Cookies that the site cannot function properly without. This includes cookies for access to secure areas and CSRF security. Please note that Craft’s default cookies do not collect any personal or sensitive information. Craft's default cookies do not collect IP addresses. The information they store is not sent to Pixel & Tonic or any 3rd parties.
Name: CraftSessionId
Description: Craft relies on PHP sessions to maintain sessions across web requests. That is done via the PHP session cookie. Craft names that cookie “CraftSessionId” by default, but it can be renamed via the phpSessionId config setting. This cookie will expire as soon as the session expires.
Provider: this site
Expiry: Session
Name: *_identity
Description: When you log into the Control Panel, you will get an authentication cookie used to maintain your authenticated state. The cookie name is prefixed with a long, randomly generated string, followed by _identity. The cookie only stores information necessary to maintain a secure, authenticated session and will only exist for as long as the user is authenticated in Craft.
Provider: this site
Expiry: Persistent
Name: *_username
Description: If you check the "Keep me logged in" option during login, this cookie is used to remember the username for your next authentication.
Provider: this site
Expiry: Persistent
Name: CRAFT_CSRF_TOKEN
Description: Protects us and you as a user against Cross-Site Request Forgery attacks.
Provider: this site
Expiry: Session
Name: __hs_opt_out
Description: This cookie is used by the opt-in privacy policy to remember not to ask the visitor to accept cookies again.
This cookie is set when you give visitors the choice to opt out of cookies.
It contains the string "yes" or "no".
Provider: HubSpot
Expiry: It expires in 13 months.
Name: __hs_do_not_track
Description: This cookie can be set to prevent the tracking code from sending any information to HubSpot.
It contains the string "yes".
Provider: HubSpot
Expiry: It expires in 13 months.
Name: __hs_initial_opt_in
Description: This cookie is used to prevent the banner from always displaying when visitors are browsing in strict mode.
It contains the string "yes" or "no".
Provider: HubSpot
Expiry: It expires in seven days.
Name: __hs_cookie_cat_pref
Description: This cookie is used to record the categories a visitor consented to.
It contains data on the consented categories.
Provider: HubSpot
Expiry: It expires in 13 months.
Name: hs_ab_test
Description: This cookie is used to consistently serve visitors the same version of an A/B test page they’ve seen before.
It contains the id of the A/B test page and the id of the variation that was chosen for the visitor.
Provider: HubSpot
Expiry: Session
Name: <id>_key
Description: When visiting a password-protected page, this cookie is set so future visits to the page from the same browser do not require login again.
The cookie name is unique for each password-protected page.
It contains an encrypted version of the password so future visits to the page will not require the password again.
Provider: HubSpot
Expiry: It expires in 14 days.
Name: hs-messages-is-open
Description: This cookie is used to determine and save whether the chat widget is open for future visits.
It is set in your visitor's browser when they start a new chat, and resets to re-close the widget after 30 minutes of inactivity.
If your visitor manually closes the chat widget, it will prevent the widget from re-opening on subsequent page loads in that browser session for 30 minutes.
It contains a boolean value of True if present.
Provider: HubSpot
Expiry: It expires in 30 minutes.
Name: hs-messages-hide-welcome-message
Description: This cookie is used to prevent the chat widget welcome message from appearing again for one day after it is dismissed.
It contains a boolean value of True or False.
Provider: HubSpot
Expiry: It expires in one day.
Name: __hsmem
Description: This cookie is set when visitors log in to a HubSpot-hosted site.
It contains encrypted data that identifies the membership user when they are currently logged in.
Provider: HubSpot
Expiry: It expires in one year.
Name: hs-membership-csrf
Description: This cookie is used to ensure that content membership logins cannot be forged.
It contains a random string of letters and numbers used to verify that a membership login is authentic.
Provider: HubSpot
Expiry: Session
Name: hs_langswitcher_choice
Description: This cookie is used to save the visitor’s selected language choice when viewing pages in multiple languages.
It gets set when an end user selects a language from the language switcher and is used as a language preference to redirect them to sites in their chosen language in the future, if they are available.
It contains a colon delimited string with the ISO639 language code choice on the left and the top level private domain it applies to on the right. An example will be "EN-US:hubspot.com".
Provider: HubSpot
Expiry: It expires in two years.
Name: __cfruid
Description: This cookie is set by HubSpot’s CDN provider because of their rate limiting policies. Learn more about Cloudflare cookies.
Provider: HubSpot
Expiry: Session
Statistic cookies help us understand how visitors interact with websites by collecting and reporting information anonymously.
Name: __hstc
Description: The main cookie for tracking visitors.
It contains the domain, utk, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session).
Provider: HubSpot
Expiry: It expires in 13 months.
Name: hubspotutk
Description: This cookie keeps track of a visitor's identity. It is passed to HubSpot on form submission and used when deduplicating contacts.
It contains an opaque GUID to represent the current visitor.
Provider: HubSpot
Expiry: It expires in 13 months.
Name: __hssc
Description: This cookie keeps track of sessions.
This is used to determine if HubSpot should increment the session number and timestamps in the __hstc cookie.
It contains the domain, viewCount (increments each pageView in a session), and session start timestamp.
Provider: HubSpot
Expiry: It expires in 30 minutes.
Name: __hssrc
Description: Whenever HubSpot changes the session cookie, this cookie is also set to determine if the visitor has restarted their browser.
If this cookie does not exist when HubSpot manages cookies, it is considered a new session.
It contains the value "1" when present.
Provider: HubSpot
Expiry: Session
Name: _ga
Description: Used to distinguish users.
Provider: Google
Expiry: 2 years
Name: _gid
Description: Used to distinguish users.
Provider: Google
Expiry: 24 hours
Name: _ga_<container-id>
Description: Used to persist session state.
Provider: Google
Expiry: 2 years
Name: _gac_gb_<container-id>
Description: Contains campaign related information. If you have linked your Google Analytics and Google Ads accounts, Google Ads website conversion tags will read this cookie unless you opt-out.
Provider: Google
Expiry: 90 days
Name: _gat
Description: Used to throttle request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named _dc_gtm_<property- id>
Provider: Google
Expiry: 1 minute
Name: AMP_TOKEN
Description: Contains a token that can be used to retrieve a Client ID from AMP Client ID service. Other possible values indicate opt-out, inflight request or an error retrieving a Client ID from AMP Client ID service.
Provider: Google
Expiry: 30 seconds to 1 year
Description: Contains campaign related information for the user. If you have linked your Google Analytics and Google Ads accounts, Google Ads website conversion tags will read this cookie unless you opt-out.
Provider: Google
Expiry: 90 days
