COOKIE POLICY
Effective Date: November 11, 2025
Last Updated: November 11, 2025
Platform: StarShipDealers (www.starshipdealers.com)
Legal Entity: StarShipDealers LLC
Related Document: Privacy Policy
1 TABLE OF CONTENTS
1 INTRODUCTION
1.1 Purpose of This Policy
This Cookie Policy explains how StarShipDealers ("we," "us," "our," "Platform") uses cookies and similar tracking technologies when you visit our website (www.starshipdealers.com).
1.2 Scope
This Cookie Policy is part of, and should be read in conjunction with, our Privacy Policy. For information about how we collect, use, and protect your personal data, see the Privacy Policy.
1.3 Your Consent
By using our Platform, you consent to the use of cookies as described in this Cookie Policy, except where your explicit consent is required (e.g., for non-essential cookies under GDPR and ePrivacy Directive).
EU/EEA/UK Users: You will see a cookie consent banner when you first visit the Platform. You can manage your preferences at any time (see Section 7).
2 WHAT ARE COOKIES?
2.1 Definition
Cookies are small text files stored on your device (computer, smartphone, tablet) by a website you visit. Cookies allow the website to remember your actions and preferences (e.g., login status, language, font size) over a period of time, so you don't have to re-enter them every time you visit.
2.2 How Cookies Work
When you visit our Platform, our server sends a cookie to your browser, which stores it on your device. On subsequent visits, the cookie is sent back to our server, allowing us to recognize you and remember your preferences.
2.3 Types of Cookie Technology
We use "cookies" (HTTP cookies), local storage (HTML5), web beacons/pixels, and browser fingerprinting for functionality, analytics, security, and advertising purposes.
3 WHY WE USE COOKIES
We use cookies for the following purposes:
3.1 Essential Functionality
- Keep you logged in during your session
- Remember items in your shopping cart
- Enable secure transactions
- Prevent fraud and abuse
- Remember your language preference
- Load balance traffic across servers
3.2 Performance & Analytics
- Track page views and popular content
- Measure site performance and load times
- Identify navigation patterns and user flows
- Detect errors and bugs
- Conduct A/B testing for new features
3.3 Personalization
- Remember your display preferences (theme, layout)
- Suggest relevant items based on browsing history
- Pre-fill forms with saved information
- Show location-specific content (e.g., currency, language)
3.4 Marketing & Advertising
- Display targeted ads on our Platform and third-party sites
- Track conversions (e.g., ad click → purchase)
- Retarget users who visited but didn't purchase
- Measure ROI of advertising campaigns
- Analyze demographic data (aggregated, anonymized)
3.5 Security & Fraud Prevention
- Detect suspicious login attempts
- Prevent brute-force attacks
- Identify bot traffic and automated scraping
- Verify CSRF tokens (Cross-Site Request Forgery protection)
- Flag duplicate accounts and ban evasion
- Protect forms from spam and automated abuse (reCAPTCHA)
4 TYPES OF COOKIES WE USE
4.1 Classification by Purpose
4.1.1 Strictly Necessary Cookies (Always Active)
Cannot be disabled as they are essential for platform functionality.
| Cookie Name | Purpose | Duration | Provider |
|-----------------|------------|--------------|--------------|
| sessionid | Keeps you logged in | Session | StarShipDealers |
| csrftoken | Prevents CSRF attacks | 1 year | StarShipDealers |
| cookieconsent | Remembers your cookie preferences | 1 year | StarShipDealers |
| __cf_bm | Bot management and DDoS protection | 30 minutes | Cloudflare |
| cf_clearance | Cloudflare security challenge | 1 year | Cloudflare |
| cart_id | Stores shopping cart contents | 30 days | StarShipDealers |
| language | Remembers your language preference | 1 year | StarShipDealers |
| _GRECAPTCHA | Google reCAPTCHA: Bot detection and spam prevention | Persistent | Google |
| rc::a | Google reCAPTCHA: Bot detection (behavior analysis) | Persistent | Google |
| rc::b | Google reCAPTCHA: Bot detection (session data) | Session | Google |
| rc::c | Google reCAPTCHA: Bot detection (session data) | Session | Google |
Legal Basis: Legitimate interest (exempt from consent under ePrivacy Directive)
4.1.2 Performance / Analytics Cookies (Optional)
Requires consent for EU/EEA/UK users.
| Cookie Name | Purpose | Duration | Provider |
|-----------------|------------|--------------|--------------|
| _ga | Google Analytics: Distinguishes users | 2 years | Google |
| _gid | Google Analytics: Distinguishes users | 24 hours | Google |
| _gat | Google Analytics: Throttles request rate | 1 minute | Google |
| _ga_<container-id> | Google Analytics 4: Session tracking | 2 years | Google |
| __hstc | Hotjar: Tracks user sessions | 13 months | Hotjar |
| __hssrc | Hotjar: Session tracking | Session | Hotjar |
| __hssc | Hotjar: Session tracking | 30 minutes | Hotjar |
| _hjSessionUser_<site_id> | Hotjar: User tracking | 1 year | Hotjar |
| _hjSession_<site_id> | Hotjar: Session tracking | 30 minutes | Hotjar |
What We Track: Page views, time on page, referring URL, device type, browser/OS, screen resolution, clicks/scrolls (heatmaps), navigation paths, form interactions (e.g., abandoned checkouts).
Data Anonymization: IP addresses anonymized, no PII shared with third parties, aggregated for statistical analysis only.
Legal Basis: Consent (GDPR Article 6(1)(a))
4.1.3 Functional / Personalization Cookies (Optional)
Requires consent for EU/EEA/UK users.
| Cookie Name | Purpose | Duration | Provider |
|-----------------|------------|--------------|--------------|
| user_pref_theme | Remembers your theme preference (light/dark mode) | 1 year | StarShipDealers |
| user_pref_currency | Remembers your currency preference (USD, EUR, etc.) | 1 year | StarShipDealers |
| user_pref_layout | Remembers your layout preference (grid/list view) | 1 year | StarShipDealers |
| recent_searches | Stores your recent search queries for quick access | 30 days | StarShipDealers |
| viewed_items | Tracks recently viewed items for recommendations | 90 days | StarShipDealers |
Legal Basis: Consent (GDPR Article 6(1)(a))
4.1.4 Marketing / Advertising Cookies (Optional)
Requires explicit consent for EU/EEA/UK users.
| Cookie Name | Purpose | Duration | Provider |
|-----------------|------------|--------------|--------------|
| _fbp | Facebook Pixel: Tracks conversions and user behavior | 90 days | Facebook |
| fr | Facebook: Delivers targeted advertising | 90 days | Facebook |
| IDE | Google Ads: Tracks conversions and ad impressions | 1 year | Google |
| _gcl_au | Google Ads: Conversion tracking | 90 days | Google |
| _uetsid | Bing Ads: Session tracking | 1 day | Microsoft |
| _uetvid | Bing Ads: User tracking | 13 months | Microsoft |
| test_cookie | Google DoubleClick: Tests cookie functionality | 15 minutes | Google |
What These Cookies Do: Track ad interactions (views, clicks), measure ad performance/ROI, show personalized ads on third-party sites (retargeting), build interest-based profiles, frequency capping.
Third-Party Networks: Google Ads, Facebook/Instagram Ads (Meta), Bing Ads (Microsoft).
Opt-Out Options: Cookie Settings banner, Google Ads, Facebook Ads, Bing Ads
Legal Basis: Consent (GDPR Article 6(1)(a))
4.2 Classification by Lifespan
Session Cookies: Deleted when you close your browser (e.g., sessionid, __hssrc).
Persistent Cookies: Remain for a set period (e.g., csrftoken 1 year, _ga 2 years, _fbp 90 days).
4.3 Classification by Origin
First-Party Cookies: Set by StarShipDealers (e.g., sessionid, csrftoken, cart_id). Not shared with third parties except infrastructure providers (OVH, Railway, Cloudflare).
Third-Party Cookies: Set by external services (e.g., _ga, _fbp, IDE). See Section 5 for details.
5 THIRD-PARTY COOKIES
5.1 Overview
When you use our Platform, third-party services may set their own cookies on your device. We do NOT control these cookies. They are governed by the third party's privacy policy.
5.2 Third-Party Services We Use
| Service | Purpose | Key Cookies | Privacy Policy | Opt-Out |
|---|---|---|---|---|
| Google Analytics | Website analytics, user behavior tracking | _ga, _gid, _gat |
Google Privacy | GA Opt-Out |
| Google Ads | Targeted advertising, conversion tracking | IDE, _gcl_au |
Google Privacy | Ads Settings |
| Facebook Pixel | Conversion tracking, retargeting | _fbp, fr |
Facebook Privacy | Ad Preferences |
| Hotjar | Heatmaps, session recordings | _hjSessionUser_*, __hstc |
Hotjar Privacy | Hotjar Opt-Out |
| Cloudflare | DDoS protection, CDN, security | __cf_bm, cf_clearance |
Cloudflare Privacy | Not possible (required for security) |
| Stripe | Payment processing, fraud detection | __stripe_sid, __stripe_mid |
Stripe Privacy | Not possible (required for payments) |
| PayPal | Payment processing | Various (PayPal domain) | PayPal Privacy | Not possible (required for PayPal) |
| Google reCAPTCHA | Bot protection, spam prevention | _GRECAPTCHA, rc::* |
Google Privacy | Not possible (required for security) |
| Notes: | ||||
| - Google Analytics Safeguards: IP anonymization enabled, no cross-device tracking, 14-month data retention | ||||
| - Hotjar Data Protection: Passwords/credit cards automatically masked, IP anonymized, no PII collected | ||||
| - reCAPTCHA Usage: Registration, login, contact forms, password reset, KYC submissions, dispute filing | ||||
| - Payment Processors: Stripe/PayPal cookies set on their domains; we do NOT access your payment data |
5.3 Data Sharing with Third Parties
When you accept marketing/advertising cookies, your data may be shared with:
- Google LLC (US) - Advertising, analytics
- Meta Platforms, Inc. (US) - Advertising (Facebook/Instagram)
- Microsoft Corporation (US) - Advertising (Bing Ads)
- Hotjar Ltd. (Malta, EU) - Heatmaps and session recordings
Legal Safeguards:
- All providers are GDPR-compliant
- Data Processing Agreements (DPAs) signed with all providers
- Standard Contractual Clauses (SCCs) for US-based providers (GDPR Article 46)
- You can withdraw consent at any time (see Section 7)
6 COOKIE DURATION
Session Cookies: Deleted when you close your browser (e.g., sessionid, __hssrc).
Persistent Cookies: Remain until expiration or manual deletion.
| Cookie | Duration | Can Be Deleted Early? |
|--------------------------|--------------|--------------------------------|
| csrftoken | 1 year | Yes (via browser settings) |
| _ga (Google Analytics) | 2 years | Yes (via opt-out or browser) |
| _fbp (Facebook Pixel) | 90 days | Yes (via opt-out or browser) |
| cookieconsent | 1 year | Yes (resets cookie banner) |
| language | 1 year | Yes (resets to default) |
| cart_id | 30 days | Yes (clears shopping cart) |
Cookies auto-expire after their duration and can be manually deleted anytime (see Section 7.2).
7 HOW TO MANAGE COOKIES
7.1 Cookie Settings Banner (EU/EEA/UK Users)
When you first visit our Platform, you will see a cookie consent banner with the following options:
Option 1: Accept All
- Enables all cookies (essential, analytics, marketing)
- Provides the best user experience
Option 2: Reject Non-Essential
- Only essential cookies enabled
- Analytics and marketing cookies blocked
- Some features may not work (e.g., personalized recommendations)
Option 3: Customize Preferences
- Choose which cookie categories to enable/disable:
- ✅ Strictly Necessary (always active)
- ☐ Performance / Analytics (optional)
- ☐ Functional / Personalization (optional)
- ☐ Marketing / Advertising (optional)
To Change Preferences Later:
- Click "Cookie Settings" in the footer of any page
- Go to Account Settings > Privacy > Cookie Preferences
- Your preferences are saved in the cookieconsent cookie
7.2 Browser Cookie Controls
Most browsers allow you to view, manage, and delete cookies. Access these controls via your browser settings:
| Browser | Cookie Settings Path | Delete All Cookies |
|-----------------------|-----------------------------------------------------------------|-----------------------------------|
| Google Chrome | Settings > Privacy and Security > Cookies and other site data | Clear browsing data > Cookies |
| Mozilla Firefox | Settings > Privacy & Security > Cookies and Site Data | Clear Data > Cookies |
| Safari (macOS) | Preferences > Privacy > Manage Website Data | Remove All |
| Microsoft Edge | Settings > Cookies and site permissions | Clear browsing data > Cookies |
| Safari (iOS) | Settings > Safari > Block All Cookies | Clear History and Website Data |
| Chrome (Android) | Settings > Site settings > Cookies | Privacy > Clear browsing data |
Options: Most browsers offer: Allow all cookies, Block third-party cookies (recommended), or Block all cookies (breaks most sites).
For detailed browser-specific instructions: Visit aboutcookies.org or allaboutcookies.org.
7.3 Third-Party Opt-Out Tools
Google Analytics Opt-Out
Install the Google Analytics Opt-Out Browser Add-on:
https://tools.google.com/dlpage/gaoptout
Google Ads Opt-Out
Manage ad personalization settings:
https://adssettings.google.com
Facebook Ads Opt-Out
Manage ad preferences:
https://www.facebook.com/ads/preferences
Industry-Wide Opt-Out Tools
- Your Online Choices (EU): https://www.youronlinechoices.eu
- Network Advertising Initiative (US): https://optout.networkadvertising.org
- Digital Advertising Alliance (US): https://optout.aboutads.info
7.4 Do Not Track (DNT)
Some browsers offer a "Do Not Track" (DNT) signal that requests websites not to track your behavior.
Our Response to DNT:
Currently, there is no industry standard for how websites should respond to DNT signals. We do NOT alter our data collection practices when we receive a DNT signal.
Alternative: Use our Cookie Settings banner to opt out of tracking cookies.
8 CONSEQUENCES OF DISABLING COOKIES
8.1 Impact of Disabling Cookies by Type
| Cookie Type | Can Be Disabled? | Impact if Disabled |
|---|---|---|
| Strictly Necessary | ❌ No (required) | Platform will NOT function: Cannot log in, shopping cart lost, purchases fail, security disabled |
| Performance / Analytics | ✅ Yes | Platform functionality unaffected; slower bug detection, limited feature improvements |
| Functional / Personalization | ✅ Yes | Theme/currency/layout preferences not saved; no personalized recommendations or recent search history |
| Marketing / Advertising | ✅ Yes | Generic ads instead of personalized; enhanced privacy; no conversion tracking or retargeting |
Recommendation: Do NOT block first-party cookies from starshipdealers.com. |
||
| Note: Disabling marketing cookies does NOT block all ads (generic ads may still appear). |
9 UPDATES TO THIS POLICY
StarShipDealers may update this Cookie Policy to reflect changes in cookies used, third-party services, or legal requirements.
Material Changes (new tracking technologies, new third-party cookies): We will update the "Last Updated" date, display a notice in the cookie banner, and ask you to re-consent.
Minor Changes (clarifications, formatting): Updated "Last Updated" date only (no re-consent required).
Stay Informed: Review this policy periodically at www.starshipdealers.com/legal/cookies
10 CONTACT INFORMATION
Questions About Cookies:
Email: [email protected] | Subject: "Cookie Policy Inquiry" | Response: 5 business days
Data Protection Officer (GDPR):
Email: [email protected] | Subject: "GDPR Request" | Response: 30 days (GDPR Article 12)
General Inquiries:
Email: [email protected] | Website: www.starshipdealers.com/legal
Business Address:
StarShipDealers LLC
8 the Green, STE A
Dover, Delaware, 19901
United States of America
Registration: 10330273
12 APPENDIX: COOKIE REFERENCE TABLE
12.1 Summary of All Cookies Used
| Cookie Name | Type | Provider | Purpose | Duration | Consent Required? |
|---|---|---|---|---|---|
sessionid |
Necessary | StarShipDealers | Login session | Session | No |
csrftoken |
Necessary | StarShipDealers | CSRF protection | 1 year | No |
cookieconsent |
Necessary | StarShipDealers | Remembers cookie preferences | 1 year | No |
__cf_bm |
Necessary | Cloudflare | Bot management | 30 min | No |
cf_clearance |
Necessary | Cloudflare | Security challenge | 1 year | No |
cart_id |
Necessary | StarShipDealers | Shopping cart | 30 days | No |
language |
Necessary | StarShipDealers | Language preference | 1 year | No |
_GRECAPTCHA |
Necessary | reCAPTCHA bot detection | Persistent | No | |
rc::a |
Necessary | reCAPTCHA bot detection | Persistent | No | |
rc::b |
Necessary | reCAPTCHA bot detection | Session | No | |
rc::c |
Necessary | reCAPTCHA bot detection | Session | No | |
_ga |
Analytics | User tracking | 2 years | Yes (EU/EEA/UK) | |
_gid |
Analytics | User tracking | 24 hours | Yes (EU/EEA/UK) | |
_gat |
Analytics | Request throttling | 1 minute | Yes (EU/EEA/UK) | |
_ga_<id> |
Analytics | GA4 session tracking | 2 years | Yes (EU/EEA/UK) | |
_hjSessionUser_<id> |
Analytics | Hotjar | User tracking | 1 year | Yes (EU/EEA/UK) |
_hjSession_<id> |
Analytics | Hotjar | Session tracking | 30 min | Yes (EU/EEA/UK) |
__hstc |
Analytics | Hotjar | Session tracking | 13 months | Yes (EU/EEA/UK) |
__hssrc |
Analytics | Hotjar | Session tracking | Session | Yes (EU/EEA/UK) |
__hssc |
Analytics | Hotjar | Session tracking | 30 min | Yes (EU/EEA/UK) |
user_pref_theme |
Functional | StarShipDealers | Theme preference | 1 year | Yes (EU/EEA/UK) |
user_pref_currency |
Functional | StarShipDealers | Currency preference | 1 year | Yes (EU/EEA/UK) |
user_pref_layout |
Functional | StarShipDealers | Layout preference | 1 year | Yes (EU/EEA/UK) |
recent_searches |
Functional | StarShipDealers | Recent searches | 30 days | Yes (EU/EEA/UK) |
viewed_items |
Functional | StarShipDealers | Recently viewed items | 90 days | Yes (EU/EEA/UK) |
_fbp |
Marketing | Conversion tracking | 90 days | Yes (EU/EEA/UK) | |
fr |
Marketing | Targeted advertising | 90 days | Yes (EU/EEA/UK) | |
IDE |
Marketing | Ad tracking | 1 year | Yes (EU/EEA/UK) | |
_gcl_au |
Marketing | Conversion tracking | 90 days | Yes (EU/EEA/UK) | |
_uetsid |
Marketing | Microsoft | Session tracking | 1 day | Yes (EU/EEA/UK) |
_uetvid |
Marketing | Microsoft | User tracking | 13 months | Yes (EU/EEA/UK) |
test_cookie |
Marketing | Cookie test | 15 min | Yes (EU/EEA/UK) | |
| Notes: | |||||
| - Necessary cookies cannot be disabled (exempt under ePrivacy Directive Article 5(3)) | |||||
| - All other cookies require explicit consent for EU/EEA/UK users (GDPR + ePrivacy Directive) | |||||
| - US users are not legally required to consent, but we recommend reviewing cookie settings |
13 LEGAL REFERENCES
This Cookie Policy complies with:
- General Data Protection Regulation (GDPR) - EU Regulation 2016/679
- ePrivacy Directive (Cookie Law) - EU Directive 2002/58/EC
- Privacy and Electronic Communications Regulations (PECR) 2003 (UK)
- California Consumer Privacy Act (CCPA) - Cookie disclosure requirements
- Telecommunications (Personal Data and Privacy) (Direct Marketing) Regulations (Ireland)
14 DOCUMENT END
Effective Date: November 11, 2025
Last Updated: November 11, 2025
Version: 1.01
Document ID: CP-2025-101
For questions or concerns about cookies, contact:
[email protected]