Cookie Policy
Last updated: 2026-04-01
We use a minimal set of cookies — only those strictly necessary to operate the Service. We do not set marketing or analytics cookies on the application surface.
Strictly necessary cookies
| Name | Purpose | Lifetime |
|---|---|---|
gigamcp_session | Sealed-session cookie issued by WorkOS AuthKit. AES-GCM encrypted with a per-environment secret. Without it you can't sign in. | 7 days, rolling |
gigamcp_active_tenant | Stores the slug of the workspace you most recently selected so you don't have to pick again on every page load. | 30 days |
gigamcp_workos_state | Anti-CSRF token for the WorkOS OAuth callback. Set immediately before the redirect, cleared as soon as the callback completes. | 5 minutes |
gigamcp_oauth_state | Anti-CSRF token for personal-OAuth flows (Google Drive, GitHub). Same usage profile as the WorkOS state cookie above. | 5 minutes |
Marketing site cookies
The marketing pages on gigamcp.io currently set nocookies at all. If we add visitor analytics in the future, this page will be updated and a consent banner will appear.
How to disable cookies
Because all cookies above are strictly necessary, disabling them in your browser will prevent you from signing in to or using the Service. You can still browse the marketing site and read documentation without cookies.
Contact
Questions: privacy@gigamcp.io.