Cookies and Local Storage Policy

Last updated: July 1, 2026

At Aurum, we respect your privacy. This policy explains transparently what data we store in your browser and why, differentiating between strictly technical elements and the storage of your financial data.

1. Do We Use Cookies?

Aurum does not use tracking, advertising, or profiling cookies. However, to ensure security, integrity, and the availability of certain functions, the following technical elements are used:

  • Security and Performance Cookies (Cloudflare): When browsing the site, Cloudflare may install technical cookies. Their sole purpose is traffic management, bot attack prevention, and ensuring the connection is secure. They do not identify the user or track their behavior for commercial purposes.
  • Sync session cookie (aurum_session): Created only if you connect Google Drive. It is a first-party, HttpOnly, Secure and encrypted cookie: it holds the credential that keeps your Drive session alive (the refresh token) so you don't have to sign in with Google every time. Being HttpOnly, the site's code cannot read it. It is a strictly necessary / functional cookie (it enables a feature you request) and is not stored on our servers, only in your browser. It is deleted when you disconnect Drive. During the sign-in process itself we also use short-lived security cookies (anti-CSRF and PKCE protection) that expire within minutes.
  • Third-Party Libraries (Google APIs): The application integrates official Google libraries to read and write the backup in your Google Drive. When loading these libraries and communicating with domains such as googleapis.com, Google may generate technical session cookies, necessary for communication between the application and Google servers and not used by Aurum for advertising purposes.

2. Cloudflare Web Analytics

We use Cloudflare Web Analytics to understand basic metrics (total visits, device type, or country) in an aggregate manner. This tool is privacy-first: it does not use cookies, does not store personal data, and does not perform cross-site tracking.

3. Local Storage (Local Storage and IndexedDB)

For Aurum to be a Local-First application and function quickly and offline, we use storage technologies native to your browser:

  • IndexedDB: This is the local database where your assets, transactions, and financial configurations are stored.
  • Local Storage: Used to save interface preferences (such as dark mode or technical session states).

Absolute privacy: This data resides exclusively on your device. Aurum developers do not have access to this information; you are the sole custodian of your data.

4. Control and Deletion

You can clear this data at any time from your browser settings ("Clear website data" or "Clear history").

Important: If you clear local storage and do not have cloud synchronization or an external backup active, you will lose your financial data, as Aurum does not keep copies on its own servers.

5. User Management

By not using tracking or advertising cookies, Aurum does not display an invasive cookie banner, complying with regulations by limiting the use of cookies to strictly technical or security purposes, or to enable functionalities requested by the user that are exempt by law.

If you have questions about how we protect your local environment, write to us at: [email protected].

Take control of your wealth

Start organizing your personal finances today. No complicated spreadsheets, absolute privacy, and total control.

Launch Aurum

Free and private. Your data never leaves your device.