Skip to main content
Skip table of contents

What Cookies Do Scroll Sites Set?

By default, Scroll Sites will not set any tracking cookies.

First-Party Cookies

Scroll Sites will not set any tracking cookies on your site unless you have further configured your site.

If you restrict access to your site with access tokens, we will apply session cookies in your site. Learn more on Protect Site Access With Tokens .

Third-Party Cookies

Third-party cookies are only set if you choose to add a third-party service in your Scroll site, either through our offered integrations, by enabling SSO or by inserting third-party scripts via the JavaScript editor.

Please refer to the specific service providers for more details on their privacy policies.

Allow users to opt-in or opt-out

When you include third-party services in your site, we recommend to turn on cookie consent management so you can comply with privacy regulations, like GDPR.

The cookie dialog will allow users to choose whether they want to block third-party cookies or allow to store them. Users can revise their decision at any time from the site’s footer.

SSO Cookies

The cookies for SSO authentication are maintained by AWS, see Using signed cookies - Amazon CloudFront for more details and below a summary:

CloudFront-Signature

  • Cookie name: CloudFront-Signature

  • Purpose: A hashed, signed, and base64-encoded version of a JSON policy statement.

  • Expiry: The cookie is deleted after the browser session is completed or the browser closed. Independent of the duration of the browser session, the signed values will expire after one hour. After that, the user will need to log in again to access the site.

  • Maintained By: AWS

  • Strictly Necessary: Yes

CloudFront-Key-Pair-id

  • Cookie name: CloudFront-Key-Pair-id

  • Purpose: The public key ID tells CloudFront which public key to use to validate the signed URL. CloudFront compares the information in the signature with the information in the policy statement to verify that the URL has not been tampered with.

  • Expiry: See above

  • Maintained By: AWS

  • Strictly Necessary: Yes

CloudFront-Policy

  • Cookie name: CloudFront-Policy

  • Purpose: The policy statement controls the access that a signed cookie grants to a user. It includes, for example, the files that the user can access, an expiration date and time.

  • Expiry: See above

  • Maintained By: AWS

  • Strictly Necessary: Yes

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close