This Cookie Policy describes the use of cookies and similar storage technologies on the Pyract Forge website at forge.pyract.com ("the Site"), operated by Break Space Inc. (d/b/a Pyract).
1. The short version
The Site does not set any cookies of its own. We do not use Google Analytics, Meta Pixel, Hotjar, LinkedIn Insight Tag, or any third-party behavioural tracking. There is no cookie banner because there is nothing to consent to.
If your browser ever shows cookies set by forge.pyract.com, that change has been documented in this policy with at least 14 days' notice before it took effect.
2. What about the Forge product itself?
The product application — accessed by paying customers under a separate Master Service Agreement — uses a small number of strictly necessary cookies to keep users signed in and to protect against cross-site request forgery. Those cookies are:
- Session cookie — a signed authentication token, set on successful sign-in, expires when the session ends or after a configurable inactivity period (default 8 hours).
- CSRF token cookie — protects forms against cross-site request forgery; expires with the session.
Both are first-party, set with HttpOnly, Secure, and SameSite=Lax, and are not used for tracking, profiling, or advertising. They cannot be disabled while using the product because the product cannot function without them.
3. Third-party services on the marketing Site
The Site is built as a static page and loads two assets from third-party content delivery networks:
- Tailwind CSS Play CDN — used to render the page's styling. We do not pass identifiable information to the CDN. Standard server logs at the CDN may record the requesting IP address as a routine part of HTTP delivery.
If you would prefer not to load any third-party assets at all, the Site is functional with JavaScript disabled (the page will look unstyled but the content remains readable).
4. Server logs
Our web server records request metadata (IP address, user-agent, request path, response status, timestamp) for security and operational reasons. These logs are not cookies, and they are not associated with any tracking identifier. We retain them for 30 days. See section 2 of our Privacy Policy for details.
5. "Do Not Track" and Global Privacy Control
Because we don't track, we have nothing to do with your browser's "Do Not Track" or Global Privacy Control signal — but we honour the spirit of both. If a future version of the Site adds analytics, we will respect those signals and we will update this policy first.
6. Changes to this policy
If we ever start using cookies or tracking on the Site, we'll update this policy at least 14 days before the change takes effect, surface a notice on the Site, and (if applicable to your jurisdiction) ask for your consent before setting any non-strictly-necessary cookies.
7. Contact
Questions about cookies on this Site or in the Forge product: privacy@pyract.com.