ZURIYA

Cookie Policy

Last updated: February 2026

1. About Cookies

Cookies are small text files a site stores on your device to remember things between visits. Some keep you signed in, others remember which provider or referral code brought you to a page so the right attribution is applied at checkout. This policy is part of our Privacy Policy and sets out every cookie Zuriya Ltd uses.

2. Cookies We Use

CookieSet byTypePurposeDuration
session_tokenZuriya (first-party)Strictly necessaryKeeps you signed in. Stored as an httpOnly, Secure, SameSite cookie so it cannot be read by JavaScript.7 days (1 day for guest sessions)
zuriya_sourceZuriya (first-party)FunctionalRecords whether you arrived via a provider's direct-share link (direct_link) so the platform can apply the correct commission to any booking you make with that provider (0% vs marketplace rate).30 days
zuriya_source_providerZuriya (first-party)FunctionalStores the username of the provider whose share link you followed, used together with zuriya_source.30 days
zuriya_referralZuriya (first-party)FunctionalHolds a friend's referral code if you arrived via a /r/{code} landing page. On your first qualifying booking the platform applies a £5 discount and credits the referrer.30 days
stripe_* / __stripe_*Stripe (third-party)Strictly necessaryUsed during checkout and for fraud-prevention by Stripe Payments UK, Ltd. See Stripe's privacy policy.Up to 1 year (varies by cookie)
__cf_bm / cf_clearanceCloudflare (third-party)Strictly necessaryBot mitigation and edge-security, protects the platform from automated attacks. See Cloudflare's privacy policy.30 minutes to 30 days

Zuriya does not set any advertising, cross-site-tracking, or analytics cookies.

3. Categories Explained

  • Strictly necessary cookies are required for the platform to operate, for example to keep you signed in, to let Stripe process your payment, and to let Cloudflare block malicious traffic. These cannot be disabled without breaking core features.
  • Functional cookies remember attribution and referral context so you receive the right discount and so providers are credited correctly for bookings they refer. You can clear them at any time from your browser without affecting sign-in; doing so just means subsequent bookings will be treated as marketplace bookings with no referral applied.

4. What We Don't Use

Zuriya does not use:

  • Google Analytics, Meta Pixel, TikTok Pixel, or any other behavioural-tracking pixel.
  • Advertising or remarketing cookies.
  • Cross-site user-profiling or audience-building cookies.

5. Managing Cookies

You can delete Zuriya's own cookies at any time through your browser settings (typically under "Privacy" or "Site data"). Blocking the session_token cookie will prevent you from signing in; blocking Stripe cookies will prevent checkout. Blocking the attribution cookies (zuriya_source, zuriya_source_provider, zuriya_referral) is safe and just removes any tracking benefit for the referrer.

6. Changes to This Policy

If we add a new cookie or change how an existing one is used we will update this page and the "Last updated" date above. Material changes are also flagged in-app.

7. Contact

For questions about our cookies, email privacy@zuriya.co.uk. For a full picture of how we handle your personal data, see our Privacy Policy.