1. What are cookies and similar technologies?
A "cookie" is a small text file that a website asks your browser to store on your device. It can be read by the website that set it (a "first-party" cookie) or by a different website (a "third-party" cookie) when you visit that other site or a site that embeds it.
Browser storage technologies such as localStorage, sessionStorage, and IndexedDB work similarly and are also covered by this policy where we use them. We refer to all of these as "cookies" below for simplicity.
2. The rules we follow
In the UK, the Privacy and Electronic Communications Regulations 2003 (PECR) require us to obtain your consent before we set cookies on your device, unless the cookie is "strictly necessary" to deliver a service you have explicitly requested. We follow the same approach for users in the EEA under the EU ePrivacy Directive as implemented locally.
3. What we use cookies for
BandVolt is a privacy-respecting product. We deliberately use as few cookies as possible. Today we use only strictly-necessary cookies and similar storage to deliver the Service to you; we do not use advertising cookies, cross- site tracking, or analytics cookies that profile you for marketing.
| Cookie / storage | Purpose | Category | Typical lifespan |
|---|---|---|---|
| __session, __client (Clerk) | Keep you signed in. Set and read by our authentication provider, Clerk, on our behalf. | Strictly necessary | Session / up to a few weeks (rotated) |
Clerk localStorage / sessionStorage entries (e.g. __clerk_*)
| Cache your JWT, sign-in state and dev session info so the app does not have to re-authenticate on every page load. | Strictly necessary | Until you sign out or clear browser storage |
App preferences (e.g. bandvolt:lastBand, theme/UI state)
| Remember in-product preferences such as the last active Band or your theme choice. Held in localStorage in your browser; not transmitted to our servers. | Strictly necessary (preference) | Until you clear browser storage |
| Stripe (set during checkout) |
When you start a checkout or open the customer portal, Stripe sets its
own cookies (e.g. __stripe_mid, __stripe_sid)
for fraud prevention and to operate its checkout pages. See
Stripe's Cookie Policy
.
| Strictly necessary (third party, payment fraud prevention) | Per Stripe's policy (up to 1–2 years) |
| Cloudflare |
Our content-delivery and security provider may set cookies (e.g.
__cf_bm) to distinguish humans from bots and to protect the
Service. See
Cloudflare's cookie information
.
| Strictly necessary (third party, security) | Up to 30 minutes (per Cloudflare) |
If we begin using additional cookies (for example, optional analytics), we will update this policy and ask for your consent through a cookie banner before setting them.
4. Managing cookies
You can manage cookies in your browser settings — including blocking or deleting them — at any time. Useful guides:
Please note: blocking strictly-necessary cookies (for example, Clerk's session cookies) will stop you from signing in and the Service will not work correctly.
5. Changes to this Cookie Policy
We may update this policy from time to time. The "Last updated" date at the top of this page shows when it was last revised.
6. Contact
Questions about our use of cookies? Email [email protected].