In short: GhostCoach uses only the cookies and browser storage that are strictly necessary to sign you in, process your payments, and let the site work. We do not use analytics, advertising, or tracking cookies. Because of this, we do not need to ask for your consent to set these — but we want you to know exactly what they do.
This page explains what we store in your browser and why. It sits alongside our Privacy Policy, which covers how we handle your personal data more broadly.
“Cookies” are small text files a website stores in your browser. Websites also use related technologies — localStorage and sessionStorage — which work similarly but live in your browser's storage rather than as classic cookies. Throughout this policy, “cookies” refers to all of these unless we say otherwise.
Some are strictly necessary: the site cannot function without them. Others are optional and require your consent before they are set — for example analytics or advertising. GhostCoach currently uses only strictly necessary ones.
We do not use cookies to track your behaviour, build a profile of you, measure analytics, or serve advertising.
Every item below is strictly necessary to provide the service you have requested. None requires consent under the ePrivacy Directive or the Dutch Telecommunications Act.
| Name | Type | Duration | Category | Purpose |
|---|---|---|---|---|
sb-…-auth-token | localStorage | Until logout | Strictly necessary | Keeps you signed in across pages (Supabase authentication). |
__stripe_mid | Cookie | 1 year | Strictly necessary | Stripe fraud prevention. Set only on payment pages. |
__stripe_sid | Cookie | 30 minutes | Strictly necessary | Stripe fraud prevention (short-lived). Payment pages only. |
gc_cookie_consent | localStorage | Until cleared | Strictly necessary | Remembers your cookie-notice choice so we don't re-ask. |
gc_signup | sessionStorage | Until tab closes | Strictly necessary | Carries signup form data between steps. |
gc_onboarding_partial | sessionStorage | Until tab closes | Strictly necessary | Preserves onboarding input if you navigate away. |
gc_api_key | sessionStorage | Until tab closes | Strictly necessary | Holds your Anthropic API key during a chat session (Phase 1). |
Note on Stripe cookies: __stripe_mid and __stripe_sid are set by Stripe.js but appear as first-party cookies on getghostcoach.com. They are used solely for payment security and fraud prevention, and only on our payment pages.
Some features rely on third parties. Where these involve your browser, we describe them here.
Handles card payments and fraud prevention. Sets the two strictly-necessary cookies listed above, only on payment pages. See Stripe's own cookie and privacy policies for details.
Our fonts (DM Sans and Playfair Display) are served directly from getghostcoach.com. They are not loaded from Google's servers, so no data about you is shared with Google to display them.
If you choose to sign in using Google, you are redirected to that provider, which sets its own cookies on its own domains under its own policies. These are not GhostCoach cookies and we do not control them. You only encounter them if you actively choose that sign-in method. See Google's privacy policy for details.
These power authentication, AI responses, automation, and email. They process data on our servers or via secure API calls — they do not set cookies in your browser. How they handle your personal data is described in our Privacy Policy.
Beehiiv currently runs no tracking on this site. If we ever add email open/click tracking or analytics, we will update this policy and, where the law requires it, ask for your consent first.
Some of our providers process data in the United States. Where that involves your personal data, those transfers are governed by the safeguards described in our Privacy Policy (such as Standard Contractual Clauses or the EU–US Data Privacy Framework). See the Privacy Policy for the full picture.
Because every cookie we use is strictly necessary, there is nothing optional to switch off — disabling them would stop core features like login and payment from working. You can still control cookies through your browser settings, including blocking or deleting them, though this may break parts of the site.
If we add optional cookies in future (for example analytics), we will show a consent control that lets you accept or reject them, and you will be able to change your choice at any time.
GhostCoach is intended for adults running their own businesses. It is not directed at children and we do not knowingly collect data from anyone under the age of 16.
We may update this policy when our technology or practices change — for example if we add analytics. We will revise the “Last updated” date and, for significant changes affecting optional cookies, ask for your consent where required.
Questions about this policy or your data? Contact the data controller:
[Founder name], GhostCoach
[Street address], Amsterdam, Netherlands
Contact us via our contact form →
You also have the right to lodge a complaint with the Dutch supervisory authority, the Autoriteit Persoonsgegevens (autoriteitpersoonsgegevens.nl).