Cookies are small text files stored on your device (computer, phone, tablet) when you visit a website. In addition to cookies, websites also use local storage (localStorage) and session storage (sessionStorage) — browser mechanisms for temporarily or persistently storing data on your device.
Cookies and similar technologies cannot identify you personally on their own, unless you voluntarily provide personal data (e.g., during login).
The template.arli.club website uses only strictly necessary cookies and local storage for basic functionality. We do not use analytical, marketing, or third-party cookies (Google Analytics, Facebook Pixel, etc.).
| Name | Provider | Purpose | Duration | Type |
|---|---|---|---|---|
sb-[ref]-auth-token | Supabase (authentication provider) | Authenticated user session — stores encrypted authentication token | Session / until logout | First-party cookie (session) |
sb-[ref]-auth-token-code-verifier | Supabase (authentication provider) | PKCE security key during OTP login process | Session (temporary) | First-party cookie (session) |
[ref] is the Supabase project identifier. These cookies are first-party (set directly by template.arli.club) and are not used for tracking; they are required to keep you logged in.
Legal basis: Article 225(3) of the Slovenian Electronic Communications Act (ZEKom-2) — exemption from consent for cookies that are strictly necessary for providing an information-society service explicitly requested by the user (login to a user account).
You cannot reject them, as they are required for basic authentication functionality.
| Key | Purpose | Duration | Category |
|---|---|---|---|
arli_cart | Stores your shopping cart contents (products, quantities, gift box options) | 48 hours from when each item is added (automatic cleanup) | Strictly necessary |
arli_voucher_code | Stores an entered voucher code for use during checkout | Until order submission or manual deletion | Strictly necessary |
arli_cookie_consent | Stores your cookie consent decision (acceptance date) | Permanent (until manual deletion) | Strictly necessary |
Data in local storage does not leave your device and is not sent to our servers. Legal basis: Article 225(3) ZEKom-2 — strictly necessary technologies for providing a service explicitly requested by the user (shopping cart, voucher input, recording of the cookie-notice acknowledgement).
| Key | Purpose | Duration | Category |
|---|---|---|---|
arli_checkout_session | Prevents duplicate order submission during checkout | Session (until tab is closed) | Strictly necessary |
arli_order_[order-number] | Temporarily passes the details of the just-placed order to the order confirmation page | Session (until tab is closed) | Strictly necessary |
Data in session storage is automatically deleted when you close the browser tab. Legal basis: Article 225(3) ZEKom-2 — strictly necessary technologies for completing the checkout process explicitly requested by the user.
The template.arli.club website does not use third-party tracking or advertising cookies. We do not use:
Login cookies (sb-[ref]-auth-token) are first-party — they are set on the template.arli.club domain by the website's own authentication library and are not third-party cookies. Supabase, Netlify, and Cloudflare act as our sub-processors in operating the site and may set strictly necessary infrastructure cookies:
All such cookies are essential to the safe operation of the website and cannot be rejected without breaking functionality.
On your first visit, a cookie notice is displayed where you can accept the use of strictly necessary cookies. Since we only use strictly necessary cookies, additional settings are not needed.
You can manage cookies directly in your browser:
You can delete cookies and local storage in your browser settings under "Clear browsing data".
Warning: Deleting cookies will cause you to be logged out of your account and empty your shopping cart.
Since we only use strictly necessary cookies, they cannot be rejected without affecting functionality:
The website will still be accessible for browsing products, but purchasing and login will not be possible.
| Service | Provider | Purpose | Location |
|---|---|---|---|
| Web application hosting | Netlify, Inc. | Serving the website | USA (EU-US DPF) |
| Authentication and database | Supabase Inc. | User login, data storage | Frankfurt, Germany (EU) |
| Image storage (R2) | Cloudflare, Inc. | Product photos and uploaded logos | Cloudflare EU network (HQ USA, EU-US DPF) |
| Email delivery | Sendinblue SAS (Brevo) | Login security codes and order emails | France (EU) |
Netlify and Cloudflare may use their own infrastructure cookies for traffic routing and abuse protection (e.g., DDoS mitigation); these are likewise strictly necessary and do not contain personal data.
We reserve the right to update this cookie policy. Changes will be published on this page with a new effective date.
For questions regarding cookies, contact us:
Arli Club d.o.o.
Vzorčna ulica 1, 1000 Ljubljana, Slovenia
Email: [email protected]
Phone: +386 1 234 5678
Registration number: 0000000000
VAT ID: SI00000000
| Category | Used | Requires consent |
|---|---|---|
| Strictly necessary cookies (authentication) | Yes | No |
| Local storage (cart, voucher, consent) | Yes | No |
| Session storage (checkout process) | Yes | No |
| Analytical cookies | No | / |
| Marketing cookies | No | / |
| Third-party cookies | No | / |
Our website uses a minimal amount of cookies and storage — only those strictly necessary for functionality. We do not track your behavior, display personalized ads, or share data with advertising platforms.
Useful links:
Effective date: July 13, 2026