How to clear them
You can clear cookies and local storage at any time from your browser settings. If you do, you will need to sign in again, and your time-zone-based streak boundary will fall back to UTC until you visit Selah again.
Questions
If you have a question about anything Selah stores on your device, email us at support@selah.quest.