Last updated: June 20, 2026

Cookie Policy

ZewstPay uses cookies and similar technologies (collectively “cookies”) on its websites and dashboards. This policy explains what they are, what we use them for, and how to manage them.

What is a cookie?

A cookie is a small text file a website places on your browser. It lets a site remember information about your visit — your sign-in, your preferences, what you were doing — so subsequent pages or return visits work without starting from scratch.

What we use cookies for

• Strictly necessary. Authentication, session management, CSRF tokens, load balancing. The service does not work without these.
• Security. Detecting and mitigating fraud, abuse, and unauthorized account access.
• Functional. Remembering preferences like your chosen currency display or sidebar state.
• Analytics. Aggregate, privacy-preserving usage statistics that help us improve the product (page load times, which features get used, error rates).

We do not use cookies for cross-site advertising or to build a profile for ad networks.

The ZewstPay session cookie

Our primary authentication cookie is named zp_zsid. It is:

• HttpOnly — invisible to JavaScript, so cross-site scripts cannot read it
• Secure — sent only over HTTPS
• SameSite=None with Domain=.zewstpay.com — flows across our subdomains for the BFF (backend-for-frontend) pattern, but not to any other domain
• Encrypted server-side with AES-256-GCM
• Valid for 30 days; rotated silently on successful refresh

Managing cookies

Most browsers let you reject or delete cookies through their settings. If you block strictly-necessary cookies, you will not be able to sign in to ZewstPay or process transactions.

• Manage cookies in Chrome
• Manage cookies in Safari
• Manage cookies in Firefox

Changes

We may update this policy. Material changes will be communicated in-product.

Contact

privacy@zewstpay.com

This document is a plain-language draft. Have qualified counsel review before production launch.