Home / Cookie Policy

Cookie Policy

Last updated: May 21, 2025 · This policy explains how ShortenFor.Me uses cookies and similar technologies.

        Short version: We use only essential cookies to keep you logged in and protect your account. If you use our free plan, you may see Google AdSense ads on redirect pages — those use advertising cookies. We do not use tracking or analytics cookies from third parties on our main website.
    

Contents

What Are Cookies?
How We Use Cookies
Cookies We Set
Third-Party Cookies
Google AdSense & Advertising
Your Cookie Choices
Do Not Track
Changes to This Policy
Contact Us

1. What Are Cookies?

Cookies are small text files that websites store on your device when you visit them. They are widely used to make websites work efficiently and to provide information to website owners. Cookies can be "persistent" (remaining on your device until they expire or you delete them) or "session" (deleted when you close your browser).

Similar technologies include:

Local storage / Session storage — browser-based storage (we do not use these)
Pixel tags / Web beacons — tiny images used for tracking (we do not use these on our main site)
Fingerprinting — identifying devices by characteristics (we do not use this)

2. How We Use Cookies

ShortenFor.Me uses cookies for the following purposes:

Authentication — keeping you logged in between page loads
Security — CSRF (Cross-Site Request Forgery) protection on all forms
Preferences — remembering session-level settings
Advertising — serving Google AdSense ads on interstitial redirect pages for free users (you can avoid these by upgrading to Premium)

We do not use cookies for:

Cross-site behavioural tracking or profiling
Third-party analytics (e.g. Google Analytics, Hotjar, Mixpanel)
Social media retargeting pixels
Selling browsing data to data brokers

3. Cookies We Set

The following cookies are set directly by ShortenFor.Me:

Cookie Name	Type	Duration	Purpose	Can I opt out?
`sfm_sess`	Essential	30 days (or when browser closes)	Maintains your login session. Without this cookie, you cannot stay logged in between pages.	No — this cookie is strictly necessary for the service to function. Blocking it means you cannot log in.
`csrf_token` (session)	Essential / Security	Session duration	Stored within the session cookie. Protects all forms against Cross-Site Request Forgery (CSRF) attacks.	No — required for security.
`mfa_pending_user_id` (session)	Essential	Session duration	Temporarily stores your user ID during the two-factor authentication verification step. Only set when you have 2FA enabled.	No — required for 2FA login flow.
`mfa_backup_codes` (session)	Essential	Single page load	Temporarily holds backup codes during 2FA setup so they can be shown once. Cleared immediately after display.	No — required for 2FA setup.
`redirect_after_login` (session)	Functional	Until login completes	Remembers which page you were trying to access before being redirected to the login page, so you are returned there after logging in.	No impact if cleared — you will be sent to the dashboard instead of your intended page.

All our own cookies are session-based or stored as part of a single encrypted session cookie — we do not set multiple tracking cookies or share session data with third parties.

4. Third-Party Cookies

Third-party cookies are set by domains other than https://shortenfor.me. We have minimal third-party cookie use:

Provider	Type	Where	Purpose	Privacy Policy
Google AdSense	Advertising	Interstitial redirect page (free users only)	Serving and measuring advertisements. May use your browsing history to show relevant ads.	Google Privacy Policy
Google OAuth	Functional	Login page (if you use Google sign-in)	Authenticating your Google account. Google may set cookies during the OAuth flow on their own domain.	Google Privacy Policy
Microsoft OAuth	Functional	Login page (if you use Microsoft sign-in)	Authenticating your Microsoft account. Microsoft may set cookies on their own domain during the OAuth flow.	Microsoft Privacy
Meta / Facebook OAuth	Functional	Login page (if you use Meta sign-in)	Authenticating your Meta/Facebook account. Meta may set cookies on their own domain during the OAuth flow.	Meta Cookie Policy
Stripe / Razorpay / PayPal	Functional	Checkout pages only	Processing payments securely. Payment providers may set fraud-prevention and session cookies on their own domains.	Respective provider privacy policies

Free users encounter an interstitial page when a short link is visited. This page displays a Google AdSense advertisement for 30 seconds before redirecting to the destination URL.

On this interstitial page, Google AdSense may set the following cookies:

Cookie	Purpose	Duration
`__gads`, `__gpi`	Google ad serving and measurement	13 months
`IDE`	Ad targeting and conversion measurement (DoubleClick)	13 months
`1P_JAR`	Google ad preferences and personalisation	1 month
`NID`	Google preferences and ad personalisation	6 months

How to avoid advertising cookies:

Upgrade to Premium — Premium subscribers get instant, ad-free redirects with no interstitial page and no advertising cookies
Use an ad blocker — browser extensions such as uBlock Origin will block AdSense cookies
Opt out of personalised ads — visit Google Ad Settings or optout.aboutads.info

6. Your Cookie Choices

6.1 Browser Settings

You can control and delete cookies through your browser settings. Note that blocking essential cookies will prevent you from logging in to ShortenFor.Me.

Chrome Firefox Safari Edge

6.2 Opt Out of Personalised Advertising

Google Ad Settings — control Google personalised advertising
YourAdChoices (DAA) — opt out of interest-based advertising from DAA members
Your Online Choices (EU) — opt out of targeted advertising (EU users)

6.3 Consent Withdrawal

If you previously consented to non-essential cookies and wish to withdraw that consent, you can clear your cookies via your browser settings. For advertising cookies specifically, use the opt-out links above.

7. Do Not Track

Some browsers offer a "Do Not Track" (DNT) setting that signals to websites that you do not wish to be tracked. Because there is no consistent industry standard for responding to DNT signals, ShortenFor.Me does not alter its practices based on DNT signals.

What we can confirm: we do not conduct cross-site behavioural tracking regardless of your DNT setting. The only potential tracking scenario is Google AdSense on interstitial pages for free users, which is governed by Google's own policies.

8. Changes to This Policy

We may update this Cookie Policy from time to time. Material changes will be announced via a notice on our website and, where appropriate, by email. The "Last updated" date at the top reflects when the policy was last revised.

We encourage you to review this policy periodically to stay informed about our use of cookies.

9. Contact Us

If you have questions about our use of cookies or this Cookie Policy, please contact us:

ShortenFor.Me
Email: admin@shortenfor.me
Website: https://shortenfor.me

This Cookie Policy was last updated on May 21, 2025.