Cookie Policy

Last updated: 2026-06-24.

What cookies are and how we use them

A cookie is a small text file a website stores in your browser. AgentRoost uses two kinds: strictly-necessary cookies that the site can't work without, and one optional set of analytics cookies that are only ever stored if you agree to them. We do not run advertising trackers, and we never sell or share what we collect.

Strictly-necessary cookies (always on)

These keep you signed in, remember your preferences, and protect forms. They don't track you across other sites:

  • .AspNetCore.Antiforgery — CSRF protection on form posts. Lifetime: session.
  • .AspNetCore.Identity.Application — Authentication after sign-in. Lifetime: 14 days.
  • .AspNetCore.Cookies — Auth cookie. Lifetime: session/14 days.
  • __abp_locale — Your selected language preference. Lifetime: 1 year.
  • agh_theme — Dark/light mode preference. Lifetime: 1 year.
  • ar-consent — Remembers your cookie-banner choice so we don't ask again (stored in your browser's local storage, not a cookie). Lifetime: until you clear it.
  • cf_clearance — Cloudflare bot detection (set by Cloudflare). Lifetime: 30 days.
  • __cf_bm — Cloudflare bot management (set by Cloudflare). Lifetime: 30 minutes.

Analytics cookies (optional — off until you accept)

We use Google Analytics 4 to understand which pages are useful and how visitors find us. Under Google Consent Mode v2, analytics storage is denied by default: nothing is stored when you first arrive. A banner asks for your choice, and the analytics cookies below are set only if you select Accept:

  • _ga — Distinguishes unique visitors. Lifetime: 2 years.
  • _ga_LDPNZ4MJDZ — Keeps Google Analytics session state for our property. Lifetime: 2 years.

If you accept and later change your mind, use the Cookie settings link in the footer to withdraw consent — we immediately stop setting analytics cookies. Ad personalization stays denied either way; we do not share your data with Google for advertising.

Third-party cookies from sign-in providers

When you sign in with Google, Microsoft, Discord, or Casper Wallet, those providers may set their own cookies during the sign-in flow. We don't control those — see the relevant provider's privacy policy.

When we set cookies

Authentication cookies are set only after you sign in. Language and theme preferences are stored when you make those choices. Cloudflare cookies may be set on first page load anywhere on the site, as a function of their bot-detection service. The optional Google Analytics cookies are set only after you accept the banner.

Turning cookies off

You can reject analytics from the banner — and re-open it any time from the Cookie settings link in the footer — or clear cookies in your browser entirely. If you clear strictly-necessary cookies you'll be signed out and your language/theme preferences will reset. The site stays functional without them, but you won't be able to sign in.

Changes

If we add or change cookies, we'll update this page. For anything beyond strictly-necessary cookies, we'll keep asking for your consent through the banner before the cookie is set.