Ummah Unite Cookie Policy
Ummah Unite LLC ("we," "our," or "us") uses cookies, local storage tokens, web beacons, and similar tracking technologies on our website, marketplace platforms, and associated software configurations (collectively, the "Platform"). This Cookie Policy explains what these technologies are, how we use them, and your rights to control their usage across our ecosystem.
Section 1: What are Cookies and Tracking Technologies?
To keep our multi-sided ticketing and retail marketplace operating securely at high speed, our software stack deploys specific web data-storage tools:
- Cookies: Small data files placed on your device browser that allow the Platform to remember configuration data, user sessions, and cryptographic identifiers across pages.
- Local Storage & Session Storage: Web browser mechanisms that securely store key-value pairs locally on your device. We utilize local storage extensively to securely hold user authorization parameters without passing sensitive information through server headers on every click.
- Web Beacons/Pixels: Tiny electronic image files embedded invisibly in emails or event pages to verify transaction deliveries, view-count metrics, and communication pipeline integrity.
Section 2: How We Deploy Tracking Technologies
We organize our use of cookies and tracking technologies into three categories based on their technical function within the application runtime layer:
| Category | Core Purpose within Platform Architecture | Retention Type |
|---|---|---|
| Strictly Necessary | Maintains active session authentication, prevents cross-site request forgery (CSRF) exploits, manages automated OTP phone verification tracking state, and facilitates secure Stripe Connect merchant transaction streams. The Platform cannot function without these. | Session / Persistent (Up to 1 year for token authentication) |
| Functional & Algorithmic | Powers high-demand real-time logistics. Tracks the 15- minute temporary cryptographic holds on interactive map zones (seats/booths) and manages the 10-minute automated countdown limits for the Advanced Waitlist claim system to prevent system race conditions. | Short-term / Session (Expires upon timeout) |
| Analytics & Performance | Logs quantitative marketplace metrics (such as item checkout volumes, session capacity rates, and regional category velocities). This feeding pipeline anonymizes data parameters immediately at ingestion to power our marketplace research datasets. | Persistent (Up to 2 years, aggregated) |
Section 3: Third-Party Embedded Tracking
Because Ummah Unite scales transaction and security handling through specialized microservices, certain trusted global infrastructure providers drop tracking modules into your browser environment:
- Stripe / Stripe Connect: Drops essential fraud prevention and secure financial routing cookies directly within our SvelteKit payment forms. These cookies are legally and operationally mandatory under PCI-DSS compliance regulations to analyze browser risk signals and authorize fraud-free payments via card elements, Apple Pay, and ACH transfers.
- Authentication Infrastructure (Supabase Auth): Deploys specialized local storage authorization tokens to verify your mobile phone numbers via OTP, ensuring malicious web scrapers and ticket-scalping bots cannot circumvent our high-demand checkout parameters.
Section 4: Global Compliance and Automated Management Signals
Ummah Unite operates with an absolute commitment to data privacy, providing identical control protocols across domestic and international legal zones:
- Automated Ingestion & Signal Recognition (US CPRA / Multi-State Laws): In absolute compliance with 2026 data standards across California, Texas, Colorado, and other regulated states, our frontend infrastructure natively scans and processes Universal Opt-Out Mechanisms (UOOMs), specifically including the Global Privacy Control (GPC) browser signal. If your browser transmits a GPC instruction, our system immediately suppresses all secondary analytics scripts and prevents your session actions from populating our B2B aggregate market research rollups automatically.
- Strict European Opt-In Frameworks (UK & EU GDPR): For regional users accessing the Platform from the United Kingdom or European Economic Area, we enforce an un-checked explicit opt-in sequence. No non-essential analytical cookies or functional tracking protocols will initiate or drop on your system unless you explicitly check the data consent approval sequence during account registration or site access.
- Manual Browser Interventions: You maintain the unconditional right to configure your desktop or mobile browser to reject cookies completely or alert you when a data tracker is requested. Note that disabling strictly necessary cookies will render the SvelteKit checkout page and your vendor dashboards entirely non-functional.