Cookie Policy
1. Introduction
This Cookie Policy explains how Shopa (“Shopa,” “we,” “us,” or “our”) uses cookies and similar tracking technologies on our website at shopa.sh, our merchant storefronts, and our dashboard (collectively, the “Platform”).
This Cookie Policy is part of, and should be read together with, our Privacy Policy and our Terms and Conditions. By using the Platform, you consent to the use of cookies as described in this Policy, except to the extent that you change your settings.
2. What Are Cookies?
Cookies are small text files that a website places on your device (computer, smartphone, or tablet) when you visit. They allow the website to recognize your device, remember your preferences, and improve your overall experience.
Throughout this Policy, we use the term “cookies” broadly to refer not only to traditional browser cookies but also to similar technologies, including:
- Web storage — localStorage and sessionStorage, which are storage mechanisms in your browser used by modern web applications.
- Pixels & web beacons — tiny graphics used to deliver cookies, count visits, and understand usage.
- Software development kit (SDK) identifiers — identifiers stored on mobile devices when you use our mobile application.
- IndexedDB & service workers — client-side storage and background processes used for performance and offline support.
Cookies can be “first-party” (set by Shopa directly) or “third-party” (set by services we integrate with, such as payment processors).
3. Why We Use Cookies
We use cookies to:
- Keep you signed in and authenticated as you move between pages.
- Remember your preferences (e.g., dark mode, sidebar state, language).
- Maintain the contents of your shopping cart and wishlist.
- Detect and prevent fraud, abuse, and security incidents.
- Measure how the Platform is used so we can improve features and fix bugs.
- Remember banners or notifications you have already dismissed.
- Enable core features such as checkout, payments, and storefront customization.
4. Categories of Cookies We Use
4.1 Strictly Necessary Cookies
These cookies are essential for you to navigate the Platform and use its core features — such as signing in, processing payments, and submitting forms. The Platform cannot function properly without them, and they cannot be disabled.
Examples include authentication tokens, session identifiers, CSRF protection tokens, and load-balancer cookies.
4.2 Functional Cookies
These cookies allow the Platform to remember choices you make and provide a more personalized experience. They are not strictly necessary, but disabling them will degrade the experience.
Examples include cookies that remember your dark-mode preference, sidebar collapsed state, language preference, and dismissed announcements or banners (such as the storefront marquee dismiss state).
4.3 Performance & Analytics Cookies
These cookies collect information about how you use the Platform — such as which pages you visit most often, how long you spend on each page, and any errors you encounter. The information is aggregated and anonymous, helping us understand and improve performance.
4.4 Security & Fraud-Prevention Cookies
These cookies help us detect suspicious activity, protect against fraud, and maintain the integrity of your account. Examples include device fingerprints used during login and tokens used to detect session-replay attacks.
4.5 Marketing Cookies
We do not currently use marketing or advertising cookies. If we introduce them in the future, we will update this Policy and, where required, obtain your consent.
5. Specific Cookies & Storage We Use
The table below lists the main first-party cookies and storage items we use. The exact set may evolve as the Platform changes.
| Name | Type | Purpose | Lifetime |
|---|---|---|---|
| accessToken | localStorage | Authenticates your session for API calls | 15 minutes (refreshed) |
| refreshToken | localStorage | Re-issues access tokens without forcing you to sign in again | 30 days |
| user | localStorage | Caches your basic profile to render UI without an extra round trip | Until logout |
| theme | localStorage | Remembers your dark / light mode preference | Persistent |
| cart | localStorage | Holds items added to your cart on a storefront | Persistent (until checkout or clear) |
| wishlist | localStorage | Saves products you have wishlisted | Persistent |
| marquee-dismissed:* | localStorage | Hides storefront banners you have dismissed (re-shown if the merchant edits the banner) | Persistent |
| CSRF token | Cookie (HttpOnly, Secure) | Protects against cross-site request forgery on sensitive endpoints | Session |
6. Third-Party Cookies
Some pages on the Platform load resources from third-party services that may set their own cookies. We do not control these cookies, and you should refer to the relevant third party’s cookie policy for details.
- Paystack — Sets cookies during checkout to process payments securely. Reference: paystack.com.
- Cloudinary — Serves images via a content delivery network and may set cookies for performance and caching. Reference: cloudinary.com.
- Vercel — Hosting infrastructure that may set cookies to route traffic and protect against abuse. Reference: vercel.com.
- Embedded social content — Where Merchants embed Instagram, TikTok, Facebook, or X content on storefronts, those services may set their own cookies.
7. Cookie Duration
Cookies generally fall into two categories based on how long they persist:
- Session cookies — Stored only while your browser is open and deleted when you close it.
- Persistent cookies — Stored until they expire or you delete them. Persistent cookies allow us to remember your preferences across visits.
Web storage items (localStorage) persist until they are explicitly deleted by you, by us, or until the browser’s storage is cleared.
8. Managing Your Preferences
You can manage cookies in several ways:
- Account settings: Some functional preferences (theme, notifications) can be controlled from your account settings.
- Browser settings: All major browsers allow you to view, manage, or delete cookies and clear web storage. See Section 9 for direct links.
- Sign out: Signing out of the Platform clears authentication tokens stored in localStorage.
- Email us: For any questions about cookies, contact privacy@shopa.sh.
9. Browser Controls
Each browser has its own settings for managing cookies. The following links will help you find instructions for popular browsers (URLs are provided for reference and may change over time):
- Google Chrome: Settings > Privacy and security > Cookies and other site data.
- Mozilla Firefox: Settings > Privacy & Security > Cookies and Site Data.
- Apple Safari: Preferences > Privacy > Manage Website Data.
- Microsoft Edge: Settings > Cookies and site permissions > Manage and delete cookies and site data.
- Opera: Settings > Privacy & security > Cookies.
On mobile devices, settings to manage cookies and tracking are usually found within the device or browser’s privacy section. You may also reset advertising identifiers in your device’s privacy settings.
10. Do Not Track Signals
Some browsers offer a “Do Not Track” (DNT) signal. Because there is no universally accepted standard for how to interpret DNT signals, the Platform does not currently respond to them. We will update this Policy if industry standards change.
11. Consequences of Disabling Cookies
You can disable or delete cookies, but doing so may affect your experience on the Platform. In particular:
- Disabling strictly necessary cookies will prevent you from signing in, completing purchases, or using core features.
- Clearing localStorage will sign you out and remove your cart, wishlist, and saved preferences.
- Disabling functional cookies will reset your theme and other UI preferences each visit.
- Disabling analytics cookies will not affect your ability to use the Platform but limits our ability to improve it.
12. Changes to This Policy
We may update this Cookie Policy from time to time to reflect changes in technology, our practices, or applicable law. When we make material changes, we will update the “Last Updated” date at the top of this Policy and, where appropriate, notify you through the Platform.
13. Contact Us
If you have any questions about our use of cookies, please contact us:
- Company: Shopa
- Website: shopa.sh
- Privacy & Cookies: privacy@shopa.sh
- General Support: support@shopa.sh
By continuing to use the Shopa Platform, you acknowledge that you have read and understood this Cookie Policy.
Last updated: 10 May 2026