Cavaliq

Legal

Cookie policy

Effective:
17 May 2026
Last updated:
17 May 2026

In short: We only set cookies that are strictly necessary to keep you signed in, deliver the service, and protect against abuse. We do not use advertising cookies. You can manage cookies through your browser at any time.

This page explains the cookies and similar technologies (localStorage, sessionStorage, secure storage on mobile) that Cavaliq sets when you use cavaliq.com, app.cavaliq.com, or the Cavaliq mobile app, and how you can manage them.

A cookie is a small text file that a website saves on your device. Cookies let the site remember things like whether you are signed in. Similar technologies include localStorage and sessionStorage on the web, and SecureStore on mobile.

2. What Cavaliq uses cookies for

We categorise the cookies we set as strictly necessary. That means we cannot deliver the service to you without them. We do not use cookies for advertising or for cross-site tracking, and we do not share cookie data with advertising networks.

Authentication and session cookies

Set by our identity provider, Clerk, when you sign in. They keep you signed in across pages and protect against session hijacking.

  • Names: __session, __clerk_db_jwt, __client_uat and similar Clerk-prefixed cookies.
  • Provider: Clerk.com
  • Lifetime: Session and up to 7 days for refresh tokens, depending on the configuration.

Security and abuse-prevention cookies

Set by Cloudflare to identify a bad bot, mitigate a DDoS attack, or maintain a connection’s rate limit.

  • Names: __cf_bm and other Cloudflare cookies.
  • Provider: Cloudflare
  • Lifetime: 30 minutes to a few hours.

Preference cookies

We use localStorage and a small number of first-party cookies to remember your choices, like which club you last viewed, whether you have dismissed an in-product banner, and your language preference. These are not used for tracking.

Error monitoring

Sentry collects performance traces and error reports. It does not use cookies but it may attach a randomly generated session ID to a crash report so we can join related events. Form values, passwords, and tokens are stripped before being sent to Sentry.

3. What we don’t do

Cavaliq does not currently use:

  • Advertising cookies or marketing pixels.
  • Cross-site behavioural tracking.
  • Third-party analytics that profile individuals.
  • Social-media tracking widgets.

If we ever introduce optional analytics or marketing technology, we will update this page and ask for your consent before setting any non-essential cookie on devices in regions where consent is required (such as the EU, UK, and other applicable jurisdictions).

4. How to manage cookies

Most browsers let you view, delete, and block cookies through the privacy settings. You can also clear localStorage and sessionStorage from the same place. On mobile you can sign out to clear the secure-store tokens. Blocking strictly necessary cookies may prevent you from signing in or from using the platform at all.

Helpful links:

5. Contact

Questions about cookies or this policy? Write to info@cavaliq.com or see the privacy policy.