Creatio Platform Cookies
Creatio may use the following types of cookies and similar technologies to operate and improve products and services offered through the sites (Creatio Services), Application Hub functionality available in Creatio cloud for user accounts connected to an organization account (Application Hub, Cloud), and any other digital properties that Creatio owns or control.:
- Essential / strictly necessary cookies required for the operation of the Creatio Services. For example, this includes cookies that let you log in to secure areas. Strictly necessary cookies facilitate the operation of Creatio Services and websites. Without these cookies, parts of Creatio Services and websites will not function properly.
- Functional cookies that remember choices you make and recognize you when you return. This enables Creatio to personalize content, greet you by name and remember your preferences (for example, your choice of language or region) or allow the pre-population of certain resource request forms, making it easier for you to access Creatio content.
- Analytical / performance cookies that collect information about how you use Creatio Services. They allow Creatio to recognize and count the number of visitors and to see how visitors move around in Creatio Services. This helps us improve the way software works. These cookies may be sometimes placed by third-party providers of web traffic analysis services.
See more details on cookies and how Creatio processes cookie data in the Creatio Privacy Policy.
This article covers only cookies used by Creatio Services, but does not include cookies found in Creatio Marketplace Applications. For the details of each Marketlace app, please read the corresponding app's documentation.
This table describes the cookies used by Creatio platform:
Cookie Name | Duration | Cookie Type | Description | Product |
---|---|---|---|---|
ASPXAUTH | Session cookie | Strictly necessary | Stores information about the authorized status of the user and to provide access to protected resources only to authorized users. May store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition Creatio Success Portal |
BPMLOADER | Session cookie | Strictly necessary | Required for the website to work properly. Stores the unique IDs of anonymous sessions. Does not store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition Creatio Success Portal |
BPMSESSIONID | Session cookie | Strictly necessary | Required for the website to work properly. Stores a unique ID of the session. May store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition Creatio Success Portal |
BPMCSRF | Session cookie | Strictly necessary | Protects against cross-site requests (CSRF). Stores a unique token that is checked by the server to confirm the legitimacy of requests, thereby preventing possible CSRF attacks. Does not store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition Creatio Success Portal |
UserName | Cookie exists Disabled by default. | Functional cookie (Optional) | Stores a user ID for easier log in to the platform. Set after successful user authorization. Can be activated and deactivated on the customer’s level by setting the UserNameExpireDays system setting. To activate, set the system setting "User name expiration term (days)" ("UserNameExpireDays" code) to To deactivate, set the system setting "User name expiration term (days)" ("UserNameExpireDays" code) to May store identifiable data. | Creatio Services Application Hub, Cloud Creatio Success Portal |
UserType | Session cookie | Strictly necessary | Stores user type. Set after successful user authorization. Does not store identifiable data. | Creatio Services Application Hub, Cloud Creatio Success Portal |
SsoSessionId | Session cookie | Strictly necessary (for Single Sign-On functionality) | Stores the session ID of a user authenticated via the Single Sign-On mechanism. May store identifiable data | Creatio Services Application Hub, Cloud |
CookieConscent | 1 year | Strictly necessary | Stores cookie consent preferences. Does not store identifiable data. | Creatio corporate websites Application Hub, Cloud Studio Creatio, free edition |
_ga | 1 year | Analytical / performance | Tracks user activities inside Creatio Services. May store identifiable data. | Creatio Services (Cloud deployment) Application Hub, Cloud Studio Creatio, free edition Creatio Success Portal |
_ga_* | 1 year | Analytical / performance | Tracks user activities inside Creatio Services. May store identifiable data | Creatio Services (Cloud deployment) Application Hub, Cloud Studio Creatio, free edition Creatio Success Portal |
verto_session_uuid | 1 day | Strictly necessary (needed for Webitel integration) | Stores Verto telephony session ID for successful integration with Webitel. Does not store identifiable data. | Creatio Services |
visid_incap_* | 1 year | Strictly necessary | Encapsulates DDoS Protection and Web Application Firewall. A cookie in which sessions are bound to a specific visitor, with a visitor representing a specific computer. This helps identify clients that have already visited the site. Does not store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition Creatio Success Portal |
incap_ses_* | Session cookie | Strictly necessary | Encapsulates DDoS Protection and Web Application Firewall. A cookie in which HTTP requests are related to a specific session. Does not store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition Creatio Success Portal |
.AspNet.SharedCookie | Session cookie | Strictly necessary | Provides Single Sign-On capability to Creatio Services. Does not store identifiable data. | Creatio Services |
CreatioIdentityServerAuthenticated | Session cookie | Strictly necessary | Stores the Creatio Identity Service authentication state. The cookie is needed for provision of access to Creatio Services. Does not store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition |
ExistingAlmUser | Session cookie | Strictly necessary | Stores the user’s status in Application Hub, Cloud. The cookie is needed for provision of access to Application Hub, Cloud. Does not store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition |
idsrv.session | Session cookie | Strictly necessary | Stores Creatio Identity Service session information. The cookie is needed for authentication in the Creatio Identity Service to access different Creatio Services. Does not store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition |
sticky-session-id | Session cookie | Strictly necessary | Stores Creatio Istio Service sticky session information. The cookie is needed for the Creatio Istio Service to authenticate traffic between different microservices in Creatio Services. Does not store identifiable data. | Creatio Services Application Hub, Cloud Studio Creatio, free edition |
product | Session cookie | Strictly necessary | Stores the Creatio trial product type selected by the user. The cookie is needed for Application Hub, Cloud to work properly. Does not store identifiable data. | Application Hub, Cloud |
bpmHref | 180 days | Strictly necessary | Required for the website to work properly. Stores the complete web address (full URL) of the current page the user is visiting. May store identifiable data. | Creatio Services |
bpmRef | 180 days | Strictly necessary | Required for the website to work properly. Stores the web address of the page the user came from before visiting the current page. Does not store identifiable data. | Creatio Services |
TotpSetupToken | 20 mins | Strictly necessary | Required for two-factor authentication to work properly. Stores the token to bind authenticator app. May contain identifiable data. | Creatio Services |
FirstFactor | 20 mins | Strictly necessary | Required for two-factor authentication to work properly. Stores first factor authentication data. May contain identifiable data. | Creatio Services |
PasswordRecover | 20 mins | Strictly necessary | Required for the password recovery functionality to work. Stores temporary authentication state in a process of password recovery. May contain identifiable data. | Creatio Services |
Creatio Services can run without the use of functional and analytical / performance cookies, but doing so can reduce functionality. The impact on functionality depends on the purpose of the blocked cookie.
Creatio does not currently provide functionality for cookie consent management.
See also
Recommended information security settings