Functional and required cookies

Squarespace uses some necessary cookies so visitors can navigate and use key features on your site. These cookies vary from site to site depending on the features it uses. For example, functional and required cookies help these features work:

Name

Purpose, type, and duration

_acloggedin

  • Supports login by Acuity Scheduling client if the client has an account

  • Cookie

  • January 1, 2025

_client_acloggedin

  • Supports login by Acuity Scheduling client if the client has an account

  • Cookie

  • January 1, 2025

_dd_cookie_test

  • Tests if cookies are supported

  • Cookie

  • Expires instantly

_dd_s

  • Tracks browser errors

  • Cookie

  • Four hours

_dd_site_test

  • Tests if cookies are supported

  • Cookie

  • Expires instantly

_grecaptcha

  • Helps reduce spam in Acuity Scheduling

  • Local storage

  • No expiry

_ssid

  • Remembers devices for anti-fraud purposes

  • Cookie

  • Four years

CART

  • Shows when a visitor adds a product to their cart

  • Cookie

  • Two weeks

CHECKOUT_WEBSITE

client_username

  • Remembers a logged in Acuity Scheduling client's username between visits

  • Cookie

  • One year

clientUser

  • Stores the Acuity Scheduling client's username, OAuth2 Access Token, and OAuth2 Refresh Token. This cookie is required for functionality of logged-in clients

  • Cookie

  • 30 days

Commerce-checkout-state

  • Stores state of checkout while the visitor is completing their order in PayPal

  • sessionstorage

  • Session

Crumb

hasCart

  • Tells Squarespace that the visitor has a cart

  • Cookie

  • Two weeks

Locked

  • Prevents the password-protected screen from displaying if a visitor enters the correct site-wide password.

  • Cookie

  • Session

orderStatusSessionToken

  • Authenticates a visitor who logs into an order status page.

  • Cookie

  • One year

PHPSESSID

  • Securely authenticates a visitor during their checkout in Acuity Scheduling

  • Cookie

  • One month

RecentRedirect

  • Prevents redirect loops if a site has custom URL redirects. Redirect loops are bad for SEO.

  • Cookie

  • 30 minutes

remember_client

  • Remembers Acuity Scheduling client’s login details if they have an account

  • Cookie

  • 365 days

siteUserCrumb

SiteUserInfo

SiteUserSecureAuthToken

  • Authenticates a visitor who logs into a customer account

  • Cookie

  • Three years

squarespace-announcement-bar

  • Prevents the announcement bar from displaying if a visitor dismisses it

  • localstorage

  • Persistent

squarespace-likes

  • Shows when you've already "liked" a blog post

  • localstorage

  • Persistent

squarespace-popup-overlay

  • Prevents the promotional pop-up from displaying if a visitor dismisses it

  • localstorage

  • Persistent

squarespace-video-player-options

ss_cookieAllowed

  • Remembers if a visitor agreed to placing analytics cookies on their browser if a site is restricting the placement of cookies

  • Cookie

  • 30 days

ss_sd

Test

  • Investigates if the browser supports cookies and prevents errors

  • Cookie

  • Session

TZ

  • Enables a Acuity Scheduling client’s appointments to display correctly based on their time zone preferences.

  • localstorage

  • Persistent

Cross-site request forgery (CSRF)

CSRF is an attack vector that tricks a browser into taking unwanted action in an application when someone’s logged in.

Analytics and performance cookies

Cookie Name

Duration

Purpose

ss_cid

Two years

Identifies unique visitors and tracks a visitor’s sessions on a site

ss_cpvisit

Two years

Identifies unique visitors and tracks a visitor’s sessions on a site

ss_cvisit

30 minutes

Identifies unique visitors and tracks a visitor’s sessions on a site

ss_cvr

Two years

Identifies unique visitors and tracks a visitor’s sessions on a site

ss_cvt

30 minutes

Identifies unique visitors and tracks a visitor’s sessions on a site