Cookie Policy

Last updated: May 2026

Delivery Platform uses cookies and similar local-storage techniques sparingly. This page describes what we set, why, and how to disable them.

1. Strictly necessary

• Merchant session cookie — set when a merchant user signs into the merchant portal. Required for authentication; disabling it prevents sign-in.
• CSRF token cookie — paired with a header sent on every mutating request to prevent cross-site request forgery.

2. Functional

• Active-merchant cookie — when a merchant user belongs to multiple merchants, remembers the most recently selected one across page loads.

3. Analytics

We do not currently set analytics cookies on the public landing, tracking page, or merchant portal. When an analytics provider is added, this section will list the cookies they set.

The consent banner at the bottom of public pages stores your accept/decline choice in your browser's localStorage(key consent.analytics.v1) so we don't re-ask on every visit. Until analytics ships, this preference is a no-op. Clear your browser storage to see the banner again.

4. Third-party

The customer order-tracking page does not load any third-party scripts. The merchant portal loads Google Maps for service-area / route visualisation; Google may set cookies under its own privacy policy when the map is rendered.

5. Disabling cookies

You can disable cookies in your browser settings. Disabling strictly-necessary cookies will prevent you from signing into the merchant portal.