Cookie Policy
Last Updated: February 2026
Effective Date: February 2026
1. What Are Cookies?
Cookies are small text files that are stored on your device (computer, tablet, or mobile) when you visit our website. They help us provide you with a better experience by remembering your preferences and enabling essential website functionality.
This Cookie Policy explains how Caboodle Ireland ("we," "us," or "our") uses cookies and similar tracking technologies on our platform. This policy should be read alongside our Privacy Policy and Terms of Service.
Legal Compliance: This policy complies with the EU ePrivacy Directive, GDPR, and Irish data protection laws.
2. Types of Cookies We Use
2.1 Strictly Necessary Cookies
Legal Basis: These cookies are essential for the website to function and cannot be disabled. They are set in response to actions you take, such as logging in or filling forms.
Authentication Cookies
Purpose: Google OAuth authentication and session management
Examples: next-auth.session-token, __Secure-next-auth.session-token
Duration: 30 days (session-based)
Provider: NextAuth.js
Shopping Cart Cookies
Purpose: Maintain shopping cart contents and checkout process
Examples: caboodle-cart, cart-session
Duration: Session-based or 7 days
Provider: Caboodle Platform
Security Cookies
Purpose: CSRF protection and secure form submissions
Examples: next-auth.csrf-token, __Host-next-auth.csrf-token
Duration: Session-based
Provider: NextAuth.js
Load Balancing
Purpose: Distribute server load and maintain session stickiness
Duration: Session-based
Provider: Hosting Infrastructure
2.2 Functional Cookies
Legal Basis: These cookies enhance functionality and personalization. While not strictly necessary, they improve your user experience.
User Preferences
Purpose: Remember your settings, language preferences, and dashboard customizations
Examples: user-prefs, dashboard-layout
Duration: 1 year
Provider: Caboodle Platform
Notification Settings
Purpose: Remember your notification preferences and alert settings
Examples: notification-prefs
Duration: 6 months
Provider: Caboodle Platform
2.3 Performance and Analytics Cookies
Legal Basis: These cookies require your consent. They help us understand how you use our platform and improve our services.
Usage Analytics
Purpose: Understand how users interact with our platform to improve functionality
Data Collected: Page views, click patterns, time spent, device type
Duration: 2 years
Provider: Internal Analytics
Error Monitoring
Purpose: Detect and diagnose technical issues to improve platform stability
Data Collected: Error messages, browser information, technical diagnostics
Duration: 30 days
Provider: Error Logging Service
2.4 Third-Party Service Cookies
Legal Basis: These cookies are set by our trusted service providers to enable essential functionality.
Google OAuth
Purpose: Secure authentication and account management
Examples: accounts.google.com cookies
Duration: As per Google's cookie policy
Privacy Policy: Google Privacy Policy
Stripe Payment Processing
Purpose: Secure payment processing and fraud prevention
Examples: __stripe_mid, __stripe_sid
Duration: 1 year or session-based
Privacy Policy: Stripe Privacy Policy
Shopify Integration
Purpose: Enable vendor product synchronization and order management
Examples: Shopify session cookies (when connecting stores)
Duration: As per Shopify's cookie policy
Privacy Policy: Shopify Privacy Policy
2.5 Marketing Cookies
Legal Basis: These cookies require your explicit consent. They are used to understand your browsing behaviour, deliver personalised marketing, and improve your shopping experience. They are only activated when you accept marketing cookies through our cookie consent banner or Cookie Settings page.
Klaviyo (Marketing & CRM)
Purpose: Customer relationship management, email marketing, and behavioural analytics including product views, cart activity, and checkout tracking
Data Collected: Products viewed, items added to cart, checkout initiation, purchase history, email address (when logged in)
Examples: _learnq cookies, Klaviyo onsite tracking scripts
Duration: Up to 2 years
Provider: Klaviyo, Inc.
Privacy Policy: Klaviyo Privacy Policy
3. Cookie Duration
3.1 Session Cookies
Deleted when you close your browser. Used for essential functionality like authentication and security.
3.2 Persistent Cookies
Remain on your device for a set period. Used for remembering preferences and improving user experience.
3.3 Cookie Expiration Schedule
- Authentication: 30 days or end of session
- Shopping Cart: 7 days or end of session
- User Preferences: 1 year
- Analytics: 2 years (with consent)
- Security: End of session
4. Your Cookie Choices and Rights
4.1 Managing Cookie Consent
Under EU law, you have the right to:
- Be informed about our cookie usage
- Give or withdraw consent for non-essential cookies
- Access information about cookies stored on your device
- Delete cookies from your device
4.2 Browser-Level Cookie Management
You can control cookies through your browser settings:
Chrome
Settings → Privacy and Security → Cookies and other site data
Firefox
Options → Privacy & Security → Cookies and Site Data
Safari
Preferences → Privacy → Manage Website Data
Edge
Settings → Site permissions → Cookies and site data
4.3 Important Note
Disabling essential cookies may affect website functionality. You may not be able to log in, make purchases, or access certain features if strictly necessary cookies are blocked.
5. How We Obtain Consent
5.1 Consent Mechanisms
When you first visit our site, a cookie consent banner allows you to accept all cookies, accept essential cookies only, or customise your preferences. You can update these choices at any time via our Cookie Settings page.
- Essential Cookies: No consent required (legitimate interest)
- Functional Cookies: Opt-in consent through settings
- Analytics Cookies: Explicit consent required
- Marketing Cookies: Explicit consent required (e.g. Klaviyo tracking)
- Third-Party Cookies: Consent obtained before activation
5.2 Withdrawing Consent
You can withdraw your consent at any time by:
- Visiting our Cookie Settings page to update your preferences
- Contacting us at info@caboodle.ie
- Using browser settings to delete/block cookies
When you withdraw consent for marketing cookies, services such as Klaviyo tracking will be immediately disabled and no further behavioural data will be collected until consent is re-granted.
6. Data Protection and Security
Cookie data is protected using appropriate technical and organizational measures:
- Encryption: Secure transmission and storage of cookie data
- Access Controls: Limited access to cookie data on need-to-know basis
- Regular Audits: Periodic review of cookie usage and compliance
- Third-Party Vetting: Due diligence on service provider cookie practices
7. International Data Transfers
Some cookies may involve data transfers outside the EEA through our service providers (Google, Stripe, Shopify). We ensure adequate protection through:
- European Commission adequacy decisions
- Standard Contractual Clauses (SCCs)
- Service provider GDPR compliance programs
- Regular monitoring of transfer safeguards
8. Changes to This Cookie Policy
We may update this Cookie Policy to reflect changes in our practices, technology, or legal requirements. When we make material changes:
- We will update the "Last Updated" date
- Notify users via email or platform notification
- Obtain fresh consent where required by law
- Provide clear information about the changes
9. Contact Us
9.1 Questions About Cookies
Caboodle Ireland
Email: info@caboodle.ie
Subject Line: Cookie Policy Inquiry
9.2 Data Protection Authority
For complaints about cookie practices:
Data Protection Commission (Ireland)
Website: www.dataprotection.ie
Phone: +353 57 868 4757
This Cookie Policy complies with EU ePrivacy Directive, GDPR, and Irish data protection laws. By continuing to use Caboodle, you acknowledge understanding of our cookie practices.