Loading SpecCV…
Last updated: 30 April 2026
This Cookie Policy explains what cookies SpecCV places on your device, why, and how you can control them. It should be read alongside our Privacy Policy.
A cookie is a small text file placed on your device by a website when you visit it. Cookies allow the website to remember information about your visit — for example, that you are signed in — making your next visit easier and the Service more useful to you.
SpecCV uses the minimum number of cookies required to operate the Service. We do not use advertising cookies, social-media tracking pixels, or third-party analytics cookies (such as Google Analytics). The cookies we set fall into two categories:
Essential for the website to work. These cannot be turned off without breaking core functionality such as signing in and staying authenticated.
Set by Stripe during checkout to prevent fraud. These are only active when you visit the pricing or checkout page.
| Cookie name | Provider | Type | Purpose | Duration |
|---|---|---|---|---|
| next-auth.session-token | SpecCV | Strictly Necessary | Keeps you signed in across page loads. Without this cookie the Service cannot function. | Session (until sign-out) or 30 days if 'keep me signed in' is selected. |
| next-auth.csrf-token | SpecCV | Strictly Necessary | Prevents cross-site request forgery (CSRF) attacks during sign-in and sign-out. | Session. |
| next-auth.callback-url | SpecCV | Strictly Necessary | Remembers where to redirect you after completing authentication. | Session. |
| __stripe_mid | Stripe | Payment | Fraud prevention — set by Stripe to identify a browser across payment sessions. | 1 year. |
| __stripe_sid | Stripe | Payment | Fraud prevention — set by Stripe during a checkout session. | 30 minutes. |
Cookie names may vary slightly depending on the environment (e.g. __Secure-next-auth.session-token when served over HTTPS).
SpecCV may use your browser's localStorage to store UI preferences (such as selected template or tone) on your device. This data is never transmitted to our serversand is cleared when you clear your browser's site data.
Because SpecCV only uses strictly necessary and payment-fraud cookies, we do not show a cookie-consent banner — consent is not required for these categories under UK/EU law (PECR Regulation 6(2)(b) for strictly necessary cookies; legitimate interests for fraud-prevention cookies during a checkout the user initiated).
You can still control cookies using your browser settings:
Note: Blocking strictly necessary cookies will prevent you from signing in and using the Service.
If you have questions about our use of cookies, contact us at privacy@speccv.com or through our contact form.