Cookie Policy

1. What Are Cookies?

Cookies are small text files containing a string of characters that are sent to your computer or mobile device when you visit a website or access a web-based application. They are stored by your browser and help the website recognize your device, maintain active sessions, and save specific user preferences.

2. Our Commitment: No Tracking or Advertising Cookies

Because Archis is designed to process highly confidential and privileged legal data, we do not utilize any third-party marketing, analytics, profiling, or cross-site tracking cookies. We do not sell or trade cookie-related data. Every cookie deployed by our platform is classified as strictly necessary for security and operational integrity.

3. Necessary Cookies We Deploy

The platform uses the following essential cookies to maintain secure sessions and prevent unauthorized access:

• `sb-access-token`: This cookie stores the active JSON Web Token (JWT) representing your authenticated session. It is sent with API requests to confirm your identity and enforce Row-Level Security (RLS) policies.
• `sb-refresh-token`: This cookie stores the session refresh token. It allows your browser to securely renew and rotate your active access credentials, ensuring that you remain logged in throughout the workday without being forced to input your password on every page reload or session timeout.

4. Essential Security and Anti-Forgery Scoping

In addition to authentication cookies, the platform utilizes technical storage parameters to enforce:

• Cross-Site Request Forgery (CSRF) Protection: Safeguarding your authenticated workspace against malicious websites attempting to spoof requests to our servers.
• Role Scoping and Tenancy: Ensuring that user queries are correctly bound to your assigned workspace (Firm ID) and role permissions (Lawyer, Paralegal, Secretary).
• Load Balancer Routing: Ensuring that browser requests are efficiently and securely routed to the correct private server instances.

5. Managing Your Cookie Preferences

Because the cookies we utilize are strictly necessary for the secure delivery and basic operation of the Service, they cannot be customized or disabled through our platform. You can choose to configure your web browser to block or delete cookies. However, if you disable all cookies, you will be unable to log in, verify your identity, or use any features of the Archis platform.

6. Updates to This Policy

We may update this Cookie Policy from time to time to reflect modifications in our session management methods or security frameworks. We encourage you to review this policy periodically to stay informed about our use of essential cookies.

7. Contact Us

If you have any questions or require additional technical information regarding our use of cookies and storage tokens, please contact our support team at: