—Introduction
This Cookie Policy explains how Virely LLC, doing business as Dealsby ("Company," "we," "us," or "our"), uses cookies, localStorage, and similar tracking technologies when you visit or use Virely LLC at virely.co.
This policy is incorporated by reference into our Privacy Policy and our Terms of Service. By using our Services, you agree to the use of cookies as described in this policy.
You can manage your cookie preferences at any time using the Manage Preferences button that appears at the bottom of this page, or by adjusting your browser settings as described in Section 7.
1. What Are Cookies?
Cookies are small text files placed on your device (computer, tablet, or smartphone) when you visit a website. They are widely used to make websites work more efficiently, to remember your preferences, and to provide information to website owners about how their sites are being used.
Cookies cannot run programs, deliver viruses to your device, or access information on your hard drive beyond what the website that set them has stored. They are harmless text files with a defined scope and expiry.
Cookie Properties
Each cookie has the following properties that determine how it behaves:
- Name — The identifier used to retrieve the cookie's value.
- Value — The data stored in the cookie (typically an anonymous ID or preference setting).
- Domain — The website(s) that can access the cookie.
- Expiry — When the cookie will be automatically deleted. Session cookies expire when you close your browser. Persistent cookies survive across browser sessions until they expire or are manually deleted.
- Secure / HttpOnly flags — Security attributes. HttpOnly cookies cannot be accessed by JavaScript, reducing the risk of cross-site scripting attacks. Secure cookies are only transmitted over HTTPS.
- SameSite — Controls whether the cookie is sent with cross-site requests, protecting against cross-site request forgery.
First-Party vs. Third-Party Cookies
First-party cookies are set by Virely LLC directly and can only be read by our platform. Third-party cookies are set by external services we integrate with (such as Stripe for payments, Supabase for authentication, and Google Analytics for usage analytics) and may be read by those services on other websites as well.
2. localStorage & Session Storage
In addition to cookies, our platform uses browser localStorage to store application data locally on your device. localStorage is distinct from cookies in the following important ways:
| Feature | Cookies | localStorage |
|---|---|---|
| Sent to server | Yes — automatically with every HTTP request | No — stays on your device unless your app explicitly sends it |
| Expiry | Can be set to expire at a specific date/time, or at session end | Persists indefinitely until manually cleared or deleted by code |
| Storage limit | ~4KB per cookie | ~5–10MB per origin |
| Accessible by JavaScript | Depends on HttpOnly flag | Always accessible to JavaScript on the same origin |
| Cross-tab sharing | Shared across all tabs in the browser | Shared across all tabs on the same origin |
| Cleared by "Clear cookies" | Yes | No — requires "Clear site data" or "Clear all browsing data" |
Important: Because localStorage data persists indefinitely, it will remain on your device even after you log out or clear your cookies, unless you also clear site data for virely.co. See Section 7 for instructions on how to clear localStorage and cookies for specific websites in each major browser.
The full catalog of localStorage keys used by Virely LLC is provided in Section 5. We do not use sessionStorage on this platform.
3. Types of Cookies We Use
We categorize cookies by their purpose. You can accept all categories, accept only strictly necessary cookies, or customize your preferences using the panel below. Your choices will be honored for all optional cookie categories.
3.1. Strictly Necessary Cookies
Cannot be disabled. These cookies are essential for the platform to function. Without them, you would not be able to log in, make payments, or use core features of the Service. Disabling them is not possible through our preference panel.
Strictly Necessary cookies include:
- Authentication cookies — Set by Supabase Authentication after you log in. They maintain your session so you stay logged in as you navigate the platform.
- Security cookies — Set by Cloudflare to identify legitimate users versus automated bots, protecting the platform from DDoS attacks and spam.
- Payment security cookies — Set by Stripe during checkout to prevent fraudulent payment attempts. These cookies are only present on pages where payment functionality is active and are deleted after your session.
- Consent cookie — Stores your cookie preference choice so we do not show the consent banner on every page load.
3.2. Functional Cookies
Functional cookies remember your preferences and settings so the platform behaves the way you prefer across sessions. They are set only after you accept them through our consent banner or preference panel.
Functional cookies include:
- Display preferences — Your choice of interface view modes, column visibility, and sidebar state.
- Platform configuration — Remembers your dashboard configuration so you don't need to reconfigure it on each visit.
You can disable functional cookies at any time through the Manage Preferences panel. If you disable them, some platform features may not work as expected and you may need to re-enter your preferences on each visit.
3.3. Analytics & Performance Cookies
Analytics cookies help us understand how users interact with our platform in aggregate — which pages are visited most, where users encounter problems, and how they navigate through the onboarding flow. This information is used exclusively to improve the platform and fix bugs.
We use Google Analytics for analytics. All data is collected in aggregate and anonymized. We have configured Google Analytics with IP anonymization enabled (anonymize_ip: true). We do not use analytics data to build individual user profiles or for advertising targeting. We have not enabled Google Signals or any advertising features in our Google Analytics configuration.
Analytics cookies are optional. You may decline them without any impact on your ability to use the platform. If you decline analytics cookies, we cannot use your visit to improve our Services, but all platform features will work normally.
3.4. Third-Party Cookies
Some cookies are set by third-party services we integrate with, rather than by Virely LLC directly. We do not control these cookies, and they are governed by each provider's privacy and cookie policy. The third-party services that may set cookies through our platform are:
- Stripe, Inc. — Payment processing cookies. Stripe Privacy Policy
- Supabase Authentication — Authentication and cloud services cookies. Supabase Authentication Privacy
- Google Analytics (Google LLC) — Usage analytics cookies (optional). Google Privacy Policy
- Cloudflare, Inc. — Security and performance cookies. Cloudflare Privacy Policy
We do not use any advertising networks, social media tracking pixels, or retargeting cookies on Virely LLC. We do not sell data to or share data with advertising platforms.
4. Cookie Catalog
The following table lists every cookie used by Virely LLC, grouped by type. This catalog is reviewed and updated whenever we add, change, or remove cookies. Last reviewed: April 2026.
| Cookie Name | Type | Purpose | Duration | Provider |
|---|---|---|---|---|
| virely_portal_session | Strictly Necessary | Maintains your authenticated session in the Virely Portal for Growth Suite subscription management. Uses magic-link token validation rather than a traditional password session. | Session (or until magic link expires) | Virely LLC |
| virely_portal_prefs | Functional | Remembers your preferred platform view and billing summary display preferences within the Virely Portal | 1 year | Virely LLC |
| __cf_bm | Strictly Necessary | Cloudflare Bot Management — distinguishes between automated bots and human users to protect against DDoS attacks and malicious traffic. | 30 minutes | Cloudflare |
| cf_clearance | Strictly Necessary | Set by Cloudflare after a challenge is passed. Allows subsequent requests to bypass the challenge page. | 1 year | Cloudflare |
| __stripe_mid | Strictly Necessary | Set by Stripe to prevent fraudulent payment attempts. Used during payment processing — only present on pages with payment functionality. | 1 year | Stripe |
| __stripe_sid | Strictly Necessary | Stripe session identifier for payment fraud prevention. Set only during active payment sessions. | 30 minutes | Stripe |
| Supabase_Auth | Strictly Necessary | Supabase Authentication session token. Required to maintain your authenticated state in the application. Set only after login. | Session | Supabase Authentication |
| ui_theme | Functional | Stores your display preference (dark or light mode) if a mode toggle is available. Ensures a consistent visual experience on return visits. | 1 year | Virely LLC |
| cookie_consent | Strictly Necessary | Records your cookie consent choice so we do not show the consent banner on every page load. | 1 year | Virely LLC |
| _ga | Analytics | Google Analytics primary identifier. Assigns an anonymous ID to distinguish unique users and track usage patterns. No personally identifiable information is stored in this cookie. | 2 years | Google Analytics |
| _ga_[ID] | Analytics | Google Analytics session state. Maintains session-level data for aggregate reporting purposes. | 2 years | Google Analytics |
| _gid | Analytics | Google Analytics secondary identifier used to distinguish users within a 24-hour window. | 24 hours | Google Analytics |
5. localStorage Catalog
The following table lists every localStorage key used by Virely LLC. Unlike cookies, localStorage items do not expire automatically — they remain on your device until cleared. See Section 7 for instructions on clearing localStorage.
| localStorage Key | Purpose & Contents | Cleared When |
|---|---|---|
| virely_portal_config | Stores your Growth Suite subscription configuration including linked platform subscriptions and billing tier for fast portal rendering. | Subscription cancellation or manual clear |
| virely_portal_token | Stores the short-lived magic-link session token for Virely Portal authentication. This token has a 15-minute time-to-live (TTL) and is invalidated after use. | 15 minutes from creation or after first use |
| __firebase_user | Stores the Supabase Authentication user object (user ID, email, display name) in encrypted form for fast authentication state restoration without a server round-trip. | Logout or account deletion |
| cookie_consent_state | Stores your cookie consent preferences (which categories you have accepted or declined) so we do not re-prompt you on every visit. | Never expires (until manually cleared) |
| ui_preferences | Stores your interface preferences such as sidebar state, table column visibility, and notification settings. | Settings reset or manual clear |
6. Third-Party Services in Detail
Stripe — Payment Processing
Stripe is our payment processor. When you access any page with payment functionality (subscription checkout, plan upgrade, add-on purchase), Stripe sets cookies to prevent fraudulent payment attempts using device fingerprinting. These cookies are strictly necessary for secure payment processing. We have no control over Stripe's cookie behavior.
Supabase Authentication
Supabase Authentication manages your login session. After you log in, Supabase sets a session cookie that verifies your identity with each request. This cookie is strictly necessary — without it, the platform cannot confirm who you are or show you your data.
Supabase Authentication Privacy →
Cloudflare — Security & Performance
Cloudflare provides our platform's network security and performance layer. Cloudflare sets cookies to distinguish between legitimate users and automated bots. These cookies are strictly necessary for platform security. Cloudflare does not use these cookies for advertising.
Google Analytics — Usage Analytics (Optional)
If you accept Analytics cookies, Google Analytics is loaded on our platform. Google Analytics assigns you an anonymous user ID and records which pages you visit, how long you stay, and how you navigate — all in aggregate. We use this data only to improve our platform. We have enabled IP anonymization and have disabled all advertising features in our Google Analytics configuration.
You may opt out of Google Analytics across all websites at any time by installing the Google Analytics Opt-out Browser Add-on.
7. Managing Your Cookie Preferences
Option 1 — Use Our Preference Panel
The quickest way to manage optional cookies is through our preference panel. Click Manage Preferences in the consent banner at the bottom of this page (or reload the page to see it again) to accept, decline, or customize your cookie choices.
Your preference is saved in localStorage under the key cookie_consent_state for 12 months. After 12 months, we will ask for your preference again.
Option 2 — Browser Settings
You can also manage cookies and localStorage directly through your browser. Instructions for major browsers:
| Browser | How to Access Cookie Settings | Instructions |
|---|---|---|
| 🟡 Chrome | Settings → Privacy and Security → Cookies and other site data → See all cookies and site data | Instructions ↗ |
| 🦊 Firefox | Settings → Privacy & Security → Cookies and Site Data → Manage Data | Instructions ↗ |
| 🧭 Safari | Settings → Privacy → Manage Website Data | Instructions ↗ |
| 🔷 Edge | Settings → Cookies and Site Permissions → Cookies and Site Data | Instructions ↗ |
| 📱 iOS Safari | Settings → Safari → Advanced → Website Data → Remove All Website Data | Instructions ↗ |
| 🤖 Android Chrome | Chrome Menu → Settings → Privacy and Security → Clear Browsing Data | Instructions ↗ |
Clearing all cookies in your browser will log you out of Virely LLC and delete your consent preference. You will be asked to consent again on your next visit. Clearing site data (or localStorage) will additionally remove your platform preferences and configuration settings stored locally.
Option 3 — Opt Out of Google Analytics
To opt out of Google Analytics tracking across all websites (not just Virely LLC), install the official browser add-on: Google Analytics Opt-out Browser Add-on.
Option 4 — Private / Incognito Browsing
Using your browser's private or incognito mode prevents cookies and localStorage from being stored after the window is closed. However, cookies and localStorage will still be set during your session while the private window is open.
8. Do-Not-Track Signals
Most web browsers include a Do-Not-Track ("DNT") feature. No uniform technology standard for DNT signals has been finalized by the World Wide Web Consortium (W3C). As such, we do not currently respond to DNT browser signals.
We have implemented our own consent mechanism (described in Section 7) that gives you meaningful control over optional tracking. If a universal DNT standard is adopted in the future, we will update this policy to reflect our response to it.
9. Policy Updates
We review and update this Cookie Policy whenever we add, change, or remove cookies from our platform. The "Last Updated" date at the top of this page reflects the most recent revision.
If we make material changes — for example, introducing a new category of tracking — we will notify you by updating the consent banner so you can review and re-confirm your preferences. We encourage you to review this policy periodically.
Continued use of the platform after an update to this Cookie Policy constitutes your acceptance of the changes.
10. Contact Us
If you have questions about how we use cookies, localStorage, or similar technologies, or if you would like to exercise your data privacy rights, please contact us:
Virely LLC (dba Dealsby)
3715 Northside Pkwy NW, Bldg 100, Ste 500
Atlanta, GA 30327, United States
Email: [email protected]
Phone: (888) 487-1873
Web: virely.co
Privacy Policy: virely.co/privacy-policy