Cookie Policy

Cookies are small files that a website can place on your device. Similar technologies include localStorage, sessionStorage, pixels, tags, scripts, device identifiers, and other ways of storing or accessing information on your browser or device.

Down The Cove uses these technologies to run a modern UK ecommerce store for coastal gear, fishing tackle, crabbing kits, seafood tools, food smoking kit, coastal homeware, and gifts.

The rules for cookies and similar technologies sit mainly under the Privacy and Electronic Communications Regulations, often called PECR. Where the information can identify you, UK data protection law may also apply.

We use cookies and browser storage to keep the shop reliable, remember your cookie choice, maintain your basket, support checkout, keep account and admin sessions secure, help returns and order pages work, and remember small pieces of state while you move around the website.

We may also use storage to understand website performance, product discovery, and customer journeys, but analytics only runs where it is configured and you have accepted analytics cookies.

We do not use this policy to hide broad advertising tracking. If advertising, heatmap, remarketing, social media, or other non-essential tracking tools are added later, this page should be updated and the tools should load only after the correct consent is collected.

Strictly necessary cookies and storage are used where the website cannot provide a service you have asked for without them. This includes remembering what is in your basket, keeping checkout steps working, protecting sign-in, remembering cookie consent, and supporting account security.

You cannot turn off strictly necessary storage through our cookie banner because the shop needs it to work. You can block it in your browser, but parts of the site may stop working properly.

Examples include first-party storage for cart continuity, cookie consent, account sessions, checkout and order confirmation state, admin security, and basic interface preferences.

When the cookie banner appears, you can accept analytics cookies or reject them. A reject choice still lets you browse, search, add products, and place orders, provided your browser allows the necessary storage used for the shop.

Your choice is stored as `dtc_cookie_consent` in localStorage where possible, with a first-party cookie fallback using the same name. This helps us remember the decision for up to one year.

If you clear cookies or browser storage, use another browser, use another device, or browse in a private mode that clears storage, you may see the cookie banner again.

Google Analytics may be used to understand website performance, popular pages, product discovery, search behaviour, and how customers move through the store.

Analytics only loads where a valid Google Analytics measurement ID is configured and you have accepted analytics cookies. Analytics is not loaded for admin, CMS, or API paths.

If you reject analytics cookies, Google Analytics will not be loaded by our storefront for your session. If analytics is accepted, Google may set or read its own analytics cookies and process usage information according to its own terms and privacy controls.

The current policy does not describe any active advertising pixels, remarketing tags, social media tracking pixels, heatmap tools, or session recording tools as enabled by default.

If these tools are added later, they should be listed in this cookie policy, explained clearly in the cookie banner or cookie controls, and loaded only after the correct consent is collected.

Marketing emails are managed separately from cookies. You can manage email marketing through your account preferences, email unsubscribe links, or customer care.

Account, cart, and checkout storage helps keep your basket, delivery choices, checkout progress, payment return state, order confirmation state, saved account state, and security checks available as you move around the website.

`cart_id` may be stored in localStorage so your retail basket can be restored. `dtc:last-completed-order` and `dtc:last-checkout-failure` may be stored in sessionStorage so the checkout confirmation or payment failure page can show the right order or recovery message.

If you clear storage or block necessary storage, you may be signed out, lose cart continuity, or be unable to complete checkout, view the right confirmation state, or submit return requests.

Authentication and security storage helps keep customer, wholesale, affiliate, CMS, and admin areas protected. Some authentication details may be set by the ecommerce platform, identity providers, or secure server-side cookies.

For admin users, an `admin_jwt` cookie can be used to keep the admin session available. Admin, CMS, and API paths are excluded from storefront Google Analytics loading.

If Google or Apple sign-in is enabled, `dtc_google_auth_context` or `dtc_apple_auth_context` may be stored briefly in localStorage to remember the sign-in flow and safe return path.

When you arrive through an approved affiliate link or product promotion, we may store affiliate attribution in first-party browser storage so the requested discount or referral can be applied to eligible products.

This helps us connect the correct affiliate partner, product, discount code, and order line where a qualifying purchase is made.

`affiliate_product_attributions` may store the product ID, affiliate code, promotion code, discount rate, target path, and the time the attribution was created. Legacy affiliate storage keys such as `affiliate_code`, `affiliate_promotion_code`, and `affiliate_discount_rate` may be cleared when newer product-level attribution is used.

Clearing browser storage may remove affiliate attribution or discount continuity.

Wholesale customers may use extra browser storage to keep wholesale ordering smoother. `wholesale_cart_id` can keep a wholesale basket linked as you move through the wholesale portal.

`wholesale_known_emails` may remember a small list of recently used wholesale email addresses in your browser so the sign-in or account lookup flow can feel less repetitive.

Clearing browser storage may remove local wholesale cart continuity or remembered wholesale email convenience data, but it does not delete server-side wholesale account or order records.

Cove Club, subscription, and wishlist experiences may rely on account sign-in, server-side customer preferences, checkout state, and payment-provider storage rather than large numbers of separate storefront cookies.

Wishlist product IDs are stored against your signed-in account preferences. The storefront may use temporary local UI state while a wishlist update is being saved.

Subscription checkout and renewal billing may involve Stripe cookies or similar technology when secure payment forms, customer authentication, or billing flows are loaded.

Stripe may use cookies or similar technology when loading secure payment forms, wallet payment methods, checkout authentication, fraud checks, payment confirmations, subscription billing, and Stripe Connect onboarding for affiliate payouts.

Payment card data is handled by Stripe and is not stored by Down The Cove. Stripe may process payment and fraud-prevention information according to its own privacy and cookie practices.

Blocking Stripe-related cookies or browser storage may stop payment forms, wallet payments, checkout confirmation, or affiliate payout onboarding from working correctly.

Delivery tracking, return labels, maps, social platforms, embedded media, external coastal guides, payment services, and linked partner websites may use their own cookies if you open or interact with them.

For example, Royal Mail or another delivery provider may use cookies on its own tracking or returns pages, and Google Maps may use cookies if you open a map or external map link.

Those services are responsible for their own cookie and privacy notices. Please read their policies when you leave Down The Cove.

The exact cookies and storage items can vary by browser, device, feature, and provider. This list explains the main first-party items currently described by the platform.

Some server-side authentication, Stripe, analytics, delivery, browser, or third-party cookies may use provider-controlled names and durations. Where a third-party service is involved, its own cookie notice may provide the most detailed technical list.

Different cookies and storage items last for different periods depending on their job. Some are session-only and clear when the browser tab or session ends. Others remain until a cart is completed, an account flow finishes, the data is cleared, or the browser removes it.

`dtc_cookie_consent` is designed to last for up to one year so we can remember your cookie choice. `sidebar_state` is designed to last for up to seven days where that interface preference is used.

Analytics and payment providers may set their own durations. You can usually see current cookies and expiry dates in your browser privacy or developer settings.

You can accept or reject analytics cookies through our cookie banner when it appears. You can also delete cookies, clear localStorage and sessionStorage, block third-party cookies, or block all cookies in your browser settings.

Blocking all cookies or storage is likely to affect sign-in, cart, checkout, returns, wholesale, affiliate, payment, account, CMS, or admin features.

Most browsers let you delete cookies for one website without clearing everything. Search your browser help pages for cookie, site data, localStorage, or privacy settings if you need exact steps.

We may update this cookie policy when we change the website, add new ecommerce features, change analytics, introduce new marketing or advertising tools, update payment or delivery providers, or adjust the cookie banner.

If a change introduces new non-essential cookies or similar technologies, we should update this page and collect the right consent before those tools load.

The latest version will be published here, with the update date shown near the top of the page.

For questions about cookies, analytics, browser storage, affiliate attribution, or privacy choices, contact Down The Cove at info@downthecove.com or through the contact page.

Where cookie or storage information is personal data, you may also have UK data protection rights explained in our privacy policy.

If you are unhappy with how cookies or personal data are handled, you can contact us first and you also have the right to complain to the UK Information Commissioner's Office.