Cookie Policy

What are cookies?

Cookies are small pieces of data that websites store on a device. Cookies can improve your visitors’ browsing experience because they help websites remember preferences and understand how people use different features.

Functional and required cookies

Squarespace uses some necessary cookies so visitors can navigate and use key features on your site. These cookies vary from site to site depending on the features it uses. For example, functional and required cookies help these features work:

• Customer accounts

• Shopping cart and checkout

• URL redirects

Name

Purpose, type, and duration

_acloggedin

• Supports login by Acuity Scheduling client if the client has an account

• Cookie

• January 1, 2025

_client_acloggedin

• Supports login by Acuity Scheduling client if the client has an account

• Cookie

• January 1, 2025

_dd_cookie_test

• Tests if cookies are supported

• Cookie

• Expires instantly

_dd_s

• Tracks browser errors

• Cookie

• Four hours

_dd_site_test

• Tests if cookies are supported

• Cookie

• Expires instantly

_grecaptcha

• Helps reduce spam in Acuity Scheduling

• Local storage

• No expiry

_ssid

• Remembers devices for anti-fraud purposes

• Cookie

• Four years

CART

• Shows when a visitor adds a product to their cart

• Cookie

• Two weeks

CHECKOUT_WEBSITE

• Identifies the correct site for checkout when checkout on your domain is disabled

• Cookie

• Session

client_username

• Remembers a logged in Acuity Scheduling client's username between visits

• Cookie

• One year

clientUser

• Stores the Acuity Scheduling client's username, OAuth2 Access Token, and OAuth2 Refresh Token. This cookie is required for functionality of logged-in clients

• Cookie

• 30 days

Commerce-checkout-state

• Stores state of checkout while the visitor is completing their order in PayPal

• sessionstorage

• Session

Crumb

• Prevents cross-site request forgery (CSRF)

• Cookie

• Session

hasCart

• Tells Squarespace that the visitor has a cart

• Cookie

• Two weeks

Locked

• Prevents the password-protected screen from displaying if a visitor enters the correct site-wide password.

• Cookie

• Session

orderStatusSessionToken

• Authenticates a visitor who logs into an order status page.

• Cookie

• One year

PHPSESSID

• Securely authenticates a visitor during their checkout in Acuity Scheduling

• Cookie

• One month

RecentRedirect

• Prevents redirect loops if a site has custom URL redirects. Redirect loops are bad for SEO.

• Cookie

• 30 minutes

remember_client

• Remembers Acuity Scheduling client’s login details if they have an account

• Cookie

• 365 days

siteUserCrumb

• Prevents cross-site request forgery (CSRF)for logged in site users

• Cookie

• Three years

SiteUserInfo

• Identifies a visitor who logs into a customer account

• Cookie

• Three years

SiteUserSecureAuthToken

• Authenticates a visitor who logs into a customer account

• Cookie

• Three years

squarespace-announcement-bar

• Prevents the announcement bar from displaying if a visitor dismisses it

• localstorage

• Persistent

squarespace-likes

• Shows when you've already "liked" a blog post

• localstorage

• Persistent

squarespace-popup-overlay

• Prevents the promotional pop-up from displaying if a visitor dismisses it

• localstorage

• Persistent

squarespace-video-player-options

• Remembers video player selected preferences ( volume, playback speed, and quality) for videos uploaded directly to Squarespace

• localstorage

• Persistent

ss_cookieAllowed

• Remembers if a visitor agreed to placing analytics cookies on their browser if a site is restricting the placement of cookies

• Cookie

• 30 days

ss_sd

• Ensures that visitors on the Squarespace 5 platform remain authenticated during their sessions

• Cookie

• Session

Test

• Investigates if the browser supports cookies and prevents errors

• Cookie

• Session

TZ

• Enables a Acuity Scheduling client’s appointments to display correctly based on their time zone preferences.

• localstorage

• Persistent

Cross-site request forgery (CSRF)

CSRF is an attack vector that tricks a browser into taking unwanted action in an application when someone’s logged in.

Analytics and performance cookies

We use analytics and performance cookies to collect information on your behalf about how visitors interact with your site. Storing these cookies is how we populate the data you find in Squarespace analytics, such as traffic sources, unique visitors, and cart abandonment.

You can disable Squarespace analytics and performance cookies at any time.

Cookie Name

Duration

Purpose

ss_cid

Two years

Identifies unique visitors and tracks a visitor’s sessions on a site

ss_cpvisit

Two years

Identifies unique visitors and tracks a visitor’s sessions on a site

ss_cvisit

30 minutes

Identifies unique visitors and tracks a visitor’s sessions on a site

ss_cvr

Two years

Identifies unique visitors and tracks a visitor’s sessions on a site

ss_cvt

30 minutes

Identifies unique visitors and tracks a visitor’s sessions on a site