Legal
Cookie Policy
Last updated: 18 June 2026
This policy explains how MLR PreCheck uses cookies, local storage, session storage, pixels, tags and similar browser technologies. It should be read with the Privacy Notice.
1. Who operates the site
The site is operated by Lee Freeman, a sole trader trading as MLR PreCheck, of 54 Chestnut Lane, Ashford, Kent, United Kingdom. Privacy questions may be sent to [email protected].
2. Necessary and user-requested storage
Some browser storage is necessary to sign users in, protect accounts and provide a feature the user has requested. These items do not require consent where the applicable legal exception applies, but we still explain them clearly.
| Item | Provider | Purpose | Storage type | Retention |
|---|---|---|---|---|
| Authentication session and refresh data | Supabase (first party) | Keep an authenticated user signed in and refresh the session securely. | Local storage used by Supabase Auth (sb-* keys). | Until sign-out or the session expires under the configured maximum. |
| Cookie preference record (cc.cookies.v2) | MLR PreCheck (first party) | Remember whether non-essential technologies were accepted, rejected or customised, and the policy version that was shown. | Local storage. | Until the user changes the choice through Cookie settings or clears site data. |
| Anonymous consent identifier (cc.anon_id) | MLR PreCheck (first party) | Pair the consent record with the consent log entry so a choice can be evidenced. | Local storage. | Until the user clears site data. |
| Volatile-session flag | MLR PreCheck (first party) | End the session when the browser or tab closes where the user has not selected persistent sign-in. | Local storage. | Until the browser or tab closes. |
| Spell-check language | MLR PreCheck (first party) | Remember the language selected by the user. | Local storage. | Until the user changes it or clears site data. |
| Remembered email or workspace address | MLR PreCheck (first party) | Pre-fill a sign-in field or return to a branded sign-in page after the user chooses that feature. | Local storage. | Until the user changes it, signs in differently or clears site data. |
3. Advertising technologies
Non-essential advertising technology is disabled by default. It loads only after the visitor actively accepts the Advertising category. Rejecting is as easy as accepting.
The site currently uses no analytics tag. If we later add an analytics provider this policy and the consent control will be updated before the technology loads.
| Provider | Purpose | Identifiers or technology | Maximum retention | Consent category |
|---|---|---|---|---|
| Meta Pixel (Meta Platforms Ireland Limited) | Measure advertising performance and reach for campaigns we run on Meta platforms. | Third-party cookies set on facebook.com (_fbp first-party companion cookie) and the fbevents.js script loaded from connect.facebook.net. | _fbp: up to 90 days; third-party Meta cookies: up to the period stated in Meta's current cookie documentation. | Advertising |
4. Services that do not set tracking technologies in the visitor’s browser
Google Search Console may be used to understand how the site appears in Google search. It uses data collected by Google from its own search service and does not place a visitor-tracking cookie on MLR PreCheck solely because Search Console is configured.
Cloudflare provides delivery and security functions. Where Cloudflare’s active configuration sets the strictly necessary __cf_bm bot-management cookie (default lifetime approximately 30 minutes), it is used only for security and bot mitigation.
5. Your choices
The first consent control offers equally prominent options to Accept all non-essential, Reject all non-essential and Manage choices. Non-essential categories are off by default.
The Cookie settings link in the footer reopens the preference control on every public and authenticated page. You can withdraw consent as easily as you gave it. Withdrawal prevents future non-essential tracking but does not make earlier lawful processing unlawful.
Clearing browser site data may also reset the choice, sign you out and remove saved preferences, but you do not need to clear browser storage in order to withdraw consent - the Cookie settings link in the footer is the supported way to change your choice.
6. Changes
If a new non-essential technology, provider or purpose is added, this policy and the consent control will be updated before the technology loads. Where the change affects an existing choice, the site will ask for a fresh choice.