Cookie Policy
Last updated: March 30, 2026
1. What Are Cookies
Cookies are small text files that websites place on your device (computer, tablet, or phone) when you visit them. They are widely used to make websites work properly, remember your preferences, and provide information to the site owners. Cookies are stored in your browser and can be read by the website that created them on your subsequent visits.
Cookies are not programs and cannot carry viruses or install malware. They simply store small pieces of data — like a session identifier that keeps you logged in, or a flag that records whether you have dismissed a notification. Some cookies last only until you close your browser (session cookies), while others persist for a set period of time (persistent cookies).
Similar technologies — such as localStorage, sessionStorage, and pixel tags — serve comparable purposes. When we refer to "cookies" in this policy, we include these related technologies unless stated otherwise.
2. How We Use Cookies
ZOE Pulse uses a minimal set of cookies to operate the platform securely and provide you with a smooth experience. We use cookies to:
- Keep you signed in to your account so you do not have to log in on every page.
- Protect your account against cross-site request forgery (CSRF) attacks.
- Remember your cookie consent preferences.
- Collect anonymous, aggregated page-view data to help us improve the product.
We do not use cookies to track you across other websites, build advertising profiles, or sell your data to third parties.
3. Types of Cookies We Use
a. Strictly Necessary Cookies
These cookies are essential for the platform to function. Without them, you cannot log in, navigate between pages securely, or use core features. Because they are required for the service to operate, they cannot be disabled.
- next-auth.session-token — Stores your authenticated session. This cookie is what keeps you logged in as you move between pages. It expires when you close your browser (session cookie) or after 30 days if you choose "remember me" (persistent cookie).
- next-auth.csrf-token — A security token that protects against cross-site request forgery attacks. Every form submission and sensitive action is validated against this token to ensure requests genuinely originate from your browser. It expires with your session.
- next-auth.callback-url — Temporarily stores the URL you were trying to visit before being redirected to the login page, so the platform can return you to the right place after authentication. It expires with your session.
b. Functional Cookies
Functional cookies remember choices you make to enhance your experience. They do not track your activity across other websites.
- cookie-consent — Records your cookie consent preferences so we do not ask you again on every visit. Stored in localStorage. Persists for 1 year.
- theme — Stores your UI theme preference (e.g., light or dark mode), if applicable. Stored in localStorage. Persists until you clear it.
c. Analytics Cookies
We use Vercel Analytics to understand how visitors interact with ZOE Pulse at an aggregate level. Vercel Analytics is privacy-focused by design:
- It collects anonymous page-view data only (pages visited, referrer, country).
- It does not use cookies to identify or track individual users.
- It does not collect personal data such as IP addresses, email addresses, or device fingerprints.
- Data is aggregated and cannot be tied back to any individual.
We do not use Google Analytics, Facebook Pixel, or any other third-party analytics service that tracks individual users across websites.
d. Marketing and Advertising Cookies
ZOE Pulse does not use any marketing, advertising, or retargeting cookies. We do not serve ads, we do not participate in ad networks, and we do not share your data with advertisers. Period.
Cookie Reference Table
| Cookie Name | Purpose | Type | Duration |
|---|---|---|---|
| next-auth.session-token | Authentication session | Strictly Necessary | Session / 30 days |
| next-auth.csrf-token | CSRF protection | Strictly Necessary | Session |
| next-auth.callback-url | Auth redirect URL | Strictly Necessary | Session |
| cookie-consent | Cookie consent preferences | Functional | 1 year |
| theme | UI theme preference | Functional | Persistent |
| Vercel Analytics | Anonymous page-view analytics | Analytics | N/A (cookieless) |
| Stripe (various) | Payment fraud prevention | Third-Party / Strictly Necessary | Varies |
4. Third-Party Cookies
We strive to minimize third-party cookies on ZOE Pulse. Currently, the only third-party service that may set cookies on your device is:
- Stripe — Our payment processor. When you visit a checkout or billing page, Stripe may set cookies on your device for fraud prevention and to ensure your payment is processed securely. These cookies are controlled by Stripe and are subject to Stripe's Privacy Policy. We do not have access to or control over the data Stripe collects through these cookies.
We do not embed any other third-party cookies. There are no social media widgets, no advertising trackers, and no third-party analytics scripts beyond the cookieless Vercel Analytics described above.
5. How to Control Cookies
Most web browsers allow you to manage cookies through their settings. You can choose to block all cookies, accept all cookies, or be prompted each time a site wants to set a cookie. Here is how to manage cookies in the most popular browsers:
- Google Chrome — Go to Settings > Privacy and Security > Cookies and other site data. From here you can block third-party cookies, block all cookies, or clear cookies for specific sites.
- Mozilla Firefox — Go to Settings > Privacy & Security. Under "Enhanced Tracking Protection," choose Standard, Strict, or Custom. You can also manage cookies under "Cookies and Site Data."
- Safari — Go to Preferences > Privacy. Safari blocks cross-site tracking by default. You can also choose to block all cookies, though this will affect site functionality.
- Microsoft Edge — Go to Settings > Cookies and site permissions > Manage and delete cookies and site data. You can block third-party cookies or all cookies from here.
Please note that if you use multiple devices or browsers, you will need to manage your cookie settings on each one separately.
6. Cookie Consent
When you first visit ZOE Pulse, you will see a cookie consent banner that allows you to accept or customize which categories of cookies you permit. Your preference is stored in your browser's localStorage under the key cookie-consent.
If you want to change your cookie preferences at any time, you can:
- Open your browser's developer tools (usually F12 or right-click > Inspect), go to the Application or Storage tab, find localStorage for zoepulse.pro, and delete the
cookie-consententry. The consent banner will reappear on your next visit. - Alternatively, clear all site data for zoepulse.pro in your browser settings, which will reset all preferences including the consent choice.
7. Impact of Disabling Cookies
Disabling different categories of cookies will have different effects on your experience:
- Strictly Necessary Cookies disabled — You will not be able to log in or use ZOE Pulse. The platform requires authentication cookies to function. Without the CSRF token, form submissions and API requests will fail for security reasons.
- Functional Cookies disabled — Your cookie consent preferences will not be remembered, so you may see the consent banner on every visit. Your theme preference will not persist between sessions.
- Analytics Cookies disabled — No impact on your experience. Since Vercel Analytics is cookieless, disabling cookies does not affect its operation. However, if you use a browser extension that blocks analytics scripts entirely, your visits will simply not be counted in our aggregate statistics.
- Third-Party Cookies (Stripe) disabled — Stripe may not be able to perform its full fraud detection checks during checkout. In rare cases, this could cause your payment to be flagged or declined. If you experience payment issues, try enabling cookies for stripe.com.
8. Changes to This Policy
We may update this Cookie Policy from time to time to reflect changes in the cookies we use or for other operational, legal, or regulatory reasons. When we make changes, we will update the "Last updated" date at the top of this page.
If we make significant changes — such as introducing a new category of cookies or partnering with a new third-party service that sets cookies — we will notify you by displaying a prominent notice on the platform or by resetting the cookie consent banner so you can review and update your preferences.
We encourage you to review this policy periodically to stay informed about how we use cookies.
9. Contact
If you have any questions about this Cookie Policy, our use of cookies, or your cookie preferences, please contact us at:
We will do our best to respond to your inquiry within a reasonable timeframe.