Cookie Policy
Last updated 17 June 2026
Xello uses cookies only where they are strictly necessary to run the service. We do not use analytics, advertising or third-party tracking cookies, so no cookie consent banner is required.
Cookies we set
| Cookie | Purpose | Duration |
|---|---|---|
session | Keeps you signed in (encrypted JWT). HttpOnly, Secure, SameSite=Lax. | 30 days |
trello_request_token / trello_request_secret | Temporary, during the Trello sign-in (OAuth) flow only. HttpOnly. | ~10 minutes |
invitation_token | Carries an invitation through sign-up, when you arrive via an invite link. HttpOnly. | 1 hour |
pending_plan | Remembers a plan you picked before signing in, to resume checkout. | Short-lived |
What we do not use
No analytics cookies, no advertising or retargeting pixels, no third-party tracking. Because every cookie above is strictly necessary to deliver a service you asked for, we rely on the ePrivacy exemption and do not show a consent banner. If we ever add analytics, we will add a consent mechanism first.
Contact
Questions about cookies: privacy@xello.pro.