Cookie Policy
Last updated: 28 May 2025
This Cookie Policy explains what cookies and browser storage Rankodin uses, why, and how you can control them. We comply with the EU ePrivacy Directive and GDPR.
1. What are cookies
Cookies are small text files stored on your device by your browser when you visit a website. They allow the site to remember certain information between page loads or visits. We also use localStorage — a similar browser-side storage mechanism that never leaves your device.
2. Cookies and storage we use
| Name / Type | Purpose | Where stored | Expires | Consent needed |
|---|---|---|---|---|
| gsc_token | Stores your Google Search Console access token after you connect your account. httpOnly, encrypted — inaccessible to JavaScript. Deleted the moment you disconnect. | httpOnly cookie | 60 days (or on disconnect) | No — essential for the feature you explicitly activated |
| gsc_state | A one-time CSRF token used during the Google OAuth flow to prevent request forgery. Deleted immediately after sign-in completes. | httpOnly cookie | 10 minutes | No — essential security cookie |
| rankodin_history | Stores your last 60 scan results (domain, score, date) so the sidebar can show recent scans and the score history chart works. Never sent to our servers. | localStorage (your browser only) | Until you clear browser data | No — stays on your device only |
| rankodin_last_url | Remembers the last URL you audited so it pre-fills on your next visit. Never sent to our servers. | localStorage (your browser only) | Until you clear browser data | No — stays on your device only |
| rankodin_fixed_* | Tracks which issues you have marked as fixed for each domain (the checkboxes in the Action Plan). Never sent to our servers. | localStorage (your browser only) | Until you clear browser data | No — stays on your device only |
| rankodin_license | Stores your license key locally after you unlock the full report, so you do not have to enter it again. Never sent to our servers except for the one-time verification request. | localStorage (your browser only) | Until you clear browser data | No — stays on your device only |
3. What we do not use
Rankodin does not use:
- advertising or tracking cookies;
- third-party analytics cookies (e.g. Google Analytics);
- social media tracking pixels;
- fingerprinting or cross-site tracking of any kind.
4. Your choices
All cookies and localStorage items listed above are either strictly necessary for a feature you explicitly use (Google Search Console, license unlock) or stored entirely on your own device and never transmitted to us. None of them require consent under the ePrivacy Directive or GDPR, because:
- the httpOnly cookies are essential to the security of features you activated;
- localStorage data never leaves your browser.
You can clear any localStorage data at any time via your browser settings (Developer Tools → Application → Local Storage → rankodin.com → Clear). You can delete the GSC cookie by clicking Disconnect on the Search Console page.
5. Managing cookies in your browser
All major browsers allow you to view, block and delete cookies in their settings. Instructions for the most common browsers:
6. Changes
If we introduce new cookies or storage items in the future, we will update this page and the "last updated" date above. We will add a consent mechanism if we ever introduce non-essential cookies.
7. Contact
Questions about cookies or storage? support@rankodin.com