Legal / Cookies

Cookies. The boring kind.

Not the good kind. The digital kind. This page explains what small files this site might leave on your device, why they are there, and what you can do about them. Spoiler: there are very few, and none of them are spying on you.

What a cookie actually is

A cookie is a small text file that a website saves to your browser. It is not a programme. It cannot do anything on its own. It is just a note your browser keeps so a site can remember something about your visit.

Some cookies are necessary for a site to work. Others are used to track you across the internet and sell that information to advertisers. This site uses the first kind. Not the second.

What this site does and does not do

No analytics. No tracking. No advertising. This site does not run Google Analytics, Meta Pixel, or any other tracking tool. I do not know how many people visit, which pages they read, where they came from, or what they did next. I have chosen not to know.

There is no cookie consent banner on this site because there is nothing to consent to beyond the strictly necessary. Under UK GDPR and PECR, strictly necessary cookies do not require consent.

Cookies that may be set

The following cookies may be present depending on how you interact with the site.

Cookie	Set by	Purpose	Duration	Type
__cf_bm	Cloudflare	Bot management and abuse prevention. Distinguishes humans from automated traffic. Required for the site to be served securely.	30 minutes	Essential
cf_clearance	Cloudflare	Set if a security challenge is triggered (rare). Records that you have passed the check so you are not challenged repeatedly.	Session	Essential
__fs_*	Formspree	May be set if you submit the contact form. Used to prevent duplicate submissions and manage form state.	Session	Essential

That is the complete list. If you spot something in your browser dev tools that is not here, it is almost certainly set by a browser extension, your antivirus, or your ISP — not by this site.

Third-party requests

When you visit, your browser will make requests to a small number of third-party domains to load fonts and handle the contact form. These are not cookies, but they are worth knowing about:

fonts.googleapis.com and fonts.gstatic.com — to load Fraunces, Inter Tight, and JetBrains Mono. Google may log the request. If you would rather not, browser extensions like uBlock Origin can block font CDN requests.
unpkg.com — to load the Formspree Ajax library. Only loaded on pages with the contact form.
formspree.io — your message data is sent here when you submit the contact form and forwarded to my inbox.

How to manage or delete cookies

Every browser has a way to view, manage, and delete cookies. Here are the quick links for the main ones:

Deleting or blocking the Cloudflare cookies may cause security checks to trigger more frequently. Blocking the Formspree cookie means the form may let you submit duplicate messages. Neither will break anything critical.

Changes to this policy

If I add a new service that sets cookies, I will update this table before deploying it. The date below reflects the last meaningful change.

Last updated: 22 April 2026.

Questions

If something here does not make sense, or you want to know something this page does not cover: help@aasscc.how. I wrote this myself, so I can actually answer questions about it.