Cookies are tiny files that are installed on your web browser, whether on a desktop, tablet or mobile device, when you visit a website. They let websites recognise that a user on an individual computer has previously visited the site. Cookies save information about that user session for use during future website visits.
We provide a tool that lets you choose which cookies to accept, apart from 'necessary cookies' needed to make the site work properly. Web browsers give you different ways to set up how they handle cookies. This can vary from only allowing cookies from websites that you trust to blocking all cookies.
Here are official instructions for the most popular browsers:
For more advice on managing cookies, visit the All About Cookies website.
Changes to this policy
Page last updated: 30 March 2021
Next scheduled review: 30 June 2021
Necessary cookies enable core functionality such as page navigation and access to secure areas. The website cannot function properly without these cookies, and can only be disabled by changing your browser preferences.
Cookie Control by Civic
This tool gives you control over the cookies you allow when you visit our website.
|CookieControl||This cookie records the categories of cookies that you choose to allow or block from other service providers we use.||Persistent|
Django is our website technology platform. We use it to serve static web pages, online forms, site search and our shop.
|django_language en-gb||This cookie stores the language of the website.||One year|
|csrftoken||This cookie is associated with the Django web development platform for python. It is used to help protect the website against Cross-Site Request Forgery attacks. This cookie is set by the CSRF protection software in the underlying site framework. A CSRF cookie is a random secret value, to which other sites will not have access. This value is passed back to the site server when you submit any forms on the site, in order to verify the form submission came from an expected source.||Session|
|sessionid||Ths identifies a user session and tracks whether the user has logged into the website.||Session|
|JSESSIONID||This identifies a user session and tracks whether the user has logged into the website. It is specific to the J2EE technology platform.||Session|
We use Stripe to process credit or debit card transactions:
- shop purchases
- joining the Macular Society as a paid member
- renewing subscriptions
|__stripe_mid||Stripe is used for credit card payments. Stripe uses a cookie to remember who you are and to enable our website to process payments without storing any credit card information on its our servers.||One year|
|__stripe_sid||Stripe is used for credit card payments. Stripe uses a cookie to remember who you are and to enable our website to process payments without storing any credit card information on its our servers.||One hour|
Analytical cookies help us to improve our website by collecting and reporting information on its usage.
We use Adalyser to measure the effectiveness of TV advertising.
|__adal_ca||This cookie stores traffic source/campaign data, for the purposes of being able to see which advertising campaign drove a user to visit our site.||Two years|
|__adal_cw||This cookie stores visit timestamp data, for the purpose of tying back conversion events to earlier visits.||Two years|
|__adal_id||This cookie stores the device ID (generated), in order to uniquely identify a device.||Two years|
|__adal_ses||This cookie determines whether there is a currently active session. When this cookie expires, the session ends.||Two years|
We use Crazy Egg to analyse visitor behaviour on our web pages in order to improve your experience.
|_ceir||This cookie tracks whether a visitor has visited the site before||Five years|
|_CEFT||This stores page variants assigned to visitors for A/B performance testing||One year|
|_cer.s||This tracks a recording visitor session unique ID, tracking host and start time||Session|
|_cer.v||This tracks whether a visitor has visited the site before||First day of month|
We use Google Analytics (GA) to track website user interaction. We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to see their journey through the website. Although GA records user data such as your geographical location, device, internet browser and operating system, none of this information personally identifies you to us. GA also records your computer’s IP address but Google does not grant us access to this.
|_ga||This cookie contains a unique identifier used by Google Analytics to determine that two distinct hits belong to the same user across browsing sessions.||One year|
|_gid||This contains a unique identifier used by Google Analytics to determine that two distinct hits belong to the same user across browsing sessions.||One day|
|__utmt||This is used to throttle the request rate.||10 minutes|
|__utmc||This is not used in ga.js. It is set for interoperability with urchin.js. Historically, this cookie operated in conjunction with the__utmbcookie to determine whether the user was in a new session/visit.|
|__utmv||This is used to store visitor-level custom variable data. The cookie is created when a developer uses the _setCustomVar method with a visitor level custom variable. This cookie was also used for the deprecated _setVar method. The cookie is updated every time data is sent to Google Analytics.||Two years|
Google Tag Manager
We use Google Tag Manager to manage efficiently all the third-party code we add to our website. This code is required by the traffic analysis and online advertising services we use.
|gat_UA-164642617-1||This is our account ID, used to control the request rate.||Session|
|_dc_gtm_||This is used to control the request rate.||One mo|
|_gac_||This contains campaign-related information for the user.||90 days|
|_gat||This is used to control the request rate.||One minute|
|_gcl_au||This is used for storing and tracking conversions.||Persistent|
We use Hotjar to analyse how well particular pages or sections of our website are working.
|_hjClosedSurveyInvites||This cookie is set once a visitor interacts with an External Link Survey invitation modal. It is used to ensure that the same invite does not reappear if it has already been shown.||One year|
|_hjDonePolls||This is set once a visitor completes a survey using the On-site Survey widget. It is used to ensure that the same survey does not reappear if it has already been filled in.||One year|
|_hjMinimizedPolls||This cookie is set once a visitor minimizes an On-site Survey widget. It is used to ensure that the widget stays minimized when the visitor navigates through your site.||One year|
|_hjShownFeedbackMessage||This is set when a visitor minimizes or completes Incoming Feedback. This is done so that the Incoming Feedback will load as minimized immediately if the visitor navigates to another page where it is set to show.||One year|
|_hjid||This stores the unique user ID.||One year|
|_hjRecordingLastActivity||This should be found in Session storage (as opposed to cookies). This gets updated when a visitor recording starts and when data is sent through the WebSocket (the visitor performs an action that Hotjar records).||Session|
|_hjTLDTest||When the Hotjar script executes, we try to determine the most generic cookie path we should use, instead of the page hostname. This is done so that cookies can be shared across subdomains (where applicable). To determine this, we try to store the _hjTLDTest cookie for different URL substring alternatives until it fails. After this check, the cookie is removed.||Session|
|_hjUserAttributesHash||User Attributes sent through the Hotjar Identify API are cached for the duration of the session in order to know when an attribute has changed and needs to be updated.||Session|
|_hjCachedUserAttributes||This cookie stores User Attributes which are sent through the Hotjar Identify API, whenever the user is not in the sample. These attributes will only be saved if the user interacts with a Hotjar Feedback tool.||Session|
|_hjLocalStorageTest||This cookie is used to check if the Hotjar Tracking Script can use local storage. If it can, a value of 1 is set in this cookie. The data stored in_hjLocalStorageTest has no expiration time, but it is deleted almost immediately after it is created.||<100 miliseconds|
|_hjIncludedInPageviewSample||This cookie is set to let Hotjar know whether that visitor is included in the data sampling defined by your site's pageview limit.||30 minutes|
|_hjIncludedInSessionSample||This cookie is set to let Hotjar know whether that visitor is included in the data sampling defined by your site's daily session limit.||30 minutes|
|_hjAbsoluteSessionInProgress||The cookie is set so Hotjar can track the beginning of the user's journey for a total session count. It does not contain any identifiable information.||Session|
We use some social sharing plugins, to allow you to share certain pages of our website on social media. These plugins place cookies so that you can correctly view how many times a page has been shared.
We place advertising on Facebook to raise awareness of macular disease, to solicit donations and to encourage people to join the Macular Society.
|_fbp||This is used by Facebook to track visits across websites to deliver a series of advertisement products such as real-time bidding from third party advertisers.||Three months|
We embed a third-party chatbot service called GriefChat on our Bereavement Support page. GriefChat runs on the tawk.to platform.
|__tawkuuid||This cookie is used to collect information about how the visitor interacts with the live chat function on the website.||Six months|
|TawkConnectionTime||This allows the website to recoqnise the visitor, in order to optimize the chat-box functionality.||Session|
Marketing cookies are used to track visitors across websites. They help advertising platform providers display ads that are relevant and engaging for the individual user, and thereby more valuable for publishers and third-party advertisers.
Facebook Remarketing allows us to tailor our marketing to better suit your needs and only display ads that are relevant to you in relation to the following purposes:
- Fundraising via donations, lottery and events
- Reach our members and existing supporters to communicate important messages
|_fr||Provided by Facebook, this pixel matches Facebook user profiles anonymously, enable retargeting on the Facebook platform, as well as the creation of lookalike audiences. This pixel allows Macular Society to analyse marketing efforts, and serve the most relevant advertising to the correct audience.||Three months|
We use Google AdWords Remarketing to advertise across the Internet. AdWords remarketing will display relevant ads tailored to you based on what parts of the TriggerApp website you have viewed by placing a cookie on your machine. The cookie is used to say “This person visited this page, so show them ads relating to that page.” Google AdWords Remarketing allows us to tailor our marketing to better suit your needs and only display ads that are relevant to you. We use advertising on Google to raise awareness of macular conditions and the Macular Society.
|_drt_id BCSI-CS-5B059C53EB35D97E ug||We sometimes use third-party agencies to advertise and bring traffic to certain parts of the site, for example where we have a specific campaign. These cookie are placed by one of our third-party agencies to allow them to track the activities of visitors that have come to the site from their adverts.||At least one session|
|__Secure-3PSIDCC||This is a targeting cookie. It builds a profile of the website visitor's interests in order to show relevant and personalised Google advertising.||Two years|
|__Secure-3PSID||This is used by for targeting purposes to build a profile of the website visitor's interests in order to show relevant and personalised Google advertising.||Two years|
|SID||This is used for security purposes to store digitally signed and encrypted records of a user's Google account ID and most recent sign-in time. It allows Google to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorised parties. This can also be used for targeting purposes to show relevant and personalised ad content.||One year|
|SIDCC||This security cookie protects a user's data from unauthorized access||Persistent|
|__Secure-3PAPISID||This is used by for targeting purposes to build a profile of the website visitor's interests in order to show relevant and personalised Google advertising.||Two years|
|SSID||This is used to store information about how you use the website and any advertising that you may have seen before visiting this website. It also helps to customise advertising on Google properties by remembering your most recent searches, your previous interactions with an advertiser's ads or search results and your visits to an advertisers website.||One year|
|APISID||This is used by for targeting purposes to build a profile of the website visitor's interests in order to show relevant and personalised Google advertising.||Two years|
|HSID||This is used for security purposes to store digitally signed and encrypted records of a user's Google account ID and most recent sign-in time which allows Google to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorised parties. This can also be used for targeting purposes to show relevant and personalised ad content.||One year|
|1P_JAR||This collects website statistics and track conversion rates.||30 days|
|SEARCH_SAMESITE||This allow servers to mitigate the risk of CSRF and information leakage attacks by asserting that a particular cookie should only be sent with requests initiated from the same registrable domain.||Five months and two days|
|CONSENT||This cookie is used to track consent to cookie use.|
|NID||This is used to store preferences in a unique Google ID to remember your information. This includes your preferred language (for example, English), how many search results you wish to have shown per page (such as 10 or 20), and whether or not you wish to have Google's SafeSearch filter turned on. These preferences can be used for optimised and/or personalised advertising on Google networks||One year|