Cookie Policy

Last updated: March 12, 2026

Table of Contents

1. What Are Cookies

Cookies are small text files that are placed on your device (computer, smartphone, tablet, or other device) when you visit a website. Cookies are widely used by website operators to make their websites work, to work more efficiently, and to provide reporting and analytics information.

Cookies set by the website owner (in this case, FITGYAL) are called “first-party cookies.” Cookies set by parties other than the website owner are called “third-party cookies.” Third-party cookies enable third-party features or functionality to be provided on or through the website, such as analytics, payment processing, and interactive content.

In addition to cookies, we may use similar technologies such as pixel tags (also known as web beacons or clear GIFs), local storage, and session storage to collect and store information about your use of the Service.

2. Types of Cookies We Use

2.1 Strictly Necessary Cookies

These cookies are essential for the Service to function properly. They enable core functionality such as authentication, session management, and security. Without these cookies, the Service cannot operate as intended. These cookies do not require your consent under applicable privacy laws.

Examples:

  • Supabase authentication session cookies (maintain your login state)
  • CSRF protection tokens (prevent cross-site request forgery)
  • Security cookies (detect authentication abuse and prevent unauthorized access)
  • Load balancing cookies (distribute traffic for optimal performance)

2.2 Functional Cookies

Functional cookies enable enhanced functionality and personalization. They may be set by us or by third-party providers whose services we have added to the Service. If you do not allow these cookies, some or all of these features may not function properly.

Examples:

  • Language and locale preferences
  • Theme and display preferences (dark mode settings)
  • Notification preferences
  • Recently viewed content

2.3 Analytics Cookies

Analytics cookies help us understand how visitors interact with the Service by collecting and reporting information about usage patterns. All information collected by these cookies is aggregated and anonymized. These cookies help us improve the Service by understanding which pages and features are most popular and how users navigate through the application.

Examples:

  • Page view counts and navigation patterns
  • Feature usage frequency
  • Session duration and bounce rates
  • Error and performance monitoring

2.4 Marketing Cookies

Marketing cookies may be used to track visitors across websites to display relevant and engaging advertisements. We currently use minimal marketing cookies. If we introduce additional marketing cookies in the future, we will update this policy and obtain your consent where required.

Examples:

  • Conversion tracking (measuring the effectiveness of our advertising campaigns)
  • Referral source tracking (understanding how users found FITGYAL)

3. Specific Cookies

Below is a detailed list of the primary cookies used by the Service:

Cookie NameProviderTypePurposeDuration
sb-*-auth-tokenSupabaseStrictly NecessaryAuthentication session managementSession / 1 year
sb-*-auth-token-code-verifierSupabaseStrictly NecessaryPKCE authentication flowSession
__stripe_midStripeStrictly NecessaryFraud prevention and payment security1 year
__stripe_sidStripeStrictly NecessaryPayment session management30 minutes

4. Third-Party Cookies

Some cookies on the Service are placed by third-party services that appear on our pages. We do not control these third-party cookies. The third parties that set cookies on our Service include:

  • Supabase: Provides authentication and session management. Supabase sets cookies to maintain your login state and secure your session. These are essential cookies required for the Service to function. Supabase Privacy Policy;
  • Stripe: Provides payment processing. Stripe sets cookies for fraud detection, payment security, and session management when you interact with payment features. Stripe Privacy Policy;
  • Analytics providers: If we use third-party analytics services, they may set cookies to collect anonymized usage data. Any analytics cookies will be listed in this policy as they are implemented.

Please refer to each third party’s privacy policy for more information about their use of cookies.

6. How to Manage Cookies

You have several options for managing cookies:

  • Cookie consent settings: Use our cookie consent tool (available via the cookie settings link in our footer) to manage your preferences for non-essential cookies;
  • Browser settings: Most web browsers allow you to control cookies through their settings. You can set your browser to block or delete cookies, or to alert you when cookies are being sent;
  • Device settings: On mobile devices, you can manage cookies and tracking through your device’s privacy settings;
  • Opt-out tools: Some analytics providers offer opt-out mechanisms. We will provide links to these tools as applicable.

Please note: Blocking or deleting cookies may affect the functionality of the Service. If you block strictly necessary cookies (such as Supabase authentication cookies), you will not be able to log in or use authenticated features of the Service.

7. Browser-Specific Instructions

Below are instructions for managing cookies in popular web browsers:

Google Chrome

Settings > Privacy and Security > Cookies and Other Site Data. Here you can block third-party cookies, block all cookies, or clear cookies when you close the browser. You can also add exceptions for specific websites.

Mozilla Firefox

Settings > Privacy & Security > Enhanced Tracking Protection. Choose Standard, Strict, or Custom to control which cookies and trackers are blocked. You can also manage exceptions and clear cookies.

Apple Safari

Preferences > Privacy. Safari blocks cross-site tracking cookies by default. You can also block all cookies, manage website data, and remove stored cookies.

Microsoft Edge

Settings > Cookies and Site Permissions > Manage and Delete Cookies and Site Data. You can block third-party cookies, allow specific sites, and clear cookies on exit.

Safari on iOS

Settings > Safari > Privacy & Security. Toggle “Prevent Cross-Site Tracking” and “Block All Cookies” options. You can also clear history and website data.

Chrome on Android

Settings > Site Settings > Cookies. Choose to allow all cookies, block third-party cookies, or block all cookies.

8. Changes to This Policy

We may update this Cookie Policy from time to time to reflect changes in our cookie practices, applicable laws, or for other operational reasons. When we make changes, we will update the “Last updated” date at the top of this policy.

For material changes to how we use cookies, particularly those that affect your privacy, we will notify you via email or an in-app notification and, where required, obtain your consent before implementing the changes.

We encourage you to periodically review this Cookie Policy for the latest information about our cookie practices.

9. Contact Information

If you have any questions about this Cookie Policy or our use of cookies, please contact us:

This Cookie Policy is effective as of March 12, 2026.