This page explains what cookies and similar browser storage Storeshots uses, why we use them, and how you can control or remove them. Storeshots is designed to do as much as possible on your own device — so there is very little to disclose, but we want to be fully transparent.
What are cookies?
Cookies are small text files a website can place on your device. Browsers also offer related mechanisms — localStorage, sessionStorage, and IndexedDB — which behave similarly. In this policy, the word "cookies" covers all of them.
Categories we use
Storeshots groups storage into four categories. You can toggle the non-essential ones any time via the link in the footer.
Strictly necessary
Always on — required for the editor to work. No opt-out needed under GDPR/ePrivacy.
| Name | Type | Purpose | Retention |
|---|---|---|---|
storeshots:* | localStorage | Editor configuration: selected device, orientation, slide copy, palette, slide ordering. | Until cleared by you |
storeshots:apiKey:* | sessionStorage | Your AI provider API key, held only for the current browser tab so you don't have to paste it repeatedly. | Cleared when you close the tab |
storeshots:cookie-consent | localStorage | Remembers which categories you have accepted or rejected so we don't ask again on every visit. | Until policy version changes or you revoke consent |
Functional · optional
Non-essential preferences we would like to remember across visits — for example the last device you designed for, UI language, or a dark-mode toggle. Disabling this category will not break the editor.
Analytics · optional
Anonymous, aggregated usage data. We do not currently load any analytics script; when we do, it will be privacy-first (for example Plausible or a self-hosted equivalent) and gated behind this category.
Marketing · optional
Reserved for future use — for example referral attribution for Pro announcements. We will never share data with ad networks and we will never set third-party advertising cookies.
Third parties
Storeshots sends requests directly from your browser to the AI provider whose API key you entered (Anthropic or OpenRouter). Those providers may set their own cookies on their own domains:
Storeshots does not share any identifier with these providers beyond the API request you initiate.
Do Not Track
If your browser sends a DNT: 1 signal, Storeshots pre-selects Reject all for the Analytics and Marketing categories. You can still opt back in from the settings panel if you want.
Self-hosted deployments
Because Storeshots is released under the AGPL-3.0 license, anyone can self-host a copy. If you are visiting a self-hosted instance, the operator of that instance is responsible for its cookie policy and any additional tracking they may have added. This policy describes the official site at storeshots.org only.
How to clear cookies
You can remove all Storeshots storage any time through your browser's privacy settings, or by clicking Clear site data in the developer tools. You can also revoke your consent via the link in the footer.
Changes to this policy
If we materially change this policy we will bump the internal policy version, which invalidates your previous consent and prompts you to review the new categories. The "Last updated" date above always reflects the current version.