We keep cookies to a minimum. Here's the full list — what each one does, how long it stays, and whether it runs only with your consent.
Essential
These run whatever you pick — without them the shop doesn't work. They store no personal data beyond what you put into the site yourself.
- fp_cart — links the browser to its cart. httpOnly. Session lifetime.
- fp_nonce — WooCommerce CSRF token for cart and checkout. httpOnly. Session lifetime.
- fp_auth — your login session when signed in. httpOnly, Secure. Expires 30 days after last use.
- fp_consent_v1 — stores your cookie choice itself. localStorage (not a server cookie). Stays until you clear it or re-prompt.
Analytics (opt-in)
Off until you grant consent. Gives us anonymised usage signal so we can spot broken pages and see which fruit families people love.
- _ph_* (PostHog) — product analytics event ID and session ID. 365 days.
Marketing (opt-in)
Off until you grant consent. Powers newsletter signups and the very occasional returning-visitor offer.
- fp_mkt — campaign attribution token (utm source + referrer hash). 90 days.
Changing your mind
Tap the button at the top of this page to re-open the consent banner. You can also clear your site data in your browser — we'll prompt you again on the next visit.