We use the minimum set of cookies and similar storage needed to make the product work. We don't use advertising cookies. We don't use cross-site trackers. The list below is the full list
Strictly necessary
- Supabase auth cookies (
sb-*) · Keep you signed in across pages. Set when you complete the magic-link flow. Required to use anything past the public marketing pages - Cookie-choice flag · A single localStorage entry (
mbb-ready:cookie-choice) that remembers whether you said yes or no to analytics. No personal data
Optional · analytics
If you accept analytics on the banner, we load Vercel Analytics to count page views and identify broken pages. No advertising cookies, no fingerprinting, no cross-site tracking. If you reject analytics, no Vercel Analytics scripts are loaded at all
Third parties that process your data
- Supabase · authentication, database. Stores your email, your name, your case sessions, transcripts, and feedback
- OpenAI · large language model that marks your case. Receives your transcript for scoring. OpenAI's API data policy excludes API content from model training
- ElevenLabs · voice agent platform. Powers Mira's speech, transcribes yours in real time, and routes turns to our LLM endpoint. Audio is deleted after 30 days
- Vercel · hosting and serverless compute. Also serves Vercel Analytics if you opt in
Changes
If we add a new cookie or third party that touches your data, this page will be updated and we'll email you before the change takes effect