Cookie Policy

Introduction

This Cookie Policy explains how BS SCs ("the Service") uses cookies and similar storage technologies to provide, secure, and improve our Service. By using the Service, you agree to the use of cookies and browser storage as described in this policy.

This policy should be read in conjunction with our Privacy Policy and Terms of Service.

What Are Cookies and Browser Storage?

Cookies are small text files that are stored on your device by your web browser. Browser storage (such as localStorage) is a similar technology that allows websites to store data locally on your device. Both technologies help us provide essential functionality, remember your preferences, and improve your experience with the Service.

Types of Cookies and Storage We Use

Essential Cookies

These cookies are necessary for the Service to function properly:

• Supabase Authentication Cookies: Managed by our authentication provider, Supabase, these HTTP-only cookies store your session information securely. They are essential for logging in and maintaining your authenticated session. These cookies are automatically deleted when you log out or when they expire.

Preference and Functionality Storage

We use browser localStorage to remember your preferences and improve your experience. This data is stored locally on your device and is not transmitted to our servers:

• Theme Preference: Stores your choice between dark and light mode (stored as 'theme' with values 'dark' or 'light').
• Holiday Theme Preference: Stores whether you have enabled or disabled seasonal themes like Halloween and Christmas decorations (stored as 'holidayTheme' with values 'enabled' or 'disabled').
• Banner Dismissals: Remembers which announcement banners you have dismissed and for how long.

Performance and Caching Storage

We use localStorage to improve performance and reduce unnecessary server requests:

• Rate Limiting Storage: Stores a timestamp (as 'discord_rl_block_until') to prevent excessive API requests to Discord's servers, protecting both you and the Service from rate limiting errors.
• Page-Specific Caches: Some pages temporarily cache data to improve performance and reduce server load.

Purpose and Legal Basis

We use cookies and browser storage for the following purposes:

• Authentication and Security: To verify your identity, maintain your login session, and protect your account from unauthorized access. This is essential for the performance of the Service.
• Functionality: To remember your preferences (theme, holiday decorations) and provide a personalized experience. This is based on your consent and legitimate interests.
• Performance: To cache frequently accessed data and reduce unnecessary network requests, improving load times and reducing server costs. This is based on our legitimate interests in providing an efficient service.

Data Security

We implement industry-standard security measures to protect cookie and storage data:

• Authentication cookies are marked as HTTP-only, preventing access by JavaScript and protecting against cross-site scripting (XSS) attacks.
• Cookies are marked as Secure, ensuring they are only transmitted over encrypted HTTPS connections.
• Cookies use SameSite protection to prevent cross-site request forgery (CSRF) attacks.
• Sensitive authentication cookies have short expiration times (5 minutes) to minimize risk if compromised.

Third-Party Services

The Service uses Supabase for authentication, which sets its own cookies to manage your session. Supabase's cookie usage is governed by their Privacy Policy.

The Service also integrates with Discord for OAuth authentication. While Discord does not set cookies directly through our Service, your authentication session with Discord is governed by Discord's Privacy Policy.

Your Choices and Control

You have several options to control cookies and browser storage:

• Essential Cookies: Because essential authentication cookies are necessary for the Service to function, they cannot be disabled if you wish to use authenticated features. However, you can log out at any time, which will delete these cookies.
• Preference Storage: You can change your theme preferences at any time using the theme toggle in the navigation bar. You can manually clear localStorage through your browser's developer tools or settings.
• Browser Settings: Most web browsers allow you to control cookie settings through their preferences. You can typically find these in the Privacy or Security section of your browser settings. Note that disabling all cookies will prevent you from logging in and using authenticated features of the Service.
• Clear Storage: You can clear all cookies and localStorage at any time through your browser settings. This will log you out and reset all preferences to defaults.

Cookie Retention

Different types of cookies and storage have different retention periods:

• Session Cookies: Supabase authentication session cookies persist until you log out or until they expire based on Supabase's default session duration.
• Preference Storage: Persists indefinitely in localStorage until you manually clear it or change your preferences.
• Cache Storage: Cache entries in localStorage expire after their designated time periods (typically 5 minutes) but remain in storage until overwritten or cleared.

Changes to This Policy

We may update this Cookie Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. Any changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically. Your continued use of the Service after changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this Cookie Policy or our use of cookies and browser storage, please contact us via Discord in the server where the Service is provided, or email us at bsscs@theczar1994.dev.