Cookie Policy
Last updated: April 30, 2026
.zeusxr.com so accepting (or rejecting) once applies
everywhere. You can change it any time using the button below.
Cookie preferences
1What is a cookie
A cookie is a small text file that a website stores on your device. We also use related technologies (localStorage, sessionStorage, web pixels) which we treat under this same policy. Cookies allow the site to remember you between visits — essential for keeping you signed in and remembering preferences.
2Categories we use
- Necessary Strictly required for the Service to work (auth, security, fraud prevention, your consent record). Cannot be turned off and do not need consent under GDPR.
- Preferences Remember your choices (language, theme). Optional but improve usability.
- Analytics Aggregate metrics on performance and usage. Off by default — only set if you opt in.
- Advertising Personalized ads. Off by default — only set if you opt in.
- Third-party Set by external services we integrate (e.g., OAuth providers when you sign in).
3Full list of cookies
The list below covers all subdomains. A cookie set on .zeusxr.com applies to feed, news, market, cinema, labs and the main landing.
Necessary
| Name | Purpose | Duration | Domain |
|---|---|---|---|
| zeus_session | Authenticated session (HttpOnly, Secure). Sent to auth-worker on every request. | 30 days | .zeusxr.com |
| zeus_token | JS-readable session token used by clients on workers.dev preview domains. | 30 days | .zeusxr.com |
| zeus_csrf | CSRF protection token issued per session. Validated on state-changing requests. | 4 hours | .zeusxr.com |
| zeus_consent | Stores your cookie preferences so the banner is not shown again. | 1 year | .zeusxr.com |
| __cf_bm | Cloudflare bot management (security, anti-bot). | 30 minutes | .zeusxr.com |
| cf_clearance | Cloudflare challenge clearance after passing a security check. | 30 days | .zeusxr.com |
Preferences
| Name | Purpose | Duration | Domain |
|---|---|---|---|
| zeus_theme | Light / dark theme choice. | localStorage (persistent) | per subdomain |
| zx_suggest_lang | Suggested language banner state for English-speaking visitors on Spanish pages. | 30 days | news.zeusxr.com |
Analytics (only if you opt in)
| Name | Purpose | Duration | Domain |
|---|---|---|---|
| zx_vitals_id | Random ID to deduplicate Web Vitals samples (anonymous, never linked to your account). | session | .zeusxr.com |
Advertising (only if you opt in — currently unused)
We do not currently set advertising cookies. If we add personalized advertising in the future, we will list each cookie here and require fresh opt-in.
Third-party (set by other services we integrate)
| Service | Purpose | Domain |
|---|---|---|
| Google OAuth | Sign in with Google. Cookies set during the OAuth handshake on Google's domain. | accounts.google.com |
| LinkedIn OAuth | Sign in with LinkedIn. | linkedin.com |
| Apple Sign In | Sign in with Apple. | appleid.apple.com |
| Stripe | Payments and fraud prevention during checkout. | stripe.com / js.stripe.com |
| Cloudflare Turnstile | Anti-bot CAPTCHA when prompted. | challenges.cloudflare.com |
| YouTube / Vimeo embeds | If embedded in user content; only set if you click play. | youtube.com / vimeo.com |
4How to control cookies
A. Inside ZeusXR
The cookie banner appears on your first visit to any subdomain. You can re-open the preferences panel at any time using the button at the top of this page or the footer link "Cookies" on every page.
B. In your browser
You can also block or delete cookies in your browser settings. Note that disabling necessary cookies will prevent ZeusXR from working (you will not be able to stay signed in).
- Chrome: Settings → Privacy and security → Cookies and other site data.
- Firefox: Settings → Privacy & Security → Cookies and Site Data.
- Safari: Preferences → Privacy → Manage Website Data.
- Edge: Settings → Cookies and site permissions.
C. Global Privacy Control (GPC) and "Do Not Track"
We honor the Global Privacy Control (GPC) signal: if your browser sends GPC, we treat it as an opt-out of sale/sharing under CCPA/CPRA and as an objection to non-essential cookies under GDPR.
5Legal basis (EU/UK)
- Necessary cookies: processed under our legitimate interest and the "strictly necessary" exemption of the ePrivacy Directive (Art. 5(3)). No consent required.
- Preferences, Analytics, Advertising: processed under your consent (GDPR Art. 6(1)(a) + ePrivacy). Off by default.
6Changes to this policy
If we add new cookies or change purposes, this page will be updated and the "Last updated" date revised. Material changes that require fresh consent will trigger the banner again.
7More information
For broader detail on how we handle personal data — what we collect, share, retention, and your rights — see our Privacy Policy. For platform rules, see our Terms of Service.