Cookie Policy

Effective date: June 25, 2025

Finent uses a minimal set of cookies that are strictly necessary for the application to work. This page explains exactly what those cookies are, why we use them, and how you can control them.

1 What Are Cookies

Cookies are small text files placed on your device by a website when you visit it. They are widely used to make websites work, remember your preferences, and provide information to the site owner.

Cookies can be session cookies (deleted when you close your browser) or persistent cookies (stored for a set period or until you clear them). They can be set by the website you are visiting (first-party cookies) or by third-party services embedded on that page (third-party cookies).

2 Cookies We Use

Finent sets only the cookies listed below. All of them are first-party and strictly necessary — the application cannot function correctly without them.

Cookie name	Purpose	Duration	Type
`authjs.session-token`	Keeps you signed in to your Finent account across browser sessions	14 days (sliding expiry — reset on each visit)	Persistent, HTTP-only, Secure
`authjs.csrf-token`	Prevents cross-site request forgery (CSRF) attacks on form submissions	Session (deleted when browser is closed)	Session, HTTP-only, Secure

Your cookie consent acknowledgement is stored in your browser's localStorage rather than in a cookie. It is never transmitted to our server and is cleared when you clear your browser's site data.

3 Why These Cookies Are Necessary

Authentication cookie

Without the session cookie, you would be required to log in on every single page request. It is issued upon a successful sign-in and validated on every subsequent request to confirm your identity.

Anti-forgery cookie

Any action that changes data (saving an expense, updating your profile, etc.) must be accompanied by a valid anti-forgery token. The cookie and a matching hidden form field work together to verify that the request originated from our own pages, protecting your account from malicious third-party sites.

Theme preference cookie

Finent reads this cookie on every page load to apply your chosen theme before the page is rendered, preventing a flash of the wrong colour scheme. Without it, your theme choice would be forgotten every time you visit.

4 Cookies We Do Not Use

Finent does not use cookies for any of the following purposes:

Advertising or retargeting
Cross-site behavioural tracking
Analytics or usage statistics (e.g. Google Analytics)
Social media integrations
A/B testing or personalisation beyond your chosen theme

We do not share any cookie data with third parties.

5 How to Control Cookies

You can control and delete cookies through your browser settings. The links below explain how to manage cookies in the most common browsers:

Blocking or deleting Finent's strictly necessary cookies will prevent the application from working correctly. You will not be able to remain signed in or submit forms safely if these cookies are disabled.

6 Changes to This Policy

We may update this Cookie Policy from time to time. The effective date at the top of this page will reflect when the policy was last revised. Continued use of Finent after changes are posted constitutes your acceptance of the updated policy.