FREE SHIPPING ON ORDERS $50+ — USE CODE: STASH50 · NEW DROPS EVERY FRIDAY — RAID THE STASH · TASTE, NOT THE PRICE TAG — SHOP THE EDIT · 10–20 DAY DELIVERY — PRICED FOR THE SCROLL · PAY IN 4 WITH KLARNA — ZERO INTEREST · FREE SHIPPING ON ORDERS $50+ — USE CODE: STASH50 · NEW DROPS EVERY FRIDAY — RAID THE STASH · TASTE, NOT THE PRICE TAG — SHOP THE EDIT · 10–20 DAY DELIVERY — PRICED FOR THE SCROLL · PAY IN 4 WITH KLARNA — ZERO INTEREST
Piece of Stass

Cookie Policy

Last updated: June 21, 2026

TEMPLATE / NOT LEGAL ADVICE. This Cookie Policy is a customizable template for pieceofstass.com. It is not legal advice. Complete all [PLACEHOLDERS] and have a licensed attorney review it before publishing. The specific cookies listed are typical examples — run an actual cookie scan (e.g., via your CMP) and update the tables to match what your Site actually sets. EU/UK law (ePrivacy + GDPR) requires prior opt-in consent for non-essential cookies.

Cookie Policy

Effective Date: [EFFECTIVE DATE] Last Updated: June 21, 2026

This Cookie Policy explains how Piece of Stass LLC ("we," "us," "our") uses cookies and similar technologies on pieceofstass.com (the "Site"). It should be read together with our Privacy Policy.

1. What Are Cookies?

Cookies are small text files placed on your device when you visit a website. We also use similar technologies such as pixels/tags (e.g., the Meta Pixel and TikTok Pixel), SDKs, local storage, and server-side event APIs (e.g., Meta Conversions API and the TikTok Events API). In this Policy, "cookies" refers to all of these unless stated otherwise.

Cookies may be first-party (set by us) or third-party (set by a partner). They may be session (deleted when you close your browser) or persistent (remain for a set period).

2. Cookie Categories

We group cookies into the following categories:

2.1 Strictly Necessary

Essential for the Site to function and cannot be switched off. They enable core features like security, network management, cart, checkout, and load balancing. These do not require consent.

2.2 Performance & Analytics

Help us understand how visitors use the Site so we can measure and improve performance (e.g., which pages are popular). Require consent in the EU/UK.

2.3 Functional

Remember choices you make (e.g., language, region, preferences) to provide enhanced features. May require consent depending on jurisdiction.

2.4 Marketing & Targeting

Used to deliver and measure advertising, build audiences, and track conversions across sites and platforms. Require opt-in consent in the EU/UK and may constitute "sale"/"sharing" under CCPA/CPRA (opt-out applies).

3. Specific Cookies & Technologies We Use

The following are representative examples. Verify against a live cookie scan and update names/durations as needed.

3.1 Strictly Necessary

| Cookie / Tech | Provider | Purpose | Type / Duration (typical) |

| --- | --- | --- | --- |

| __cf_bm, cf_clearance | Cloudflare | Bot management, security, distinguishing humans from bots | Session – 30 min / up to 1 yr |

| __cfduid / __cflb | Cloudflare | Load balancing, security | Session – 1 yr |

| __stripe_mid, __stripe_sid | Stripe | Fraud prevention and secure payment processing | 1 yr / 30 min |

| cart, checkout, secure_session_id | First-party / [platform, e.g., Shopify] | Maintain cart and secure checkout | Session – 2 wks |

3.2 Performance & Analytics

| Cookie / Tech | Provider | Purpose | Type / Duration (typical) |

| --- | --- | --- | --- |

| _ga, _ga_ | Google Analytics 4 (GA4) | Distinguish users, measure usage and sessions | 2 yrs |

| _gid | Google Analytics | Distinguish users | 24 hrs |

| _gat / _gcl_au | Google | Throttle request rate / conversion linking | 1 min / 90 days |

3.3 Marketing & Targeting

| Cookie / Tech | Provider | Purpose | Type / Duration (typical) |

| --- | --- | --- | --- |

| _fbp (Meta Pixel) + Conversions API (CAPI) | Meta Platforms | Ad measurement, conversion tracking, audience building (incl. server-side events) | 90 days |

| fr | Meta | Ad delivery and measurement | 90 days |

| _ttp / TikTok Pixel + Events API | TikTok | Ad measurement, conversion tracking, audiences (incl. server-side events) | up to 13 mo |

| __kla_id / Klaviyo on-site tracking | Klaviyo | Email/SMS marketing attribution and personalization | up to 2 yrs |

| _gcl_aw | Google Ads | Conversion tracking | 90 days |

3.4 Server-side event APIs

Meta CAPI and the TikTok Events API send conversion/event data from our servers (and may include hashed identifiers such as email or phone where you provided them). Where required, these are activated only after you consent and are reflected in your consent choices.

4. Consent Mechanism

4.1. Consent Management Platform (CMP). When you first visit the Site (and periodically thereafter), our cookie banner / CMP [name your CMP, e.g., Cookiebot / Osano / Shopify customer privacy] lets you accept, reject, or customize non-essential cookies by category.

4.2. EU/UK (opt-in). For visitors in the EU/EEA and UK, non-essential cookies are not set until you give consent. We block these technologies until consent is recorded, and we honor your withdrawal of consent at any time.

4.3. U.S. (opt-out). For U.S. visitors, marketing/targeting cookies may operate by default where lawful, subject to your right to opt out of "sale"/"sharing" under CCPA/CPRA and similar state laws. We honor the Global Privacy Control (GPC) signal as a valid opt-out.

4.4. Changing your choices. You can change or withdraw consent at any time via the "Cookie Settings" link in the Site footer or the "Do Not Sell or Share My Personal Information" control.

5. EU/UK CMP Requirements (ePrivacy + GDPR)

To meet EU/UK requirements, our consent banner is designed to:

  • Obtain prior, freely given, specific, informed, and unambiguous opt-in consent before setting non-essential cookies;
  • Make rejecting as easy as accepting (e.g., a "Reject All" option of equal prominence to "Accept All");
  • Avoid pre-ticked boxes and dark patterns;
  • Provide granular control by category;
  • Record and store proof of consent and allow easy withdrawal;
  • Where applicable, support the IAB Transparency & Consent Framework (TCF) signals for our advertising partners. [Confirm whether you use IAB TCF.]

6. Managing Cookies in Your Browser

Most browsers let you block or delete cookies through their settings. Blocking strictly necessary cookies may break parts of the Site. For guidance, see your browser's help pages (Chrome, Safari, Firefox, Edge). You can also opt out of certain advertising via the platforms' settings (Meta, TikTok, Google) and industry tools such as the DAA (optout.aboutads.info) and EDAA (youronlinechoices.eu).

7. Changes to This Policy

We may update this Cookie Policy as our practices or the law change. The "Last Updated" date shows the latest revision.

8. Contact

Piece of Stass LLC

Privacy Email: [PRIVACY EMAIL]

[Registered Business Address], Tennessee, USA

pieceofstass.com

This Cookie Policy is a template and must be reviewed by a licensed attorney before use. Update the cookie tables to reflect a live scan of your Site.