Cookie Policy
Last updated: 14 April 20261. What Are Cookies
Cookies are small text files stored on your device by your web browser. They are used to remember preferences, maintain sessions, and collect usage information. Similar technologies include localStorage, sessionStorage, and IndexedDB, which are also covered by this policy.
2. Cookies and Similar Technologies We Use
Essential Required for Root Notes to function. • Firebase Auth session tokens — keep you signed in across page loads • IndexedDB — stores your projects, chord progressions, and recordings locally for offline use • localStorage device.id — identifies this browser for device-sync features Functional Remember your preferences so the app behaves the way you left it. • Cookie spelling-pref (1 year) — your chosen British / American spelling preference • Cookie spelling-detected (30 days) — auto-detected locale so we don't re-detect on every visit • sessionStorage spelling-inferred — locale inferred from the URL for the current session • localStorage theme — your light / dark theme choice • localStorage rn:auth-hint — remembers when you last signed in so the app can restore your session faster (up to 30 days) • localStorage — dismissed banners (e.g. the geolocation banner), view-mode and sort preferences, sidebar state, and onboarding flags • sessionStorage — cached device audio-capability probe so we don't re-run the check every navigation Analytics Help us understand how the app is used. These cookies are set on page load via the Google tag (gtag.js). We run Google Consent Mode v2 with analytics_storage granted and ad_storage, ad_user_data, and ad_personalization denied — we do not run advertising cookies. We do not currently run a cookie-consent banner. • _ga, _ga_<id> — Google Analytics 4 cookies (set by the Google tag / gtag.js using a Firebase measurement ID) used to distinguish users and sessions • Measurement and attribution cookies set by the Google tag (gtag.js) Error Monitoring Help us detect and fix issues. • Sentry session cookies — track error sessions for debugging • Sentry replay cookies — capture session replay data on sessions where an error is recorded (error sessions only)
3. Third-Party Cookies
Google (via Firebase, Google Sign-In, and the Google tag/gtag.js loader) — Sets cookies for authentication, analytics, and measurement. The Google tag loader fetches scripts from googletagmanager.com and may set cookies on that domain. See Google's cookie policy. Sentry — Sets cookies for error tracking and session replay. See Sentry's privacy policy. Stripe — When paid plans are available, Stripe may set cookies for fraud detection and payment security during checkout. See Stripe's cookie policy. Other third parties we work with (ImprovMX for server-side transactional email, Vercel for hosting, Gravatar for account avatars) do not set cookies through the Root Notes web app. See our Privacy Policy for the full sub-processor list.
4. Managing Cookies
You can manage cookies through your browser settings. Most browsers allow you to block or delete cookies. Please note that blocking essential cookies may prevent Root Notes from functioning properly. To opt out of Google Analytics collection in your browser, you can install the Google Analytics Opt-out Browser Add-on. To object to analytics processing more broadly, email privacy@rootnotes.me.
5. Contact
For questions about our use of cookies, reach out to us at privacy@rootnotes.me.