Current status: ContactVault currently uses only essential cookies or equivalent storage mechanisms required for security, session integrity, mailbox-verified account access, and the applicant inbox. No marketing or analytics cookies are currently used.

Currently used signed session cookies: cvp (legacy signed account session routes), cva (legacy applicant dashboard session), and cv2_session (2.0 applicant inbox session). These are set with Secure, HttpOnly, and SameSite=Lax and expire according to server-side session configuration.

These cookies are used only to authenticate mailbox-verified access, secure applicant inbox sessions, and protect session integrity. They are not used for advertising, profiling, or cross-site tracking.

If optional cookie categories are introduced later, this page will be updated to explain them and provide any required controls.

Read the Privacy Policy