Cookie Policy

Introduction

This Cookie Policy explains how Shiplist ("we", "us", or "our") uses cookies and similar tracking technologies on our website and service at shiplist.app (the "Service").

Last Updated: 2026-02-08

By using the Service, you consent to the use of cookies as described in this policy. You can manage your cookie preferences at any time through your browser settings or our cookie consent banner.

Contact Us: If you have questions about our use of cookies, email us at info@shiplist.app.

What Are Cookies?

Cookies are small text files stored on your device (computer, tablet, smartphone) when you visit websites. They help websites remember your preferences, track your activity, and improve your experience.

How Cookies Work:

Cookies are sent from a web server to your browser

Your browser stores the cookie on your device

The cookie is sent back to the server on subsequent visits

This allows the website to "remember" you and your preferences

Types of Cookies:

Session Cookies: Temporary cookies that expire when you close your browser

Persistent Cookies: Remain on your device for a specified duration (e.g., 1 year)

First-Party Cookies: Set by Shiplist (the website you're visiting)

Third-Party Cookies: Set by external services (e.g., Stripe, Umami Analytics)

Similar Technologies:

We also use similar technologies like:

Local Storage: Browser storage for larger amounts of data

Session Storage: Temporary browser storage

Browser Fingerprinting: Identifying browsers for anonymous voting (not for tracking)

Why We Use Cookies

We use cookies for several important purposes:

1. Essential Functionality:

Keep you logged in to your account

Remember your security settings

Protect against fraudulent activity

Enable core features of the Service

2. User Preferences:

Remember your theme choice (dark mode / light mode)

Store your language preference

Remember your cookie consent choices

3. Analytics and Improvement:

Understand how users interact with the Service

Identify popular features and pain points

Detect bugs and performance issues

Measure effectiveness of features

4. Security:

Detect and prevent fraudulent activity

Protect against Cross-Site Request Forgery (CSRF) attacks

Identify suspicious behavior

What We DO NOT Use Cookies For:

❌ Advertising or behavioral targeting

❌ Tracking you across other websites

❌ Selling your data to third parties

❌ Building profiles for marketing purposes

Cookies We Use

Below is a detailed list of all cookies used by Shiplist, categorized by type:

Essential Cookies (Always Active)

These cookies are strictly necessary for the Service to function. They cannot be disabled without breaking core functionality.

Preference Cookies

These cookies remember your choices and preferences to personalize your experience.

Analytics Cookies (Optional - Requires Your Consent)

These cookies help us understand how users interact with the Service. You can disable them at any time.

Note: See the detailed cookie table below for specific cookie names, purposes, and durations.

Essential Cookies

Always Active

Cookie Name	Purpose	Duration	Provider
firebase_auth	User authentication and session management	Session (expires when browser closes)	Firebase (Google)
session_id	Maintain your logged-in session	30 days	Shiplist
csrf_token	Security protection against CSRF attacks	Session	Shiplist
__Secure-next-auth.session-token	Next.js session management	30 days	Shiplist (Next.js)

Preference Cookies

Cookie Name	Purpose	Duration	Provider
theme	Remember your dark/light mode preference	1 year	Shiplist
cookie_consent	Remember your cookie consent choices	1 year	Shiplist

Analytics Cookies

Requires Consent

Cookie Name	Purpose	Duration	Provider
umami.disabled	Umami Analytics - Opt-out preference	Persistent	Umami Analytics
umami_*	Umami Analytics - Privacy-friendly analytics (no personal data)	Session	Umami Analytics

Third-Party Cookies

Some cookies are set by third-party services we use to operate the Service:

Firebase / Google Cloud Platform:

Purpose: Authentication and database

Cookies: firebase_auth, session_id

Privacy Policy: https://firebase.google.com/support/privacy

Opt-out: https://tools.google.com/dlpage/gaoptout

Stripe (on payment pages only):

Purpose: Secure payment processing

Cookies: Various Stripe cookies (only on checkout/billing pages)

Privacy Policy: https://stripe.com/privacy

Note: Stripe cookies are essential for payment processing

Umami Analytics (if you consent):

Purpose: Privacy-friendly usage analytics (no personal data collected)

Cookies: umami.disabled, umami_*

Privacy Policy: https://umami.is/privacy

Opt-out: Use our cookie consent banner or Privacy Settings

Note: Umami is a privacy-first analytics solution that does not collect personal information or use tracking cookies

Note: We do not control third-party cookies. Please review their privacy policies for more information.

Managing Your Cookie Preferences

You have several options to control cookies:

Option 1: Shiplist Cookie Consent Banner

When you first visit Shiplist, you'll see a cookie consent banner:

Accept: Allow all cookies (essential, preference, and analytics)

Manage Preferences: Choose which types of cookies to allow

Settings > Privacy: Update your cookie choices at any time

Note: Essential cookies cannot be disabled as they are necessary for the Service to function.

Option 2: Browser Settings

You can manage cookies through your browser settings:

Google Chrome:

1. Settings > Privacy and security > Cookies and other site data

2. Choose your cookie preferences

3. Manage exceptions for specific sites

Mozilla Firefox:

1. Settings > Privacy & Security > Cookies and Site Data

2. Choose your cookie preferences

3. Manage exceptions for specific sites

Apple Safari:

1. Preferences > Privacy > Cookies and website data

2. Choose your cookie preferences

3. Manage website data

Microsoft Edge:

1. Settings > Cookies and site permissions > Cookies and site data

2. Choose your cookie preferences

3. Manage exceptions

⚠️ Warning: Blocking all cookies will prevent you from logging in and using the Service.

Option 3: Do Not Track (DNT)

We respect the "Do Not Track" browser setting:

Enable DNT in your browser settings

We will automatically disable analytics cookies

Essential cookies will still be used (required for functionality)

Option 4: Clear Existing Cookies

To delete cookies already stored:

Use your browser's "Clear browsing data" or "Clear cookies" feature

Select the time range (e.g., "All time")

Check "Cookies and other site data"

Click "Clear data"

Note: Clearing cookies will log you out and reset your preferences.

Cookie Consent

First Visit:

When you first visit Shiplist, we'll ask for your consent to use non-essential cookies (analytics). Essential cookies are used based on "legitimate interest" as they're necessary for the Service.

Types of Consent:

Essential Cookies: No consent required (legitimate interest under GDPR Article 6)

Preference Cookies: No consent required (enhance your experience)

Analytics Cookies: Consent required (GDPR Article 6 - consent)

Withdrawing Consent:

You can withdraw your consent at any time:

Go to Settings > Privacy > Cookie Preferences

Toggle off analytics cookies

Your preference is saved immediately

Consent Duration:

Your cookie consent choice is stored for 1 year. After that, we'll ask for your consent again.

EU/EEA Users:

We comply with the EU ePrivacy Directive ("Cookie Law") and GDPR:

We ask for consent before setting non-essential cookies

You can withdraw consent at any time

We provide clear information about cookies we use

How Long Do Cookies Last?

Different cookies have different lifespans:

Session Cookies (deleted when you close browser):

firebase_auth

csrf_token

Short-Term Cookies (30 days):

session_id

__Secure-next-auth.session-token

Long-Term Cookies (1 year):

theme

cookie_consent

Analytics Cookies (2 years):

_ga, _ga_*, firebase_analytics

You can delete cookies at any time through your browser settings or by clearing your browsing data.

Changes to This Cookie Policy

We may update this Cookie Policy from time to time to reflect:

Changes in cookie usage

New features or technologies

Legal or regulatory requirements

Feedback from users

Notification:

Material changes: We will notify you via email or prominent notice

Minor changes: Updated "Last Updated" date at the top of this policy

Check for Updates:

We recommend reviewing this Cookie Policy periodically. The "Last Updated" date indicates when changes were made.

Questions?

If you have questions about changes to this policy, contact us at info@shiplist.app.

More Information

Related Policies:

Privacy Policy - How we collect and use your data

Terms of Service - Terms governing your use of Shiplist

External Resources:

To learn more about cookies and how to manage them:

AboutCookies.org - Independent cookie information

AllAboutCookies.org - Cookie management guides

Your Online Choices - EU opt-out tool

Browser-Specific Guides:

Google Chrome - Clear cookies

Mozilla Firefox - Delete cookies

Apple Safari - Manage cookies

Microsoft Edge - Delete cookies

GDPR Compliance:

For EU/EEA users, our cookie practices comply with:

General Data Protection Regulation (GDPR)

ePrivacy Directive ("Cookie Law")

National data protection laws

Contact Us:

Email: info@shiplist.app

Subject line: "Cookie Policy Inquiry"

We aim to respond within 5 business days.

Introduction

What Are Cookies?

Why We Use Cookies

Cookies We Use

Essential Cookies (Always Active)

Preference Cookies

Analytics Cookies (Optional - Requires Your Consent)

Essential Cookies

Preference Cookies

Analytics Cookies

Third-Party Cookies

Managing Your Cookie Preferences

Option 1: Shiplist Cookie Consent Banner

Option 2: Browser Settings

Option 3: Do Not Track (DNT)

Option 4: Clear Existing Cookies

Cookie Consent

How Long Do Cookies Last?

Changes to This Cookie Policy

More Information

Manage Your Cookie Preferences

Cookie Preferences