Cookie Policy
Last updated: July 9, 2026 · Operated by Bad Decision (Lagos, Nigeria) · support@baddecision.app
This Cookie Policy explains how Bad Decision ("Bad Decision", "we", "us") uses cookies and similar technologies on our website at baddecision.app and our dashboard at dashboard.baddecision.app (collectively, the "Service"). This policy is part of our Privacy Policy.
1. What Are Cookies?
Cookies are small text files placed on your device when you visit a website. They allow the website to remember your actions and preferences over time, so you don't have to re-enter information every time you visit.
We use the following types of technologies:
- HTTP cookies: Small files stored in your browser.
- Local storage and session storage: Browser storage for things like your current theme (light/dark) and in-progress form data.
- Pixel tags and web beacons: Tiny transparent images used to track email opens and page views.
2. Types of Cookies We Use
2.1 Strictly Necessary Cookies
These cookies are essential for the Service to function. Without them, you cannot log in, maintain your session, or access protected features. They cannot be turned off.
- Authentication cookies: Set when you log in. Used by WorkOS to maintain your session across pages. Duration: 7 days (refreshed on each login).
- CSRF token cookies: Used to prevent cross-site request forgery attacks on form submissions. Duration: session.
- Cookie consent cookie: Remembers your cookie preferences. Duration: 12 months.
2.2 Functional Cookies
These cookies enable enhanced functionality and personalization. They are optional.
- Theme preference: Remembers your light/dark theme choice. Duration: 12 months.
- Language preference: Remembers your selected language (if we offer multi-language support in the future). Duration: 12 months.
- Recently viewed leads: Stores IDs of leads you recently viewed for the command palette. Duration: 30 days.
2.3 Analytics Cookies
These cookies help us understand how visitors use the Service, so we can improve it. They are optional and only set with your consent.
- PostHog analytics: Tracks page views, feature usage, and conversion funnels. Duration: 12 months. Opt-out available.
- Sentry error tracking: Captures JavaScript errors for debugging. Anonymized. Duration: session.
2.4 Email Tracking Pixels
When you send cold email campaigns through Bad Decision, we may include a 1x1 transparent pixel in the email body to track opens. This pixel sets a cookie on the recipient's email client (if their client supports images). Recipients can disable image loading in their email client to opt out.
Note: Plain-text cold emails (the recommended format for cold outreach) do not include tracking pixels. Open tracking is only available on HTML emails, which are not recommended for cold outreach due to deliverability concerns.
2.5 Cookies We Do NOT Use
- Advertising cookies: We do not use Google Ads, Facebook Pixel, or any other advertising network cookies.
- Third-party social media cookies: We do not embed social media widgets that set tracking cookies (no Twitter embeds, no Facebook Like buttons).
- Cross-site tracking cookies: We do not track you across other websites.
3. Third-Party Cookies
Some third-party services we use may set their own cookies when you interact with them:
- WorkOS: Sets authentication cookies when you log in. See WorkOS Privacy Policy.
- Dodo Payments: Sets session cookies during checkout. See Dodo Payments Privacy Policy.
- Vercel: May set analytics cookies on our marketing site (if enabled). See Vercel Privacy Policy.
- Cloudflare: Sets a security cookie (__cfduid) for bot detection. See Cloudflare Privacy Policy.
We do not control these third-party cookies. Review their privacy policies for details.
4. Cookie Duration
- Session cookies: Deleted when you close your browser.
- Persistent cookies: Remain on your device for the duration listed above (typically 7 days to 12 months).
5. Managing Cookies
5.1 In-Service Cookie Preferences
On your first visit to dashboard.baddecision.app, we show a cookie consent banner. You can choose to accept all cookies, accept only strictly necessary cookies, or customize your preferences. You can change your preferences at any time in Settings → Privacy → Cookie Preferences.
5.2 Browser Controls
You can also control cookies through your browser settings. Most browsers allow you to:
- View all cookies currently stored on your device.
- Delete individual or all cookies.
- Block all cookies or only third-party cookies.
- Set preferences for specific websites.
Instructions for popular browsers:
Note: Blocking strictly necessary cookies will prevent you from logging in or using the Service.
5.3 Opt-Out of Analytics
If you do not want us to collect analytics data, you can:
- Reject analytics cookies in the cookie consent banner.
- Disable analytics in Settings → Privacy → Cookie Preferences.
- Install a content blocker like uBlock Origin or Privacy Badger in your browser.
- Enable "Do Not Track" (DNT) in your browser — we respect this signal.
6. Cookie List
Here is a complete list of cookies we set, with their purpose and duration:
| Cookie name | Purpose | Type | Duration |
|---|---|---|---|
__clerk_db_jwt | Authentication session | Strictly necessary | 7 days |
__client_uat | Authentication refresh | Strictly necessary | 1 hour |
csrf_token | CSRF protection | Strictly necessary | Session |
cookie_consent | Stores your cookie preferences | Strictly necessary | 12 months |
theme | Light/dark theme choice | Functional | 12 months |
ld_active_view | Last viewed dashboard section | Functional | 30 days |
ld_recent_leads | Recently viewed leads for command palette | Functional | 30 days |
ph_* (PostHog) | Analytics | Analytics (opt-in) | 12 months |
7. Updates to This Policy
We may update this Cookie Policy from time to time. If we add new cookies or change how we use existing ones, we will update this page and notify you by email if the change is material.
8. Contact Us
Questions about cookies? Email support@baddecision.app.
Email us at support@baddecision.app and we'll get back to you within 24 hours.