Legal
Cookie Policy
Varumo uses only the cookies needed to run your account and keep payments secure. No tracking pixels, no advertising cookies, no third-party analytics.
Effective: 2026-05-06
What we set
| Cookie | Set by | What it does | Lifetime |
|---|---|---|---|
| next-auth.session-token | Varumo | Keeps you signed in. | 30 days, sliding |
| next-auth.csrf-token | Varumo | Stops attackers tricking your browser into making requests as you. | Session |
| next-auth.callback-url | Varumo | Remembers where to send you after sign-in. | Session |
| sb-* (Supabase) | Supabase Auth, when you use Google sign-in | Tracks the OAuth handshake. | Session |
What we don't set
- No Google Analytics, Plausible, Fathom, or any other web analytics product.
- No Facebook Pixel, no advertising attribution.
- No third-party tracking pixels of any kind.
- No consent banner, because we don't have any non-essential cookies that would require one under EU / India PDP rules.
Third-party cookies on the public site
If your wedding template embeds a Google Maps iframe, Google may set their own cookies in that iframe. We can't control that. The map iframe only loads if you've pasted a map URL into your site's settings.
Razorpay's checkout modal sets cookies during the payment flow — you only encounter these if you actually go through checkout. They're essential for the payment to work.
Disabling cookies
You can clear or block cookies through your browser settings, but signing in won't work without the session-token cookie above. If you want to use Varumo anonymously, you can browse /templates and any public wedding site without an account.
Contact
Questions: info@varumo.com.