Cookie Policy
Last updated: April 16, 2026
Effective date: April 16, 2026
This Cookie Policy ("Policy") explains how FanClash, Inc. ("FanClash," "Company," "we," "us," or "our") uses cookies, web beacons, pixels, local storage, and similar tracking technologies (collectively, "Cookies") when you visit our website at fanclash.io and use our platform and related services (collectively, the "Service").
This Policy is part of, and should be read together with, our Privacy Policy and our Terms of Service. By continuing to use the Service, you consent to the use of Cookies as described in this Policy, in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation, "GDPR"), Directive 2002/58/EC (ePrivacy Directive), the California Consumer Privacy Act as amended by the California Privacy Rights Act ("CCPA/CPRA"), and other applicable privacy laws.
Table of Contents
- What Are Cookies and Similar Technologies
- Categories of Cookies We Use
- Cookie Inventory
- Local Storage and Similar Technologies
- Cookie Lifespans
- Third-Party Cookies and Service Providers
- Cookie Consent and Legal Basis
- Managing Your Cookie Preferences
- Do Not Track and Global Privacy Control
- Updates to This Cookie Policy
- Contact Us
1. What Are Cookies and Similar Technologies
Cookies are small text files placed on your device (computer, smartphone, or tablet) by websites you visit. They are widely used to make websites function properly, to remember your preferences, and to provide analytics and reporting information.
- First-party cookies are set directly by FanClash (the domain you are visiting).
- Third-party cookies are set by domains other than FanClash, typically by our service providers and technology partners whose services are integrated into the Service.
In addition to cookies, we may use web beacons (also known as "tracking pixels" or "clear GIFs"), which are tiny transparent images embedded in web pages or emails that allow us to track page views, email opens, and similar interactions.
2. Categories of Cookies We Use
2.1 Strictly Necessary Cookies
These Cookies are essential for the Service to function and cannot be disabled in our systems. They are usually set in response to actions you take, such as signing in, setting your privacy preferences, or filling in forms. Without these Cookies, the Service cannot operate properly.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) and performance of a contract (Art. 6(1)(b) GDPR). These Cookies do not require consent under the ePrivacy Directive because they are strictly necessary for the provision of the Service you have requested.
- Authentication session (Clerk): Maintains your signed-in state as you navigate between pages. Includes session tokens, device identifiers, and authentication state.
- CSRF protection: Cross-site request forgery tokens that prevent unauthorized actions on your behalf.
- Cookie consent preferences: Stores your Cookie consent choices so we do not prompt you repeatedly.
- Load balancing: Distributes traffic across our servers to ensure availability and performance.
2.2 Functional Cookies
These Cookies enable enhanced functionality and personalization that is not strictly necessary but improves your experience. They may be set by us or by third-party providers whose services we have integrated into the Service. If you disable these Cookies, some or all of these features may not function properly.
Legal basis: Consent (Art. 6(1)(a) GDPR). You can withdraw your consent at any time through the methods described in Section 8.
- Language preference: Remembers your selected display language across sessions.
- Theme preference: Stores your dark/light mode selection.
- Sidebar state: Remembers whether you collapsed or expanded the dashboard sidebar.
- Sport filter: Stores your last-selected sport filter for a smoother browsing experience.
- Audio settings: Remembers your microphone and speaker preferences for live debates.
- Notification preferences: Stores your notification display settings.
2.3 Analytics and Performance Cookies
These Cookies collect information about how visitors use the Service, including which pages are visited most frequently, navigation paths, time spent on each page, and error messages received. All information collected by these Cookies is aggregated and therefore anonymous. These Cookies help us improve how the Service works.
Legal basis: Consent (Art. 6(1)(a) GDPR). You can withdraw your consent at any time through the methods described in Section 8.
- Page views and navigation: Which pages are visited, navigation paths, and session duration.
- Feature usage: Which platform features (debates, voting, chat, leaderboards, team management) are used and how frequently.
- Performance metrics: Page load times, error rates, API response times, and other technical performance data.
- Device and browser data: Browser type, operating system, screen resolution, and device category (desktop, mobile, tablet).
3. Cookie Inventory
The following table provides a detailed inventory of the principal Cookies used on the Service. This inventory is reviewed and updated periodically. Additional Cookies may be set by third-party services during your use of specific features.
| Cookie Name | Provider | Category | Duration | Purpose |
|---|---|---|---|---|
| __session | Clerk | Necessary | Session | Authentication session token |
| __client_uat | Clerk | Necessary | 1 year | Client-side auth state |
| __clerk_db_jwt | Clerk | Necessary | Session | JWT for API authentication |
| _csrf | FanClash | Necessary | Session | CSRF protection token |
| fc_cookie_consent | FanClash | Necessary | 1 year | Stores cookie consent preferences |
| fc_theme | FanClash | Functional | 1 year | Dark/light mode preference |
| fc_lang | FanClash | Functional | 1 year | Language preference |
| fc_sidebar | FanClash | Functional | 1 year | Sidebar collapsed/expanded state |
4. Local Storage and Similar Technologies
In addition to Cookies, we use browser-based storage mechanisms for similar purposes. These technologies store data locally on your device and function similarly to Cookies:
- Local Storage (localStorage): Stores persistent data that remains after browser sessions close. We use local storage for UI preferences (theme, sidebar state, language selection), authentication tokens, Zustand state persistence (auth store, UI store), and cached data to reduce network requests and improve performance. Data persists until explicitly cleared by you or by the application.
- Session Storage (sessionStorage): Temporarily stores data for the duration of a single browser tab session. We use session storage for debate room state, unsent chat message drafts, and temporary navigation state. Data is automatically deleted when the tab is closed.
- IndexedDB: A browser-based database used by certain third-party services (Clerk, GetStream) for offline caching, message storage, and performance optimization. IndexedDB can store larger amounts of structured data than Cookies or local storage.
These storage mechanisms are subject to the same legal requirements as Cookies under applicable law. Where consent is required for Cookies, it is also required for equivalent local storage operations that are not strictly necessary for the Service.
5. Cookie Lifespans
- Session Cookies: Exist only for the duration of your browser session and are deleted when you close your browser. Used for temporary data such as active debate room state, CSRF tokens, and active authentication sessions.
- Persistent Cookies: Remain on your device for a predetermined period or until you manually delete them. Lifespans vary:
- Authentication cookies: up to 30 days (dependent on Clerk session configuration)
- Preference cookies: up to 1 year
- Cookie consent: up to 1 year
- Analytics cookies: up to 2 years (if analytics providers are integrated in the future)
We periodically review the lifespans of our Cookies to ensure they are no longer than necessary for their stated purpose.
6. Third-Party Cookies and Service Providers
Certain Cookies are placed by third-party services we integrate with to provide the Service. We do not control how these third parties use their Cookies, and their use is governed by their own privacy and cookie policies. We encourage you to review their policies:
- Clerk (authentication and identity) — Sets session and authentication Cookies to manage your signed-in state securely. Clerk Privacy Policy
- LiveKit (real-time audio) — May set connection-state Cookies and use WebRTC local storage during live audio debates. LiveKit Privacy Policy
- GetStream (real-time chat) — Sets session tokens and may use IndexedDB for message caching and chat functionality. GetStream Privacy Policy
- Vercel (hosting and performance) — May set Cookies related to content delivery and performance monitoring. Vercel Privacy Policy
We have entered into data processing agreements with each of these providers to the extent required by applicable law, including Standard Contractual Clauses for international data transfers where necessary.
7. Cookie Consent and Legal Basis
7.1 European Economic Area, United Kingdom, and Switzerland
Under the ePrivacy Directive (Directive 2002/58/EC) and GDPR, we are required to obtain your consent before placing Cookies on your device, except for Cookies that are strictly necessary for the provision of the Service. When you first visit the Service from these jurisdictions, you will be presented with a cookie consent banner allowing you to accept or reject non-essential Cookie categories.
You may withdraw your consent at any time through the methods described in Section 8. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
7.2 California (CCPA/CPRA)
Under the CCPA/CPRA, certain Cookies may constitute a "sale" or "sharing" of personal information. We do not sell your personal information. If we share personal information with third parties for cross-context behavioral advertising through Cookies, we will provide you with the ability to opt out. You may exercise your right to opt out through the cookie preference settings or by contacting us at the address in Section 11.
7.3 Other Jurisdictions
We comply with applicable local Cookie and tracking technology requirements. If you are located in a jurisdiction that requires consent for non-essential Cookies (including Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, and other U.S. states with comprehensive privacy laws), we will obtain your consent before setting such Cookies.
8. Managing Your Cookie Preferences
8.1 Cookie Preference Center
You can manage your Cookie preferences at any time by clicking the "Cookie Settings" link in the footer of any page on the Service. This will reopen the cookie consent interface where you can accept or reject specific Cookie categories.
8.2 Browser Settings
Most web browsers allow you to control Cookies through their settings. You can typically:
- View what Cookies are stored on your device
- Delete all or specific Cookies
- Block all third-party Cookies
- Block Cookies from specific websites
- Clear all Cookies when you close the browser
- Set the browser to notify you when a Cookie is being placed
Important: Blocking or deleting strictly necessary Cookies will prevent you from signing in or using core features of the Service. If you block all Cookies, the Service may not function as intended.
8.3 Opt-Out Links
If we integrate analytics or advertising Cookies in the future, you will be able to opt out using industry tools such as the Digital Advertising Alliance (DAA), Network Advertising Initiative (NAI), or Your Online Choices (EDAA). We will update this section and re-request consent when such integrations are added.
8.4 Mobile Device Settings
On mobile devices, you can manage tracking through your device settings:
- iOS: Settings → Privacy & Security → Tracking
- Android: Settings → Privacy → Ads
9. Do Not Track and Global Privacy Control
Do Not Track (DNT): Some browsers transmit "Do Not Track" signals to websites. There is currently no universally accepted standard for how websites should respond to DNT signals. At this time, we do not alter our data collection and use practices in response to DNT signals. However, you can manage Cookies through the methods described in Section 8.
Global Privacy Control (GPC): We honor Global Privacy Control signals as a valid opt-out of the sale or sharing of personal information where required by applicable law, including the CCPA/CPRA. If we detect a GPC signal from your browser, we will treat it as a request to opt out of the sale or sharing of personal information associated with that browser. To learn more about GPC, visit globalprivacycontrol.org.
10. Updates to This Cookie Policy
We may update this Cookie Policy from time to time to reflect changes in our practices, the Cookies we use, or for legal, operational, or regulatory reasons. When we make material changes, we will:
- Update the "Last updated" and "Effective date" at the top of this Policy
- Provide notice through the Service (such as a banner or notification)
- Re-request consent where required by applicable law for new Cookie categories or purposes
We encourage you to review this Policy periodically. Your continued use of the Service after the effective date of any updated Policy constitutes your acknowledgment of the changes. Where applicable law requires renewed consent for material changes, we will obtain such consent before implementing the changes.
11. Contact Us
If you have questions, concerns, or requests regarding this Cookie Policy or our use of Cookies, you may contact us at:
- Email: privacy@fanclash.io
- Website: fanclash.io
- Postal address: FanClash, Inc., Attn: Privacy Team (address available upon request via privacy@fanclash.io)
For privacy-related requests or to exercise your data protection rights, please refer to our Privacy Policy. For EEA, UK, or Swiss residents, you also have the right to lodge a complaint with your local data protection supervisory authority.
See also: Privacy Policy · Terms of Service · Community Guidelines