I have an existing Framer site that now needs a proper cookie-management layer. The goal is to create and store session cookies that hold lightweight tracking and analytics data while meeting modern security expectations. Here’s the current state: the project is live, built entirely in Framer with a few custom code overrides. Right now there’s no first-party cookie logic; everything runs in memory and is lost on refresh. I’d like you to introduce secure client-side storage so that analytics events can persist for the duration of a session without exposing sensitive details or tripping browser privacy warnings. Core tasks • Inject code (JavaScript or Framer’s Code Overrides) that creates a session cookie on first visit and updates it as new tracking events fire. • Apply security best practices—Secure and HttpOnly flags where feasible, SameSite=Lax or Strict, and safe fallbacks for older browsers. • Respect consent: if a visitor opts out of analytics, the cookie should never be set. • Deliver clean, well-documented code that I can drop into the existing project and a brief README explaining how to tweak expiry, namespacing, or data fields. Acceptance criteria 1. A fresh visitor receives a single session cookie only after consent is granted. 2. Cookie persists across page navigation but disappears when the browser tab closes. 3. No console errors or Framer preview issues. 4. Lighthouse audit shows no security warnings related to cookies. If you know your way around Framer’s code components and have implemented secure cookies before, this should be straightforward. I’m ready to share the project link and publisher rights as soon as we agree on the approach.