Statistic cookies help us understand how visitors interact with websites by collecting and reporting information anonymously.
Google Analytics sets first party cookies via a piece of JavaScript code which must be added to every page that site owners want to track. It sets four cookies automatically, and a fifth via opt-in (this relates to sharing information about your traffic with Google). Globally and in the European Union member states Google sets the following cookies:
Name: __utma Cookie
Description: A persistent cookie – remains on a computer, unless it expires or the cookie cache is cleared. It tracks visitors. Metrics associated with the Google
Provider: Google
Expiry: On exit
Name: __utmb Cookie & __utmc Cookie
Description: These cookies work in tandem to calculate visit length. Google __utmb cookie demarks the exact arrival time, then Google __utmc registers the precise exit time of the user.
Because __utmb counts entrance visits, it is a session cookie, and expires at the end of the session, e.g. when the user leaves the page. A timestamp of 30 minutes must pass before Google cookie __utmc expires. Given__utmc cannot tell if a browser or website session ends. Therefore, if no new page view is recorded in 30 minutes the cookie is expired.
This is a standard ‘grace period’ in web analytics. Ominture and WebTrends among many others follow the same procedure.
Provider: Google
Expiry: 30 minutes
Name: __utmz Cookie
Description: Cookie __utmz monitors the HTTP Referrer and notes where a visitor arrived from, with the referrer siloed into type (Search engine (organic or cpc), direct, social and unaccounted). From the HTTP Referrer the __utmz Cookie also registers, what keyword generated the visit plus geolocation data.
This cookie lasts six months. In tracking terms this Cookie is perhaps the most important as it will tell you about your traffic and help with conversion information such as what source / medium / keyword to attribute for a Goal Conversion.
Provider: Google
Expiry: 6 months
Name: __utmv Cookie
Description: Google __utmv Cookie lasts “forever”. It is a persistant cookie. It is used for segmentation, data experimentation and the __utmv works hand in hand with the __utmz cookie to improve cookie targeting capabilities.
Provider: Google
Expiry: Forever
Cookies that the site cannot function properly without. This includes cookies for access to secure areas and CSRF security. Please note that the default cookies do not collect any personal or sensitive information. Craft's default cookies do not collect IP addresses. The information they store is not sent to us or any 3rd parties.
Name: CraftSessionId
Description: Craft relies on PHP sessions to maintain sessions across web requests. That is done via the PHP session cookie. Craft names that cookie “CraftSessionId” by default, but it can be renamed via the phpSessionId config setting. This cookie will expire as soon as the session expires.
Provider: this site
Expiry: Session
Name: *_identity
Description: When you log into the Control Panel, you will get an authentication cookie used to maintain your authenticated state. The cookie name is prefixed with a long, randomly generated string, followed by _identity. The cookie only stores information necessary to maintain a secure, authenticated session and will only exist for as long as the user is authenticated in Craft.
Provider: this site
Expiry: Persistent
Name: *_username
Description: If you check the "Keep me logged in" option during login, this cookie is used to remember the username for your next authentication.
Provider: this site
Expiry: Persistent
Name: CRAFT_CSRF_TOKEN
Description: Protects us and you as a user against Cross-Site Request Forgery attacks.
Provider: this site
Expiry: Session
