Cookies

Please read our cookie policy below to learn of what are, their benefits and how we use them on our web site.

If you'd like to disable cookies on your browser, please view our information on ‘Controlling and Deleting Cookies’. Please be aware that some parts of the site and your ability to buy products will not function correctly if you disable all cookies.

By viewing this Cookie Policy Page and using our website, you consent to our use of cookies on your browser in accordance with our cookie policy unless you have disabled them.

 

1. Controlling and Deleting Cookies
It is not the policy of The Body Shop International to collect personally identifiable information about our site users through the use of cookies. To prevent cookies generated from our site reaching your device, you will be able to restrict them or block them using your browser settings. Use the ‘Help’ function on your browser for information on how to do this. To delete or restrict cookies on your mobile phone device, refer to your handset manual. Please be aware that your actions to restrict or delete cookies may affect the functionality of The Body Shop website. For more information on cookies and how to restrict or delete them, visit www.aboutcookies.org

 

 

Cookie Name
VendorCookie TypePurpose of cookie
JSESSIONIDThe Body ShopFunctionalityCyberSource uses cookies solely to maintain personalized services throughout the website. It collects information in an anonymous form by using a unique identifier.  This cookie expires when you close your browser.
tbsstorefrontRememberMeFunctionalityRemember me cookie - Allows the site to remember the username to facilitate login.
customerTypeTarget/AdvertisingDefines if a user has purchased with The Body Shop in the past.
TBS-COUNTRYFunctionalityRemembers which country the visitor is based in, required to the global nature of The Body Shop.
agreedToCookiestbsXXStoreFunctionalityThis is placed when the user accepts the cookie policy via the banner at the top of the homepage and prevents the banner showing in future if the cookie is present on the user's computer. Where "XX" will refer to the market code, e.g. "UK".
affiliateSourceFunctionalityTemporary session cookie to record the route a user took to enter the site. Used to assist in attributing sales to affiliate marketing.
cartItemCountFunctionalityTracks the number of items in the cart.
customerDetailsFunctionalityCaptures anonymous user details held for the session duration to state if the user is new to the site.
initialisedSessionFunctionalityInitializing a session means starting a session in php so session data can be stored.
JSESSIONUSERIDFunctionalityPlaces a session ID into the browser to user is correctly recognised throughout their session on the site, including being logged in.
SERVERIDFunctionalityUsed for load balancing. Identifies the server that delivered the last page to the browser. Associated with the HAProxy Load Balancer software.
thebodyshop-ca-affiliateTarget/AdvertisingUsed to assist in attributing sales to affiliate marketing.
thx_guidFunctionalityUnique, anonymous user ID to identify a device that was used to place an order on the site.
acceleratorSecureGUIDFunctionalityA session cookie that runs while the session is currently active on a particular browser, used to keep information available to the user.
gtm_mediumFunctionalityTemporary session cookie to record the route a user took to enter the site. Used to assist in attributing sales to affiliate marketing.
gtm_sourceFunctionalityUsed with the basket function to store data.
_galiFunctionality

Used with the basket function to store data.

 

 

2. Third-Party Cookies for US Users

The Body Shop uses suppliers who set their own cookies on our website with our permission to enhance customer experience and functionality and to deliver the services that they are providing. For more information about this type of cookie and the possibilities to opt-out, refer to their individual privacy policies below.

 

Cookie Name
VendorPurpose
Purpose of cookie
AWSELBAmazon Web ServicesFunctionalityAmazon Web Services Elastic Load Balancing functionality for routing client request on the server.
_aw_m_####Affiliate WindowTargeting/AdvertisingSet when you click on a link from one Affiliate Window's partners. Stores IDs for referring website, advertisement on which you clicked, group of advertisements to which the advertisement belongs, time you clicked on it, ID for the type of advertisement, ID for the product and any reference the referring site adds to the click. "####" refers to a numeric value relating to the specific Body Shop site.
awin_conversionSet to true or false and captures the date of session to establish whether a session orignated from an affiliate partner.
mt.sc
mt.utm_params
AKA_A2AkamaiFunctionalityAkamai optimises images on the site to assist in speeding up the page load time. This cookie is used by the Advanced Acceleration feature which enables DNS Prefetch, HTTP2 Push.
aiBazaarvoiceAnonymous ID - Identifies anonymous users when they submit subsequent feedback or content.
bvReturnPositionUsed to indicate the return position after a review has been submitted.
rfv_########_HelpfulnessEnabled when Feedback is configured. Indicates that the user has left feedback of the specified type on the specified content. This helps the UI visually indicate to the user that they can't submit more feedback on that content."#" refers to a numeric value relating to the specific Body Shop site.
_EDGE_SBingTargeting/AdvertisingAdvertising cookie used for user tracking and ad targeting purposes.
_SS
SRCHD
SRCHUID
SRCHUSR
_cs_cContentSquareStatisticsUsed to exclude some visitors from the collection.
_cs_ex
_cs_idContains ContentSquare’s user identifier.
_cs_optoutUsed to exclude some visitors from the collection.
_cs_sContains the number of pageviews within the running session for ContentSquare Solution.
_cs_varsUsed to record custom variables.
csrfTokenDjangoFunctionalityAssociated with the Django web development platform for Python. It is designed to help protect a site against at particular type of software attack on web forms.
plFacebookEnables Facebook integration and sharing capabilities.
wdStores the browser window dimensions and is used by Facebook to optimise the rendering of the page.
xsContains session info: session number and if secure browsing feature is enabled.
_fbp
Targeting/Advertising
Helps deliver advertising to people who have visited our website when they are on Facebook or a digital platform powered by Facebook Advertising.
actTimestamp and counter of user actions for Facebook.
c_userFacebook anonymous ID.
datrBrowser ID. Identifies a browser used to connect to Facebook.
frEncrypted Facebook ID and Browser ID.
presenceUsed to contain the user’s chat state in Facebook. For example, which chat tabs are open.
sbUsed by Facebook to improve friend suggestions.
spinContains session info.
1P_JARGoogle & Doubleclick
 
Advertising cookie used for user tracking and ad targeting purposes.
AID
ANID
APISID
CONSENT
HSID
NID
SAPISID
SID
SIDCC
SSID
XSRF-TOKENHelps with site security in preventing Cross-Site Request Forgery attacks.
_gcl_awSet by Google Conversion Linker to store ad click information.
_gcl_dc
.DDMMUI-PROFILEThis cookie is generated with the aim of showing advertisements to the user in accordance with their preferences.
DV
DSIDThis cookie is set to note your specific user identity. It contains a hashed/encrypted unique ID for use on Google's display ad platform.
_gcl_auUsed by Google AdSense for experimenting with advertisement efficiency across websites using their services.
IDEUsed by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.
_gaGoogle AnalyticsStatisticsThese cookies are used to collect information about how visitors use our site. These cookies provide anonymised data to allow us to understand user behavior and marketing performance. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. These cookies also allow us to target the advertising we do on third party websites more effectively, providing more relevant advertising to the user. "#" refers to a numeric value relating to the specific Body Shop site.
_gac_UA-17195161-1
_gac_UA-75130031-#
_gat
_gat_UA-17195161-1
_gat_UA-75130031-##http://www.google.com/policies/privacy/ads/
_gidhttp://www.google.com/analytics/learn/privacy.html
_dc_gtm_UA-75130031-##Google Tag ManagerFunctionalityAssociated with sites using Google Tag Manager to load other scripts and code into a page. Where it is used it may be regarded as Strictly Necessary as without it, other scripts may not function correctly. The end of the name is a unique number which is also an identifier for an associated Google Analytics account. "##" refers to a numeric value relating to the specific Body Shop site.
OGPCGoogle MapsFunctionalityEnables the functionality of Google Maps.
OTZAllows sharing of a page on Google plus account.
IR_PIGrowthOpsTargeting/AdvertisingTracking set on advertisers page and drops cookies when the user clicks on banner/ad. First party Cookie.
IR_GBDBase domain cookie, set on host site.
IR_(Campaign_ID)Current session cookie, updated everytime a page loads.
k2c_Bodyshop_cidsKlick2ContactFunctionalityKlick2Contact for livechat - this enables the live chat function to work correctly - anonymous ID
k2c_BodyshopAUS_cidsKlick2Contact for livechat - this enables the live chat function to work correctly - anonymous ID
k2c_chat_a1Klick2Contact for livechat - this enables the live chat function to work correctly
k2c_historyKlick2Contact for livechat - this enables the live chat function to work correctly
PHPSESSIDThis is a general purpose identifier used to maintain user session variables. A random generated number to maintain a logged-in status for a user between pages for the Live Chat feature.
ictsLinksynergyTargeting/AdvertisingUsed to assist in attributing sales to affiliate marketing by Rakuten/Linkshare.
ls_token
lsclick_mid36421
lsclick_mid38432
lsn_qstring
lsn_statp
lsn_track
rmStore
rmuid
_pk_id.###.###MatomoStatisticsUsed to collect information about how visitors use our site. These cookies provide anonymised data to allow us to understand user behavior and marketing performance. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. "####" refers to a numeric value relating to the specific Body Shop site.
_pk_ref.###.####
_pk_ses.###.####
mm_idMentionMeTargeting/AdvertisingNon personally identifiable ID which serves to identify the browser used.
redirecttoflowUsed to ensure a seamless redirect to The Bodyshop's site for certain customers journeys.
mm_analyticsUsed to track user's status through the checkout process
mm_allocationUsed to keep track of which offers user is participating in order to provide a more consistent experience
mm_offer_frequencyUsed to keep track of how many times a user has seen an offer in order to establish a limit.
mm_overlay_suppressedUsed to suppress a corner peel promotion if the ‘x’ is clicked
mm_conversion_message_suppressedUsed to suppress a conversion message if the ‘x’ is clicked
__cfduidUsed to detect malicious visitors to our The Body Shop’s websites and minimize blocking of legitimate users.
intercom-idNon personally identifiable ID which serves to identify the browser used.
MUIDMicrosoftTargeting/AdvertisingUsed by Microsoft as a unique user identifier to sync across many different Microsoft domains, allowing anonymous user tracking.
MUIDBCarries information from Bing about how the user uses the website and any advertising that the user may have seen before visiting the website.
_hp2_id.1603673420MonetateStatisticsMonetate is an A/B testing tool, enabling The Body Shop to test different functionality and site design in order to optimise the website. These cookies ensure a user sees the same version of any applicable test they previously encountered on the site. Monetate cookies use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your computer until you delete them) to help us collect Information and to enhance your experience, find out more here: https://www.monetate.com/platform-privacy-policy.
These cookiea relate to 'stateful banner' on the site (various carousels for content), it controls the frequency and whether user has seen already this element. "####" refers to a numeric value relating to the specific Body Shop site.
_hp2_props.1603673420
mt.sac_#######
mt.i-lbxAllows us to test various improvements and measure their effectiveness.
mt.vRecords the anonymous user ID.
mt.stDiffMonitors the time difference between the user and the server to enable the use of 'countdown' functions.
__olapicUOlapicTargeting/AdvertisingTracks user actions for the purpose of enabling interaction with users of social media platforms. Captures a hashed IP address (using SHA-256), user agent and tracks actions on the page (clicks on Olapic photos, etc.)
_pinterest_cmPinterestFunctionalityAllows users to share pictures via Pinterest / the "Pin It" button, and Pinterest can collect statistical information about usage of their service.
_pinterest_sess
__qcaQuantcastTargeting/AdvertisingAdvertising cookie used for user tracking and ad targeting purposes.
_sctrSnap ChatTargeting/AdvertisingApplication functionality
sc_atAnonymously identify device browser to understand effectiveness of partnering with Snap
_scid
guest_idTwitterTargeting/AdvertisingTo identify and track the website visitor using an anonymous ID. This cookie is used to deliver adverts more relevant to you and your interests.
personalization_id
__ssidVeInteractiveFunctionalityAllows us to message customers who interact with our website to ask if they need any assistance or give promotions.
2BFE9D21-4426-45C9-AFD2-0B9A7E1F13DF
opt-outTargeting/AdvertisingAdvertising cookie used for user tracking and ad targeting purposes.
stc114489Worldpay/StreamlineFunctionalityPlaced by the payment provider service during a transaction on the site. A combination of data, the cookie name contains the store ID. The cookie data stored comprises:
tsa: Referrer details to avoid duplicate Landing events
env: Flags whether the environment variables (screen size, browser etc.) need to be collected again.
uid: Stores a user identifier (only within a site). This notifies when an anonymous user on is a repeat visitor, but does not profile the user.
srchist: Stores the history of traffic sources the user has arrived to the site by.

Source: compiled from vendor information and various 3rd party cookie database websites

 

3. Flash Cookies: Local Shared Objects
To deliver its video content services, the Body Shop uses Adobe Flash Player. For the comprehensive user experience, Local Shared Objects, also known as Flash Cookies, provide a variety of features, for example, the ‘save preferences’ function and ‘auto-resume’. Though the Flash Cookies will be stored on your terminal, you will be unable to restrict or delete them in your browser settings in the same way as ordinary cookies.

Before you disable this type of cookie, be aware that restrictions you apply may affect the features available to you for Flash-based applications. Check the Adobe website for information on how to delete or disable Flash cookies at
www.adobe.com/products/flashplayer/security

 

4. Cookies Set by Third-Party Sites
The Body Shop occasionally embeds picture and video content from websites like YouTube. Consequently, if you visit a page with embedded-content cookies, you may be presented with such cookies from these websites. This type of cookie cannot be disseminated by us, so you will need to check the relevant third-party website for information.

 

5. The Body Shop Sharing Tools
The Body Shop website carries embedded ‘share’ buttons which enable site users to share articles via social networks. Social network sites may set cookies on your terminal when you are logged in to their service. The Body Shop does not control the dissemination of these cookies, so you will need to check the relevant third party website for information about this type of cookie.