Cookie Policy
Last Updated: 2026-06-19 Version: 2 Effective Date: 2026-06-19
This Cookie Policy explains how Individual Entrepreneur ARTEM KHAUSTOV (“NoParrot”, “we”, “us”) uses cookies and similar technologies on our website and web application.
We take a privacy-first approach: we use the minimum cookies necessary to operate the Service, and our analytics is cookieless.
1. What are cookies?
A cookie is a small text file placed on your device by a website to remember information across pages and visits. “Similar technologies” include local storage, session storage, and fingerprinting techniques.
2. Cookies we use
| Cookie / Storage | Type | Purpose | Duration | Set by |
|---|---|---|---|---|
noparrot_session | Strictly necessary | Authentication session token | Session (browser close) or 30 days if “Remember me” checked | NoParrot |
cf_* (e.g., cf_bm, cf_chl_*) | Strictly necessary | DDoS protection and bot detection | Up to 30 minutes | Cloudflare |
| Paddle checkout cookies | Strictly necessary | Paddle checkout and payment flow (only on Paddle-hosted checkout, when you start a purchase) | Session | Paddle |
LocalStorage.theme | Functional | Remember light/dark theme preference | Persistent | NoParrot |
LocalStorage.locale | Functional | Remember language preference | Persistent | NoParrot |
LocalStorage.client_id | Pseudonymous analytics | Anonymous device identifier for telemetry | Persistent until cleared | NoParrot |
Important notes
- No third-party advertising cookies. We do not use Google Analytics, Facebook Pixel, or similar tracking technologies.
- Cookieless analytics. We use Plausible, which counts pageviews via URL and request headers (no cookies, no fingerprinting).
- No cross-site tracking. We do not share cookie data with third parties for behavioural advertising or cross-site profiling.
3. Why no cookie banner?
Under the ePrivacy Directive 2002/58/EC and national implementations (e.g., PECR in the UK, TTDSG in Germany), cookies that are “strictly necessary for the service explicitly requested” by the user do not require consent. All cookies in the table above qualify as strictly necessary for one of the following reasons:
- Authentication session token — required to provide the Service after login.
- Cloudflare DDoS / bot cookies — required to protect the Service from abuse.
- Paddle checkout cookies — set by our Merchant of Record, Paddle, only when you initiate checkout; required to process your payment.
For LocalStorage entries:
themeandlocaleare functional preferences, written only when you change a setting. They store no identifier and cannot be used to track you.client_idis written only if you opt in to analytics (Settings → Privacy). Analytics is off by default; until you enable it, noclient_idis created and no telemetry is sent. You can disable analytics and remove theclient_idat any time via Settings → Privacy → Disable analytics, or by settingNOPARROT_TELEMETRY=0.
Because we store only strictly-necessary cookies plus functional and analytics entries that require your opt-in, no consent banner is displayed — there is nothing non-essential stored on your device until you choose to enable it. We also honour the Do Not Track and Global Privacy Control signals (see Section 6).
4. Hardware fingerprint
If you activate a Pro/Team license on a desktop or CLI installation of the Software (not the web app), the Software reads stable hardware identifiers (motherboard UUID, CPU ID) and stores a one-way SHA-256 hash. This is not a cookie but a technically similar access to information on your terminal equipment under the ePrivacy Directive.
- We present a clear notice before activation. Reading these identifiers is strictly necessary to deliver the device-licensing function you requested (enforcing the per-licence device limit), which falls within the “strictly necessary” exemption of ePrivacy Art. 5(3); you may decline and use the Free tier instead, which does not require activation.
- The resulting hash is stored locally and (in hashed form) on our servers, and is processed on the basis of our legitimate interest in licence enforcement (Art. 6(1)(f) GDPR).
- See Privacy Policy §2.3 for full details.
5. How to control cookies
You can control cookies through your browser:
- Chrome: Settings → Privacy and security → Cookies and other site data
- Firefox: Settings → Privacy & Security → Cookies and Site Data
- Safari: Preferences → Privacy → Manage Website Data
- Edge: Settings → Cookies and site permissions
You can also use browser plugins like uBlock Origin, Privacy Badger, or similar tools.
Note: Blocking strictly-necessary cookies (noparrot_session, Cloudflare cookies) will
prevent the Service from functioning correctly.
For functional preferences, use the in-app Settings page to disable them:
- Settings → Privacy → Disable telemetry — removes
client_id - Settings → Theme — controls
LocalStorage.theme
6. Do Not Track
We honour the Do Not Track (DNT) browser signal: when DNT is enabled, we treat your visit as if you had opted out of pseudonymous telemetry, regardless of your in-app settings.
We also honour the Global Privacy Control (GPC) signal in the same way.
7. Updates to this Cookie Policy
We may update this Cookie Policy if our cookie practices change. Material changes are communicated through banner notices on our website and via email to active subscribers.
The current version is always available at https://noparrot.com/legal/cookies.
8. Contact
- Privacy questions:
privacy@noparrot.com - General contact:
support@noparrot.com
This Cookie Policy is part of and governed by our Privacy Policy.