Legal
Cookie Policy
Last updated: 1 January 2025
1. What are cookies?
Cookies are small text files placed on your device when you visit a website. We also use similar browser storage mechanisms (localStorage and sessionStorage) to maintain your authentication session across page loads.
2. Cookies we use
Essential — Session & Auth
Required for the Platform to function. Cannot be disabled.
| Storage key | Purpose | Expires |
|---|---|---|
| enoki_session | Stores your zkLogin session keypair and JWT for authenticated transactions. | Session / ~2 h |
| zklogin_nonce | OAuth nonce used during Google sign-in to prevent CSRF. | Sign-in flow |
| next-auth.csrf-token | CSRF protection for Next.js API routes. | Session |
Preference
Remember your in-app settings.
| Storage key | Purpose | Expires |
|---|---|---|
| darkblock_prefs | Stores UI preferences such as display currency. | 1 year |
3. Cookies we do NOT use
- Advertising or tracking cookies from third-party networks.
- Analytics cookies (we may add privacy-preserving analytics in future with prior notice).
- Social media tracking pixels.
4. Third-party storage
Mysten Labs Enoki (our zkLogin provider) may set its own storage entries during authentication. These are strictly necessary for the sign-in flow. Please refer to Mysten Labs’ privacy policy for details.
5. Managing cookies
Because all cookies we set are strictly essential for authentication, disabling them will prevent you from signing in. You can clear them at any time via your browser’s developer tools or settings. This will sign you out of your current session.
Most browsers allow you to control cookies through their settings. For guidance see your browser’s help documentation.
6. Changes to this policy
If we introduce new cookies (e.g. analytics) we will update this policy and notify users via the Platform before the change takes effect.
7. Contact
Questions? web@darkblock.ai