Neo Zed sets exactly one cookie: neozed_session, an HTTP-only session identifier used to hold browser authentication across account pages and the desktop sign-in handoff.
The cookie is marked SameSite=Lax and is Secure in production deployments. It contains no personal data — the session is stored server-side and keyed by an opaque identifier.
No third-party cookies are set. The site does not run analytics, advertising, or tracking scripts.