Cookies are small files that allow a website to recognise and track users. The ICO groups them into three overlapping groups:
These are files that allow a site to link the actions of a visitor during a single browser session. These might be used by an internet bank or webmail service. They are not stored long term and are considered “less privacy intrusive” than persistent cookies.
These remain on the user’s device between sessions and allow one or several sites to remember details about the visitor. They may be used by marketers to target advertising or to avoid the user having to provide a password each visit.
A cookie is classed as being first-party if it is set by the site being visited. It might be used to study how people navigate a site and to improve the visitors’ experience.
It is classed as third-party if it is issued by a different server to that of the domain being visited. It could be used to trigger a banner advert based on the visitor’s viewing habits.