// LEGAL
Cookie Policy
Effective: April 25, 2026 · Last updated: April 25, 2026
Cookie Policy
Effective: April 25, 2026 Last updated: April 25, 2026 Entity: Central Uplift LLC, a Pennsylvania limited liability company Address: 37 Forsythe Rd, Pittsburgh, PA 15220 Contact for cookie questions: privacy@centraluplift.com
This Cookie Policy explains the small files — cookies, local-storage entries, and similar technologies — that centraluplift.com sets in your browser when you visit. It supplements our Privacy Policy with the specific names, purposes, and durations of every cookie in use as of the date above. If a value isn’t listed here, it isn’t set.
The short version: we set the cookies we need to keep the site fast and functioning, plus a small number of analytics cookies that help us understand which pages people read. We do not run advertising cookies. We do not sell what these cookies collect. You can turn off non-essential cookies in your browser, and we honor Do Not Track.
1. What a cookie is, and what counts
A cookie is a short text string a website asks your browser to store and send back on subsequent visits. We use the term broadly here to also include browser local-storage and session-storage entries, which work similarly for the purposes of this policy. Cookies are categorized below by who sets them (first-party = us, third-party = a subprocessor we use) and by what they do.
We do not currently set any advertising cookies, retargeting pixels, or social-network tracking pixels on centraluplift.com. If we ever do, this section and the table below will be updated and we will surface the change in our cookie banner.
2. Cookies we set today
The list below reflects every cookie centraluplift.com is configured to set as of the effective date. We update this list when we add, change, or remove a cookie.
| Cookie / storage key | Set by | First / third party | Purpose | Duration |
|---|---|---|---|---|
__cf_bm | Cloudflare | Third-party (essential) | Bot management. Cloudflare uses this to distinguish humans from automated traffic and protect the site from abuse. | 30 minutes |
cf_clearance | Cloudflare | Third-party (essential) | Clearance token issued after Cloudflare verifies a visitor is not a malicious bot. Set only when Cloudflare’s challenge is presented. | Up to 1 year |
ph_<project_token>_posthog | PostHog | Third-party (analytics) | Product analytics. Stores an anonymous device ID and basic visit metadata so we can understand which pages people read and how features are used. The cookie value contains no name, email, or phone number. | 1 year |
ph_persistence (local-storage) | PostHog | Third-party (analytics) | Persistence layer for the PostHog SDK. Holds the same anonymous identifiers used by the cookie above. | Until cleared |
ph_session_replay (local-storage) | PostHog | Third-party (analytics) | Session-replay buffer. Holds short-lived chunks of recorded interactions while a recording is being uploaded. Recordings exclude form inputs by default and never include passwords or payment information. | Cleared after upload (typically minutes) |
We do not set any first-party cookies of our own at this time. If we add authentication, billing, or preference cookies in the future — for example, when CU Command’s customer-facing application moves under a centraluplift.com subdomain — this table will be updated before the cookies go live.
3. Categories, in plain terms
Essential cookies. Used for security, fraud prevention, and core site functionality. The Cloudflare cookies above fall here. These cannot be turned off without breaking the site or making it unsafe to operate.
Analytics cookies. Used to understand aggregate site usage — which pages get traffic, where traffic comes from, where readers drop off. The PostHog cookie and local-storage entries above fall here. Turning these off does not change anything you see on the site; it just means we lose the data point.
Advertising / retargeting cookies. None set. If we ever add them, they will appear here and in our cookie banner first.
Functional / preference cookies. None set today. If we add a cookie banner that remembers your choice, that will appear here as a first-party essential cookie.
4. Future cookies — placeholder
The following cookies do not exist yet but will be set when the corresponding features go live. We list them now so this policy stays honest as the platform grows:
- Authentication cookies for the CU Command customer application (when the customer login moves to a centraluplift.com subdomain). These will be first-party, essential, HTTP-only, and Secure.
- Cookie consent cookie for visitors in jurisdictions where opt-in consent is required. Will store the categories you accepted, first-party, 12-month duration.
- Cart / checkout cookies if and when self-serve subscription signup launches. Will be first-party, essential, session-scoped.
When any of these are added, they will appear in the table in section 2 with their actual names and durations.
5. Your choices
You have several ways to control cookies set by centraluplift.com.
Browser-level controls. Every modern browser lets you block or delete cookies, and most let you block third-party cookies specifically. The mechanics vary by browser:
- Chrome:
chrome://settings/cookies - Firefox:
about:preferences#privacy - Safari: Preferences → Privacy → Manage Website Data
- Edge:
edge://settings/content/cookies
Blocking essential cookies will prevent parts of the site from loading or trigger Cloudflare’s verification challenge on every request.
Do Not Track (DNT). When your browser sends the DNT header, our analytics tooling treats the request as opted out of tracking. PostHog respects DNT in its default configuration; we leave that default in place.
Global Privacy Control (GPC). When your browser sends a GPC signal, we treat it as a request to opt out of any “sale” or “share” of personal information. We do not currently sell or share personal information for cross-context behavioral advertising, so the practical effect is the same as DNT today.
PostHog opt-out. You can disable PostHog tracking on your device specifically by visiting https://us.posthog.com/opt-out (or by emailing privacy@centraluplift.com and we will add your device hash to our suppression list). This is independent of the browser-level controls above.
Cloudflare challenge cookies. These cannot be opted out of without losing access to bot-protected pages. If you need to access the site without Cloudflare’s bot management cookie being set, contact privacy@centraluplift.com and we will work with you on an alternate access path.
Email us. For any cookie-related question or formal opt-out request: privacy@centraluplift.com.
6. Children
centraluplift.com is intended for businesses and the people who run them. We do not knowingly set cookies on devices used by anyone under 18 years of age. If you believe a child has interacted with the site, email privacy@centraluplift.com and we will purge the associated identifiers.
7. Updates to this policy
We update this policy whenever the cookies set on centraluplift.com change. The “Last updated” date at the top tracks the most recent change. For material changes — adding a new category, adding an advertising cookie, adding a third-party processor — we will surface the change in our cookie banner and, if you are a customer, notify you by email at least 30 days in advance.
8. How to reach us
- Email: privacy@centraluplift.com
- Mail: Central Uplift LLC, Attn: Privacy, 37 Forsythe Rd, Pittsburgh, PA 15220
- Phone: +1 (412) 775-2751
We aim to respond to cookie-related questions within 5 business days and to formal opt-out requests within the legally required timeframe.