Cookie Policy
Effective date: April 1, 2026
This Cookie Policy explains how Pearson Media LLC (“GradeThread,” “we,” “us,” or “our”) uses cookies and similar technologies on gradethread.com and within the FlipDesk workspace. It supplements our Privacy Policy.
1. What are cookies?
Cookies are small text files stored on your device by your browser when you visit a website. They let the site remember information about your visit. We also use similar technologies such as local storage, session storage, pixels, and SDKs, which we refer to collectively as “cookies” in this policy.
2. Cookies we use
2.1 Strictly necessary
Required to operate the Service, sign you in, keep you signed in, maintain session state, and protect against fraud and abuse. The Service will not function correctly without these.
- Supabase auth tokens — authentication and session continuity (stored in local storage with PKCE).
- Cloudflare — bot mitigation, DDoS protection, and edge routing.
- CSRF and security tokens — protect against cross-site request forgery on form submissions.
- UI preferences — theme, sidebar state, and onboarding progress.
2.2 Analytics and performance
Help us understand how visitors and signed-in users interact with the Service so we can improve it. These are not set until you enable the “Analytics” category (see Section 4).
- Google Analytics 4 — aggregate traffic and usage measurement. Loaded with Google Consent Mode defaulting to denied, so no analytics storage is used until you opt in.
- PostHog — product analytics (pageviews, feature usage, funnels). Not loaded at all until you opt in; its cookies and IDs typically expire within 12 months.
2.3 Diagnostics and error monitoring
- Sentry — captures crashes and stack traces so we can debug issues. We run Sentry under our legitimate interest in the security and reliability of the Service, with personally identifying data minimized: it is configured not to collect your IP address or attach default personal data. It does not place advertising cookies.
2.4 Payment processing
- Stripe — required for checkout, subscription management, fraud prevention, and PCI compliance on billing pages.
2.5 Marketing and advertising
If you enable the “Marketing” category, we may use advertising and remarketing technologies (such as Google Ads) to measure and personalize advertising. These are off by default and are never set unless you opt in (opt-in regions) or unless you have not opted out (opt-out regions). We do not otherwise sell your personal information. See Section 4 for how consent is requested where you are.
3. How long do cookies stay?
Session cookies expire when you close your browser. Persistent cookies remain until they expire or you delete them. The retention of each cookie depends on its purpose; for example, auth tokens are refreshed regularly, while UI preferences may persist for up to a year.
4. Your choices
How we ask for consent depends on where you are, based on a coarse country signal from your IP address (we do not store it for this purpose):
- EU, EEA, UK, Switzerland, and elsewhere. We show a consent banner and set no analytics or marketing cookies until you make a choice. You can accept all, reject all (just as easily), or choose categories individually.
- United States. Analytics and marketing may run subject to your right to opt out. Use the “Your Privacy Choices” control in the banner or the “Cookie settings” link in the footer to opt out.
- Change your mind anytime. Select “Cookie settings” in the site footer to reopen the preferences manager and change or withdraw your consent.
- Global Privacy Control. In the United States we automatically honor the GPC browser signal as a valid opt-out; where it is present we treat it as a request to opt out without asking again.
- Do Not Track. Because no common industry standard exists for honoring DNT signals, we do not respond to them.
- Browser controls. Most browsers let you block or delete cookies through their settings. Blocking strictly necessary cookies will break sign-in and other core features.
5. Changes to this policy
We may update this Cookie Policy from time to time. When we do, we will revise the “Effective date” above and, where required, provide additional notice.
6. Contact
Questions about cookies? Email [email protected].
