Cookie Policy

What Are Cookies?

Cookies are small text files stored on your device when you visit our website. They help us enhance your experience by remembering your preferences and tracking how you use our services.

Cookies SuperStudies Sets

SuperStudies is deliberately quiet on cookies. We use only the cookies that are strictly necessary to deliver the service. We do not use Google Analytics, Facebook Pixel, Hotjar, Datadog, advertising trackers, or any other third-party analytics or marketing scripts. Nothing on this site profiles your behaviour or shares it with advertisers.

Essential Cookies (always on)

These cookies are necessary for the website to function. They cannot be disabled because the site would not work without them.

  • Session Cookie (sessionid): keeps you signed in.
  • CSRF Token (csrftoken): protects forms against cross-site request forgery attacks.
  • Firebase authentication (Firebase SDK local storage / cookies): holds the short-lived sign-in token used to verify magic-link logins.
  • Cookie consent record: a small cookie that remembers your cookie-consent choice so we don't ask you every time.

Your Cookie Choices

Because we only set strictly-necessary cookies, there is nothing for you to opt out of on SuperStudies itself. If we ever introduce optional analytics or preference cookies, they will be off by default and managed via our Cookie Preferences page.

Browser Settings

Most browsers allow you to refuse cookies or alert you when they're being sent. You can usually find these settings in your browser preferences:

Third-Party Cookies

Two third parties may set their own cookies as part of providing core functionality:

  • Firebase (Google) — used only for passwordless sign-in. Stores a short-lived authentication token after you click your magic-link email.
  • Stripe — set on the Stripe-hosted checkout page when you subscribe. Stripe uses these cookies for fraud prevention and to deliver the payment form. See Stripe's cookie policy.

Cookie Lifetimes

  • Session cookie — deleted when you sign out or your session expires.
  • CSRF token — refreshed per session.
  • Firebase authentication — short-lived token used during the magic-link flow.
  • Cookie-consent record — retained for 1 year so we don't keep asking.

Updates to This Policy

We may update this cookie policy to reflect changes in our practices or applicable laws. We will notify you of any significant changes by posting the updated policy on this page with a new "last updated" date.

Contact Us

If you have questions about our cookie practices or wish to withdraw consent, please contact us at:

SuperStudies Ltd
Email: privacy@superstudies.co.uk
Company Number: 16694082

Last updated: 28 April 2026

Manage Preferences Back to Home