Data &Cookies.
Last updated: May 2026
What are cookies? Cookies are small text files that a website stores in your browser. They help websites remember things between page loads — like whether you are signed in.
How Flare Tag Uses Cookies
Flare Tag sets one cookie. That is it. We do not use advertising cookies, analytics cookies, or any form of behavioural tracking.
The Cookie We Set
| Name | Purpose | Duration | Who Receives It |
|---|---|---|---|
| refresh_token | Keeps signed-in organisers logged in across page reloads | 7 days, or until sign-out | Signed-in organisers only |
What this cookie contains: The refresh_token cookie holds a secure token that identifies your session. It contains only your internal account identifier, an expiry timestamp, and a unique token ID. It does not contain your name, email address, or any other personal information.
Technical attributes:
| Attribute | Value |
|---|---|
| HttpOnly | Yes — cannot be read by JavaScript |
| Secure | Yes — transmitted over HTTPS only |
| SameSite | Lax — protected against cross-site request forgery |
| Expires | 7 days from sign-in |
Type: Strictly necessary
Can you turn it off? This cookie is required for you to stay signed in. Disabling it means you will be logged out every time you reload the page.
If You Are a Participant
If you are generating a badge — not managing templates — no cookies are set on your device at all. You access Flare Tag without signing in, and nothing is stored in your browser.
Do We Need Your Consent for Cookies?
No. The one cookie we set is strictly necessary for the platform to function. Under applicable data protection regulations, strictly necessary cookies do not require a consent banner or prior approval.
Cookies We Do Not Use
To be explicit:
- No advertising or marketing cookies
- No analytics or behavioural tracking cookies
- No third-party tracking cookies
- No cookies used to build a profile of you for any purpose
Third-Party Services
Flare Tag works with the following third-party services that may process your data as part of delivering the platform. These are processors only — they do not receive your data for their own purposes.
| Third Party | What Is Shared | Why |
|---|---|---|
| Your name, email address, and profile photo URL | To sign you in via Google OAuth | |
| Cloudinary | Logos you upload, photos used in badge generation, generated badge images | Image storage and delivery |
| Resend | Your email address | To send transactional emails related to your account |
No data is shared with advertising networks, data brokers, or analytics platforms.
Your Rights Under the NDPR
Under the Nigeria Data Protection Regulation (NDPR), you have the right to:
- Know what personal data we hold about you and why
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data
- Withdraw consent where consent is the basis for processing
To exercise any of these rights, contact us at privatesocialbadge@gmail.com.
How to Manage Cookies
You can manage or delete cookies through your browser settings:
- Chrome:Settings → Privacy and Security → Cookies and other site data
- Safari:Settings → Safari → Privacy & Security
- Firefox:Settings → Privacy & Security → Cookies and Site Data
- Edge:Settings → Cookies and site permissions
Note that deleting the refresh_token cookie will sign you out of Flare Tag.
Changes to This Policy
If our cookie use changes — for example if we add new features that introduce new cookies — we will update this page and revise the date at the top before those changes go live.
Contact
Questions about this policy? Reach us at privatesocialbadge@gmail.com.