Cookie Policy
Last updated: 19 May 2026 — Effective immediately
What are cookies?
Cookies are small text files placed on your device by websites you visit. They are widely used to make websites work efficiently and to remember your preferences.
How we use cookies
ShiftDesk uses strictly necessary cookies so the application can function, and analytics cookies only when you choose “Accept all” on our cookie banner. We do not use advertising or third-party tracking pixels.
Strictly necessary cookies
These cookies are required for the application to function and cannot be disabled without breaking core features such as login.
| Cookie | Purpose | Duration |
|---|---|---|
| sb-*-auth-token | Authentication session — keeps you logged in | Session / 1 hour |
| sb-*-auth-token-code-verifier | PKCE code verifier for secure login flow | Session |
| cookie_consent | Stores your cookie preference (essential only or accept all) | 1 year |
Analytics cookies (optional)
If you click Accept all on our cookie banner, we load PostHog to understand how the product is used — for example page views, navigation, and key actions such as creating a shift. This helps us improve reliability and UX. Analytics cookies are not placed if you choose essential cookies only.
PostHog is hosted in the European Union (eu.posthog.com). We do not send employee names, pay rates, sickness notes, or other sensitive workforce data to PostHog.
| Cookie / storage | Purpose | Duration |
|---|---|---|
| ph_* | PostHog analytics — anonymous or pseudonymous usage measurement | Up to 1 year |
| posthog (localStorage) | PostHog session and event queue when cookies are unavailable | Persistent until cleared |
Third-party cookies
Authentication cookies (sb-*-auth-token) are set by Supabase, our authentication and database provider. When you accept analytics, PostHog may set cookies from eu.i.posthog.com. Supabase is US-based with a UK International Data Transfer Agreement (UK IDTA) in place. PostHog EU data is processed within the EU. See our Privacy Policy for full processor details.
Managing cookies
You can change your preference at any time by clearing site data in your browser and revisiting ShiftDesk — the cookie banner will appear again. Choosing essential cookies only disables analytics; the app will continue to work. Clearing all cookies will log you out of ShiftDesk.
Contact
Questions about this policy? hello@shiftdesk.co.uk