Cookies

Please read our cookie policy below to learn of what are, their benefits and how we use them on our web site.

If you'd like to disable cookies on your browser, please view our information on ‘Controlling and Deleting Cookies’. Please be aware that some parts of the site and your ability to buy products will not function correctly if you disable all cookies.

By viewing this Cookie Policy Page and using our website, you consent to our use of cookies on your browser in accordance with our cookie policy unless you have disabled them.

 

1. Controlling and Deleting Cookies
It is not the policy of The Body Shop International to collect personally identifiable information about our site users through the use of cookies. To prevent cookies generated from our site reaching your device, you will be able to restrict them or block them using your browser settings. Use the ‘Help’ function on your browser for information on how to do this. To delete or restrict cookies on your mobile phone device, refer to your handset manual. Please be aware that your actions to restrict or delete cookies may affect the functionality of The Body Shop website. For more information on cookies and how to restrict or delete them, visit www.aboutcookies.org

 

Cookie Name

Vendor

Purpose of cookie

JSESSIONID

The Body Shop

CyberSource uses cookies solely to maintain personalized services throughout the website. It collects information in an anonymous form by using a unique identifier.  This cookie expires when you close your browser.

tbsstorefront

 

RememberMe

The Body Shop

Remember me cookie - Allows the site to remember the username to facilitate login.

customerType

The Body Shop

Defines if a user has purchased with The Body Shop in the past.

TBS-COUNTRY

The Body Shop

Remembers which country the visitor is based in, required to the global nature of The Body Shop.

agreedToCookies

 

tbsXXStore

The Body Shop

This is placed when the user accepts the cookie policy via the banner at the top of the homepage and prevents the banner showing in future if the cookie is present on the user's computer. Where "XX" will refer to the market code, e.g. "US".

affiliateSource

The Body Shop

Temporary session cookie to record the route a user took to enter the site. Used to assist in attributing sales to affiliate marketing.

cartItemCount

The Body Shop

Tracks the number of items in the cart.

customerDetails

The Body Shop

Captures anonymous user details held for the session duration to state if the user is new to the site.

initialisedSession

The Body Shop

Initializing a session means starting a session in php so session data can be stored.

JSESSIONUSERID

The Body Shop

Places a session ID into the browser to user is correctly recognised throughout their session on the site, including being logged in.

SERVERID

The Body Shop

Used for load balancing. Identifies the server that delivered the last page to the browser. Associated with the HAProxy Load Balancer software.

thebodyshop-ca-affiliate

The Body Shop

Used to assist in attributing sales to affiliate marketing.

thx_guid

The Body Shop

Unique, anonymous user ID to identify a device that was used to place an order on the site.

acceleratorSecure

 

GUID

The Body Shop

A session cookie that runs while the session is currently active on a particular browser, used to keep information available to the user.

gtm_medium

The Body Shop

Temporary session cookie to record the route a user took to enter the site. Used to assist in attributing sales to affiliate marketing.

gtm_source

The Body Shop

Temporary session cookie to record the route a user took to enter the site. Used to assist in attributing sales to affiliate marketing.

_gali

The Body Shop

Used with the basket function to store data.

 

 

2. Third-Party Cookies for US Users

The Body Shop uses suppliers who set their own cookies on our website with our permission to enhance customer experience and functionality and to deliver the services that they are providing. For more information about this type of cookie and the possibilities to opt-out, refer to their individual privacy policies below.

 


Cookie name

Description of cookie

AWSELB

Amazon Web Services - Elastic Load Balancing functionality for routing client request on the server.

__atuvc

AddThis - Social sharing widget that enables visitors to share content with a range of networking and sharing platforms. It stores an updated page share count.

loc

mus

na_id

na_tc

ouid

ssc

uid

uvc

__atuvs

_aw_m_####

Affiliate Window - Set when you click on a link from one Affiliate Window's partners. Stores IDs for referring website, advertisement on which you clicked, group of advertisements to which the advertisement belongs, time you clicked on it, ID for the type of advertisement, ID for the product and any reference the referring site adds to the click. "####" refers to a numeric value relating to the specific Body Shop site.

__atuvc

Affiliate Window - social sharing widget which is commonly embedded in websites to enable visitors to share content with a range of networking and sharing platforms. It stores an updated page share count. - Functionality

__atuvs

__atuvs

awin_conversion

Affiliate Window - Set to true or false and captures the date of session to establish whether a session orignated from an affiliate partner.

 

mt.sc

mt.utm_params

AKA_A2

Akamai - Optimises images on the site to assist in speeding up the page load time. This cookie is used by the Advanced Acceleration feature which enables DNS Prefetch, HTTP2 Push.

ai

Bazaarvoice - Anonymous ID identifies anonymous users when they submit subsequent feedback or content.

bvReturnPosition

Bazaarvoice - used to indicate the return position after a review has been submitted.

rfv_########_Helpfulness

Bazaarvoice - enabled when Feedback is configured. Indicates that the user has left feedback of the specified type on the specified content. This helps the UI visually indicate to the user that they can't submit more feedback on that content."#" refers to a numeric value relating to the specific Body Shop site.

_EDGE_S

Bing - Advertising cookie used for user tracking and ad targeting purposes.

_SS

SRCHD

SRCHUID

SRCHUSR

_cs_c

Content Square - Used to save the user consent to be tracked.

_cs_ex

Content Square - Used to exclude some visitors from the collection.

_cs_id

Content Square - Contains ContentSquare's user identifier.

_cs_optout

Content Square - Used to exclude some visitors from the collection.

_cs_s

Content Square - Contains the number of pageviews within the running session for ContentSquare Solution.

_cs_vars

Content Square - Used to record custom variables.

csrfToken

Associated with the Django web development platform for Python. It is designed to help protect a site against at particular type of software attack on web forms.

pl

Facebook - Enables Facebook integration and sharing capabilities.

wd

Facebook - Stores the browser window dimensions and is used by Facebook to optimise the rendering of the page.

xs

Facebook - Contains session info: session number and if secure browsing feature is enabled.

_fbp

Facebook - Helps deliver advertising to people who have visited our website when they are on Facebook or a digital platform powered by Facebook Advertising.

act

Facebook - Timestamp and counter of user actions for Facebook.

c_user

Facebook - Facebook anonymous ID.

datr

Facebook - Browser ID. Identifies a browser used to connect to Facebook.

fr

Facebook - Encrypted Facebook ID and Browser ID

presence

Facebook - Used to contain the user's chat state in Facebook. For example, which chat tabs are open.

sb

Facebook - Used by Facebook to improve friend suggestions.

spin

Facebook - Contains session info.

1P_JAR

Google & Doubleclick - Advertising cookie used for user tracking and ad targeting purposes.

AID

ANID

APISID

CONSENT

HSID

NID

SAPISID

SID

SIDCC

SSID

XSRF-TOKEN

Google & Doubleclick - Helps with site security in preventing Cross-Site Request Forgery attacks.

_gcl_aw

Google & Doubleclick - Set by Google Conversion Linker to store ad click information.

_gcl_dc

Google & Doubleclick - Set by Google Conversion Linker to store ad click information.

.DDMMUI-PROFILE

Google & Double Click - This cookie is generated with the aim of showing advertisements to the user in accordance with their preferences.

DV

Google & Double Click - This cookie is generated with the aim of showing advertisements to the user in accordance with their preferences.

DSID

Google & Double click - This cookie is set to note your specific user identity. It contains a hashed/encrypted unique ID for use on Google's display ad platform.

_gcl_au

Google & Double Click - Used by Google AdSense for experimenting with advertisement efficiency across websites using their services.

IDE

Google & Double Click - Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

_ga

Google Analytics - These cookies are used to collect information about how visitors use our site. These cookies provide anonymised data to allow us to understand user behavior and marketing performance. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. These cookies also allow us to target the advertising we do on third party websites more effectively, providing more relevant advertising to the user. "#" refers to a numeric value relating to the specific Body Shop site.

_gac_UA-17195161-1

_gac_UA-75130031-#D

_gat_UA-17195161-1

_gat_UA-75130031-##

_gid

_dc_gtm_UA-75130031-##

Google Tag Manager - Functionality associated with sites using Google Tag Manager to load other scripts and code into a page. Where it is used it may be regarded as Strictly Necessary as without it, other scripts may not function correctly. The end of the name is a unique number which is also an identifier for an associated Google Analytics account. "##" refers to a numeric value relating to the specific Body Shop site.

OGPC

Google Maps - Enables the functionality of Google Maps.

OTZ

Google Maps - Allows sharing of a page on Google plus account.

k2c_Bodyshop_cids

Klick2Contact - For livechat - this enables the live chat function to work correctly.

k2c_BodyshopAUS_cids

k2c_chat_a1

k2c_history

PHPSESSID

Klick 2 Contact - This is a general purpose identifier used to maintain user session variables. A random generated number to maintain a logged-in status for a user between pages for the Live Chat feature.

icts

Linksynergy - Used to assist in attributing sales to affiliate marketing by Rakuten/Linkshare.

ls_token

lsclick_mid36421

lsclick_mid38432

lsn_qstring

lsn_statp

lsn_track

rmStore

lsn_track

rmuid

_pk_id.###.###

Matomo - Used to collect information about how visitors use our site. These cookies provide anonymised data to allow us to understand user behavior and marketing performance. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. "####" refers to a numeric value relating to the specific Body Shop site.

_pk_ref.###.####

_pk_ses.###.####

MUID

Microsoft - Used by Microsoft as a unique user identifier to sync across many different Microsoft domains, allowing anonymous user tracking.

MUIDB

Microsoft - Carries information from Bing about how the user uses the website and any advertising that the user may have seen before visiting the website.

OTZ

Google Maps - Allows sharing of a page on Google plus account.

_hp2_id.1803673420

Monetate - an A/B testing tool, enabling The Body Shop to test different functionality and site design in order to optimise the website. These cookies ensure a user sees the same version of any applicable test they previously encountered on the site. Monetate cookies use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your computer until you delete them) to help us collect Information and to enhance your experience, find out more here: https://www.monetate.com/platform-privacy-policy. These cookiea relate to 'stateful banner' on the site (various carousels for content), it controls the frequency and whether user has seen already this element. ""####"" refers to a numeric value relating to the specific Body Shop site.

_hp2_props.1803673420

mt.sac_#######

mt.i-lbx

Monetate - Allows us to test various improvements and measure their effectiveness.

mt.v

Monetate - Records the anonymous user ID.

mt.stDiff

Monetate - Monitors the time difference between the user and the server to enable the use of 'countdown' functions.

__olapicU

Olapic - Tracks user actions for the purpose of enabling interaction with users of social media platforms. Captures a hashed IP address (using SHA-256), user agent and tracks actions on the page (clicks on Olapic photos, etc.)

_pinterest_cm

Pinterest - Allows users to share pictures via Pinterest / the "Pin It" button, and Pinterest can collect statistical information about usage of their service.

_pinterest_sess

__qca

Quantcast - Advertising cookie used for user tracking and ad targeting purposes.

_sctr

Application functionality & Anonymously identify device browser to understand effectiveness of partnering with Snap.

sc_at

_scid

guest_id

Twitter - To identify and track the website visitor using an anonymous ID. This cookie is used to deliver adverts more relevant to you and your interests.

personalization_id

__ssid

VeInteractive - Allows us to email customers who abandon a transaction on our website to ask if they need any assistance from the services team.

2BFE9D21-4426-45C9-AFD2-0B9A7E1F13DF

opt-out

Quantcast - Advertising cookie used for user tracking and ad targeting purposes.

stc114489

Worldpay/Streamline - Placed by the payment provider service during a transaction on the site. A combination of data, the cookie name contains the store ID. The cookie data stored comprises: tsa: Referrer details to avoid duplicate Landing events env: Flags whether the environment variables (screen size, browser etc.) need to be collected again. uid: Stores a user identifier (only within a site). This notifies when an anonymous user on is a repeat visitor, but does not profile the user. srchist: Stores the history of traffic sources the user has arrived to the site by.

 

3. Flash Cookies: Local Shared Objects
To deliver its video content services, the Body Shop uses Adobe Flash Player. For the comprehensive user experience, Local Shared Objects, also known as Flash Cookies, provide a variety of features, for example, the ‘save preferences’ function and ‘auto-resume’. Though the Flash Cookies will be stored on your terminal, you will be unable to restrict or delete them in your browser settings in the same way as ordinary cookies.

Before you disable this type of cookie, be aware that restrictions you apply may affect the features available to you for Flash-based applications. Check the Adobe website for information on how to delete or disable Flash cookies at
www.adobe.com/products/flashplayer/security

 

4. Cookies Set by Third-Party Sites
The Body Shop occasionally embeds picture and video content from websites like YouTube. Consequently, if you visit a page with embedded-content cookies, you may be presented with such cookies from these websites. This type of cookie cannot be disseminated by us, so you will need to check the relevant third-party website for information.

 

5. The Body Shop Sharing Tools
The Body Shop website carries embedded ‘share’ buttons which enable site users to share articles via social networks. Social network sites may set cookies on your terminal when you are logged in to their service. The Body Shop does not control the dissemination of these cookies, so you will need to check the relevant third party website for information about this type of cookie.