Notice. This document is a working template. It must be reviewed by qualified legal counsel in your jurisdiction before being relied upon. Clauses on liability, governing law, GDPR/CCPA compliance and third-party-platform integration must be tailored to your specific business and applicable laws.

Legal

Cookie Policy

Last updated: May 28, 2026 · Governing law: New Mexico, United States

We use the minimum number of cookies needed to operate the checkout. Optional analytics and marketing cookies are set only if the merchant has enabled them and you have given consent through the cookie banner on first visit.

What is a cookie

A cookie is a small text file stored on your device by your web browser. Cookies let a site remember information across page loads or visits. Similar technologies include localStorage, sessionStorage, pixel tags (transparent images used for tracking), and server-side events (calls made by the server, not the browser). All of these are covered by this policy where applicable.

Strictly necessary (no consent required)

These cookies are required for the checkout to function and cannot be disabled.

Cookie	Purpose	Duration
`krown_cart_token`	Remembers which cart you are completing so you can resume after a reload or accidental navigation away.	24 hours
`krown_csrf`	CSRF protection on form submissions.	Session
`krown_session`	Maintains your authenticated session on the merchant dashboard.	30 days
`krown_consent`	Stores your cookie-consent choices so we do not ask again.	6 months

Functional (consent if non-essential under your local law)

Cookie	Purpose	Duration
`krown_locale`	Remembers your preferred language and currency.	1 year
`krown_theme`	Remembers display preferences.	1 year

Analytics (opt-in)

When the merchant has enabled analytics for their store and you have consented, we may set or transmit anonymised or pseudonymous identifiers that allow the merchant's configured analytics tools to measure traffic and conversion. Server-side events do not always set a browser cookie but are nonetheless logged by the analytics provider — your consent applies to both.

Marketing and attribution (opt-in)

When the merchant has configured marketing pixels (for example to measure ad performance or build retargeting audiences) and you have consented, the merchant's configured providers may set their own cookies on the merchant's storefront or receive server-side events from us. These cookies and events are subject to the respective third party's privacy policy, which you can review at the merchant's storefront and on the third party's website.

Managing your preferences

Use the cookie banner shown on first visit to a Krown-hosted checkout to accept or reject non-essential cookies.
You can change your choices at any time through the “Cookie preferences” link in the page footer.
You can also block or delete cookies via your browser settings. Doing so may break some functionality.

Do Not Track

We respect the browser Do Not Track (DNT) signal where technically practical. When DNT is on, non-essential cookies and server-side marketing events are suppressed.

Changes

We update this Cookie Policy when we add or remove a cookie. Material updates are announced via dashboard banner. The “Last updated” date at the top of this page reflects the latest revision.

Contact

Questions: krowncheckout@gmail.com.