Cookies — Brian Lagerstrom

Functional and required cookies

Squarespace uses some necessary cookies so visitors can navigate and use key features on your site. These cookies vary from site to site depending on the features it uses. For example, functional and required cookies help these features work:

Name

Purpose, type, and duration

_acloggedin

Supports login by Acuity Scheduling client if the client has an account
Cookie
January 1, 2025

_client_acloggedin

Supports login by Acuity Scheduling client if the client has an account
Cookie
January 1, 2025

_dd_cookie_test

Tests if cookies are supported
Cookie
Expires instantly

_dd_s

Tracks browser errors
Cookie
Four hours

_dd_site_test

Tests if cookies are supported
Cookie
Expires instantly

_grecaptcha

Helps reduce spam in Acuity Scheduling
Local storage
No expiry

_ssid

Remembers devices for anti-fraud purposes
Cookie
Four years

CART

Shows when a visitor adds a product to their cart
Cookie
Two weeks

CHECKOUT_WEBSITE

Identifies the correct site for checkout when checkout on your domain is disabled
Cookie
Session

client_username

Remembers a logged in Acuity Scheduling client's username between visits
Cookie
One year

clientUser

Stores the Acuity Scheduling client's username, OAuth2 Access Token, and OAuth2 Refresh Token. This cookie is required for functionality of logged-in clients
Cookie
30 days

Commerce-checkout-state

Stores state of checkout while the visitor is completing their order in PayPal
sessionstorage
Session

Crumb

Prevents cross-site request forgery (CSRF)
Cookie
Session

hasCart

Tells Squarespace that the visitor has a cart
Cookie
Two weeks

Locked

Prevents the password-protected screen from displaying if a visitor enters the correct site-wide password.
Cookie
Session

orderStatusSessionToken

Authenticates a visitor who logs into an order status page.
Cookie
One year

PHPSESSID

Securely authenticates a visitor during their checkout in Acuity Scheduling
Cookie
One month

RecentRedirect

Prevents redirect loops if a site has custom URL redirects. Redirect loops are bad for SEO.
Cookie
30 minutes

remember_client

Remembers Acuity Scheduling client’s login details if they have an account
Cookie
365 days

siteUserCrumb

Prevents cross-site request forgery (CSRF) for logged in site users
Cookie
Three years

SiteUserInfo

Identifies a visitor who logs into a customer account
Cookie
Three years

SiteUserSecureAuthToken

Authenticates a visitor who logs into a customer account
Cookie
Three years

squarespace-announcement-bar

Prevents the announcement bar from displaying if a visitor dismisses it
localstorage
Persistent

squarespace-likes

Shows when you've already "liked" a blog post
localstorage
Persistent

squarespace-popup-overlay

Prevents the promotional pop-up from displaying if a visitor dismisses it
localstorage
Persistent

squarespace-video-player-options

Remembers video player selected preferences ( volume, playback speed, and quality) for videos uploaded directly to Squarespace
localstorage
Persistent

ss_cookieAllowed

Remembers if a visitor agreed to placing analytics cookies on their browser if a site is restricting the placement of cookies
Cookie
30 days

ss_sd

Ensures that visitors on the Squarespace 5 platform remain authenticated during their sessions
Cookie
Session

Test

Investigates if the browser supports cookies and prevents errors
Cookie
Session

Enables a Acuity Scheduling client’s appointments to display correctly based on their time zone preferences.
localstorage
Persistent

Cross-site request forgery (CSRF)

CSRF is an attack vector that tricks a browser into taking unwanted action in an application when someone’s logged in.

Analytics and performance cookies

Cookie Name

Duration

Purpose

ss_cid

Two years