Cookie Policy
Effective Date: 30 May 2026 · Version 2.0
This Cookie Policy explains what cookies and similar technologies are, which ones RewardPX uses, why we use them, and what choices you have. This Policy supplements our Privacy Policy.
1. What Are Cookies?
Cookies are small text files placed on your device by a website. They are used to remember information about your visit. We also use related local-browser technologies (localStorage, sessionStorage, IndexedDB) which we collectively refer to as "cookies" in this Policy.
Cookies can be:
- First-party — set by rewardpx.com directly
- Third-party — set by a different domain when its content (iframe, script, image) is embedded on our pages
- Session — deleted when you close your browser
- Persistent — remain until they expire or you delete them
2. Cookie Categories We Use
2.1 Strictly Necessary (cannot be disabled)
Required for the Platform to function. Without these, you cannot log in, submit forms, or stay authenticated.
| Cookie | Purpose | Lifetime | Flags |
|---|---|---|---|
authjs.session-token | Authentication session token (NextAuth.js v5 / JWT) | 7 days | HttpOnly, Secure, SameSite=Lax |
authjs.csrf-token | Cross-Site Request Forgery protection | Session | HttpOnly, Secure, SameSite=Lax |
authjs.callback-url | Tracks the page you tried to access before login (for post-login redirect) | Session | HttpOnly, Secure, SameSite=Lax |
2.2 Preference (browser storage, not cookies)
| Key | Storage | Purpose | Lifetime |
|---|---|---|---|
rewardpx_lang | localStorage | Remembers your language (TR / EN) | Until cleared |
rewardpx_dismissed_* | localStorage | Tracks which one-time banners (e.g. announcement modals) you have dismissed | Until cleared |
2.3 Security (set by integrated security providers)
| Provider | Purpose | When Set |
|---|---|---|
| Cloudflare Turnstile | Bot/abuse detection on register, login, forgot-password, and withdrawal forms | When the captcha widget loads |
| hCaptcha (legacy fallback) | Bot/abuse detection if Turnstile is disabled by an admin | When the captcha widget loads |
Cloudflare CDN (__cf_bm) | Distinguishes legitimate visitors from bots (managed by Cloudflare globally) | On every request through the CDN |
These providers operate under their own privacy policies: Cloudflare, hCaptcha.
2.4 Third-Party (Offerwalls & Ad Networks)
When you choose to interact with an Offerwall or ad embed, that third party may set its own cookies. We do not control these cookies and they are governed by the respective provider's privacy policy.
| Provider | Context | Privacy Policy |
|---|---|---|
| AdGem | Offerwall iframe | adgem.com/privacy |
| Lootably | Offerwall iframe (if enabled) | lootably.com/privacy |
| OfferToro | Offerwall iframe (if enabled) | offertoro.com/privacy |
| CPX Research | Survey iframe (if enabled) | cpx-research.com/privacy |
| BitLabs | Survey widget (if enabled) | bitlabs.ai/privacy |
| TheoremReach | Survey wall (if enabled) | theoremreach.com/privacy |
| Adsterra | Ad embed (Watch Ads page) | adsterra.com/privacy |
3. What We Do NOT Use
- No third-party advertising cookies on the main app (only inside opt-in ad embeds and Offerwall iframes)
- No cross-site behavioral tracking
- No social-media share/pixel cookies (Facebook Pixel, Twitter, TikTok, LinkedIn) anywhere on the Platform
- No Google Analytics or other third-party analytics on the main app
- No re-targeting / remarketing pixels
4. How to Control Cookies
4.1 In your browser
All modern browsers let you block, delete, or whitelist cookies. Instructions:
4.2 Consequences of blocking
4.3 Mobile devices
On mobile, you can also reset or limit ad tracking IDs in your device settings (iOS: Settings → Privacy → Tracking; Android: Settings → Google → Ads).
5. Changes to This Policy
We may update this Cookie Policy from time to time as we add or remove integrations. Material changes will be communicated via an in-platform banner. The "Effective Date" reflects the current version.
6. Contact
Questions about cookies? Contact us at privacy@rewardpx.com or via the in-platform support page.