Site cookies
Last updated: 24 March 2026
What is a cookie?
A cookie is a small text file that is downloaded onto your device when you visit a website. They are widely used to make websites work, or work more efficiently, as well as to provide information to the owners of the site. This can help in providing an effective website experience and relevant content.
The rules on cookies and similar technologies are covered by the Privacy and Electronic Communications Regulations 2003 (PECR). PECR covers the storing of information, or the gaining of access to information stored, on a user’s device.
Cookie usage
This platform uses cookies to support essential website functions and, where enabled by site owners, embedded services such as video players. Some cookies are set directly by this platform, or by embedded first-party systems we control. Others are set by third-party services embedded within pages, including YouTube/Google and Vimeo.
For third-party services, the exact cookies set may vary depending on factors such as whether you are logged in to that service, whether you have previously visited it, your browser settings, the consent choices you make, and the provider’s own technical configuration.
We group cookies into categories to help you understand why we use them. You can manage your consent preferences via our cookie consent tool or by adjusting your browser preferences.
Updates to this page
This cookie policy may be updated from time to time as functionality on the platform changes, including the introduction of additional services or user features. We will publish any material changes on this page.
1. Necessary cookies
These cookies are essential to enable the website to work correctly. You can only deactivate them by changing your browser preferences.
Login cookies
If you login, we set a cookie so that we can remember this fact. This prevents you from having to login again every time you visit a new page.
| Cookie |
Purpose |
Duration |
| SSESS[random identifier] |
Drupal session identifier - used to distinguish authenticated user sessions and maintain login |
8 hours |
| SimpleSAMLAuthToken |
Token for the current user’s login session |
Until you close your browser |
| SimpleSAMLSessionID |
Identifies the current user session for login stability |
Until you close your browser |
2. Analytics
The platform does not currently set its own analytics cookies. However, embedded third-party video services may set cookies in these categories when video content is embedded or played.
Audio
| Cookie |
Purpose |
Duration |
| _gat_* |
Google Analytics request throttling. |
Variable |
| acast-listenerid |
Unique Acast listener analytics identifier. |
Session |
| jwplayerLocalId |
Local Storage - JW Player user identifier for player analytics. |
Persistent |
Google Maps
| Cookie |
Purpose |
Duration |
| _utma |
Legacy Google Analytics visitor identifier |
13 months |
| _utmb |
Session tracking |
30 minutes |
| _utmc |
Session Management |
Session |
| _utmt |
Request throttling |
Variable |
| _utmz |
Session Management |
Variable |
Miro
| Cookie |
Purpose |
Duration |
| MiroRemoteSamplingConfig |
Telemetry sampling and analytics collection control. |
Unknown |
| ajs_anonymous_id |
Segment analytics anonymous visitor identifier. |
1 year |
| rum_session |
Session storage: real user monitoring. |
Session |
Oxford Maps / MazeMaps
| Cookie |
Purpose |
Duration |
| _gat |
Request throttling |
Variable |
| mm_preferences |
Stores map preferences, floot selections, zoom/location settings |
Variable |
SharePoint
| Cookie |
Purpose |
Duration |
| MUID |
Microsoft device/user identifier. |
|
| ai_session |
Persistent analytics identifier. |
|
| ai_user |
Persistent analytics identifier. |
|
| fpc |
Microsoft telemetry correlation cookie. |
|
Shiny/IDN
| Cookie |
Purpose |
Duration |
| _ga |
Distinguishes users |
2 years |
| _gat_gtag_UA_* |
Request throttling for analytics |
1 minute |
| _gid |
Stores pageview/session state |
24 hours |
Timeline.js
| Cookie |
Purpose |
Duration |
| _ga_LVEF* |
Google Analytics 4 session/measurement cookie. |
13 months |
Google Analytics
| Cookie |
Purpose |
Duration |
| _ga |
Uniquely identify users for Google Analytics |
385 Days |
| _ga_XXXXXXXXXX |
Token for the Google Analytics tag |
Until you close your browser |
3. Functional
The platform does not currently set its own functional cookies. However, embedded third-party video services may set cookies in these categories when video content is embedded or played.
Audio
| Cookie |
Purpose |
Duration |
| Drupal.olivero.stickyHeaderState |
Local Storage - stores whether the player header is expanded or collapsed. |
Variable |
| cf_clearance |
Cloudflare security/challenge validation. |
Variable |
| cookie-agreed-version |
Stores version of accepted cookie policy. |
Variable |
| geo |
Stores Apple Podcasts region or country preference. |
Session |
Google Maps
| Cookie |
Purpose |
Duration |
| GRECAPTCHA |
Bot detection and abuse prevention |
Several months |
| NID |
Google preference, used for language, interface setting and map preferences |
6 months |
| google.maps.eventPage |
Local Storage: Map state storage |
Variable |
| rc::f:* |
Local Storage – reCAPTCHA anti-bot token |
No built in expiry |
Miro
| Cookie |
Purpose |
Duration |
| ajs_user_id |
User identifier. |
1 year |
| cx-fingerprint |
Local storage: session continuity, fraud prevention and platform operation. |
No built-in expiry |
| lastKnownOrgId |
Last organisation accessed. |
Session |
| lastVisitedStartViewKey |
Local storage: dashboard state and widget identifiers. |
No built-in expiry |
| mr-anon-id-1 |
Anonymous user identifier. |
1 year |
| rb_view-* |
Local storage: UI state and window dimensions. |
No built-in expiry |
| rtb_saved_dashboard |
Local storage: current dashboard state, selected project and recent workspace information. |
No built-in expiry |
| token |
Authentication/security token. |
1 year |
| userLocale |
Language preference. |
Session |
| what-intent |
Session storage: mouse, keyboard or touch interaction intent. |
Session |
Oxford Maps / MazeMaps
| Cookie |
Purpose |
Duration |
| mazemap_session |
Maintains interactive map session state |
Session |
| mm_route |
Stores routing/navigation state |
Session/Persistent |
Panopto
| Cookie |
Purpose |
Duration |
| Panopto.UserSettings[anonymous] |
Local Storage – caption preference |
Variable |
| UserSettings |
Stores player/user settings |
10 - 12 Months |
SharePoint
| Cookie |
Purpose |
Duration |
| WSS_FullScreenMode |
Stores SharePoint viewer/display preferences. |
|
Shiny/IDN
| Cookie |
Purpose |
Duration |
| AWSALB |
Load balancer session affinity |
Variable |
| __cf_bm |
Cloudflare bot protection |
Variable |
| rsconnect |
Session persistence |
Variable |
| shinyapps.io |
Maintains active Shiny session state |
Session |
4. Marketing
The platform does not currently set its own marketing cookies. However, embedded third-party video services may set cookies in these categories when video content is embedded or played.
Google Maps
| Cookie |
Purpose |
Duration |
| rc::a |
Local Storage – reCAPTCHA state token |
No built in expiry |
5. Video
Sites on this platform may embed videos from YouTube/Google and Vimeo. These services set cookies to enable the video player to work, track views, and personalise advertising.
Note: If you are logged into a YouTube, Google or Vimeo account, these providers may link your viewing activity on this site to your account. This occurs via cookies already stored in your browser from those services.
SharePoint
| Cookie |
Purpose |
Duration |
| ESTSAUTH |
Microsoft Entra ID authentication token. |
Session |
| ESTSAUTHPERSISTENT |
Persistent Microsoft login state. |
|
| FedAuth |
SharePoint federated authentication cookie. |
|
| SPOIDCRL |
SharePoint Online identity/session state. |
|
| Stsservicecookie |
Microsoft service routing/session management. |
|
| odspnonce |
Security/session nonce. |
|
| rtFa |
Stores reading progress, UI SharePoint federated session token. |
|
| x-ms-gateway-slice |
Microsoft traffic routing/load balancing. |
|
Vimeo
| Cookie |
Purpose |
Duration |
| COOKIE_ID_PICOX_ID |
Functional: Manages session state/player performance. |
365 days |
| _cf_bm |
Necessary: Cloudflare cookie used to support Vimeo's bot management and security. |
30 mins |
| _cfuvid |
Necessary: Cloudflare Rate-limiting / DDoS protection. |
Until you close your browser |
| cf_clearance |
Necessary: Proof of ‘human’ verification (Captcha). |
365 days |
| player |
Functional: Stores the user's player preferences (e.g. volume level, captions setting). |
365 days |
| vuid |
Analytics: Primary analytics cookie used to track video views. |
365 days |
Youtube
| Cookie |
Purpose |
Duration |
| AEC |
Security: Detects spam, fraud, and abuse. |
180 days |
| CONSENT |
Necessary: Stores universal Google consent preferences. |
730 days |
| NID |
Marketing: Remembers preferences and personalises ads for signed-out users. |
180 days |
| OGP / OGPC |
Functional: Stores user settings and enables Google product functionality. |
30 days |
| SAPISID, APISID, SSID |
Marketing: Used to personalise advertising based on user activity and interests. |
400 days |
| SID / HSID |
Security: Encrypted account records used for security and authentication. |
400 days |
| SIDCC, __Secure-1PSIDCC, __Secure-3PSIDCC |
Security: Protect user data from unauthorised access. |
365 days |
| SOCS |
Necessary: Stores user's cookie consent state. |
395 days |
| VISITOR_INFO1_LIVE |
Functional/Analytics: bandwidth estimation for video quality/tracking of user behaviour and unique visitors |
180 days |
| VISITOR_PRIVACY_METADATA |
Necessary: Stores consent state for the current domain. |
180 days |
| YSC |
Analytics: video view statistics |
Until you close your browser |
| __Secure-1PSID, __Secure-3PSID, __Secure-1PAPISID, __Secure-3PAPISID |
Marketing: Used to profile visitor interests for ad personalisation and targeting across services. |
400 days |
| __Secure-1PSIDTS, __Secure-3PSIDTS |
Marketing: Collects and tracks information about interactions with Google ads. |
365 days |
| __Secure-ENID |
Functional: Remember preferences and security information. |
400 days |
Managing Your Preferences
You can adjust which non-essential cookies you allow by clicking on the ‘Set cookie preferences’ (‘C’ icon) button at the bottom of every page. You can then adjust the available sliders to ‘On’ or ‘Off’, then click ‘X’ to close. You may need to refresh your page for your settings to take effect.
It is also possible to prevent the setting of cookies by adjusting your browser settings. Be aware that doing this may affect the functionality of other websites that you visit. The UK Information Commissioner’s Office (ICO) provides information on browser controls and where to find instructions for controlling cookies in different browsers. Please see the section on browser cookie settings at the end of the Cookies page on the ICO website.
Contact
If you have any queries or concerns about the use of cookies on this website, please contact our Fresco Service team.