Which cookies BlueList.ai sets, why, and how to control them.
Cookies are small text files a website stores in your browser. They let the site remember things between page loads and visits — whether you’re signed in, which preferences you set, and how visitors move through the site in aggregate. “Similar technologies” like localStorage serve the same purpose and are covered by this policy.
We use only two categories of cookies on BlueList.ai. We do not run advertising cookies, cross-site tracking, or behavioral retargeting pixels.
| Name | Category | Purpose | Retention |
|---|---|---|---|
| bluelist_consent_v1 | Strictly necessary | Stores your cookie-consent choice (analytics on/off) so we don’t re-ask on every visit. Stored in localStorage, not a cookie server-side. |
12 months |
| firebaseLocalStorage / session cookies | Strictly necessary | Set by Firebase Authentication when you sign into the client portal. Keeps you logged in across page loads. | Session – up to 14 days |
| _ga | Analytics | Google Analytics 4. Distinguishes unique visitors in aggregate traffic reports. Set only after you opt in. | 24 months |
| _ga_JCFFHMYSLL | Analytics | Google Analytics 4 session state for our specific GA property. Set only after you opt in. | 24 months |
We do not set Facebook Pixel, LinkedIn Insight Tag, Google Ads conversion cookies, or any other advertising identifiers.
On your first visit to BlueList.ai, we show a consent banner with three choices:
We implement Google Consent Mode v2. This means Google’s analytics tag loads on every page but is instructed, before it does anything, that analytics_storage, ad_storage, ad_user_data, and ad_personalization are all denied by default. No analytics cookies are written and no identifying data is sent to Google until you explicitly opt in. If you opt in, we send a consent update and Google Analytics begins collecting aggregate traffic data.
Your choice is stored locally in your browser under bluelist_consent_v1. Clearing your browser storage resets it and we will ask again.
The only third-party that receives data through cookies or similar technologies from bluelist.ai is Google LLC, via Google Analytics 4, and only after you opt in. Google processes this data under its own terms and privacy policy. We have configured GA4 with IP anonymization and without Google Signals or advertising features.
Firebase Authentication (also a Google product) handles client-portal sign-in and sets session cookies that are strictly necessary for portal functionality. No advertising data is shared with Firebase.
We respect the Global Privacy Control (GPC) signal. If your browser transmits GPC, we treat that as an opt-out of analytics and will not load Google Analytics, even if you have previously accepted. The legacy Do Not Track header is not a formal standard; we do not rely on it, but our GPC handling covers the same intent.
We will update this page whenever we add, remove, or change the cookies we use. Material changes will update the “Last updated” date and, where your stored consent would no longer be valid under the new configuration, we will re-prompt you.
Questions about cookies or tracking on BlueList.ai:
BlueList.ai LLC
Privacy Inquiries
privacy@bluelist.ai
For the broader data practices this sits under, see our Privacy Policy.
Disclaimer. This Cookie Policy is published by BlueList.ai LLC for transparency. It does not constitute legal advice.