Cookie: definition, benefits, security & step-by-step instructions

What are cookies?

Cookies, also known as HTTP cookies, are small text files that can be stored in the browser folder of a user's device when they visit a website. Information about the website visitor is collected in these files.

Sometimes this involves sensitive user data such as

• IP addresses
• E-mail addresses
• Passwords
• recently viewed articles
• pages visited and centres of interest
• data stored in online forms
• various aspects of a website visitor's surfing behaviour

Cookies are transferred from a web server to the user's browser or generated locally in the browser by a script such as JavaScript.

Structure of cookies

Cookies basically consist of a name, value and other attributes such as the expiry date or path of the respective internet domain.

They can also contain comments or time restrictions such as a limited validity on a port.

According to RFC 6265, browsers and servers must support the following minimum cookie sizes:

• A cookie can consist of at least 4,096 bytes.
• In any case, it should be possible to store 50 cookies per domain.
• A total of at least 3,000 cookies should be able to be stored.

Lifespan of cookies

Some cookies, such as session cookies, are automatically deleted when users close their websites.

Other cookies, on the other hand, have an expiry time or an expiry date, which means that they can remain on users' computers for years.

You now know the definition of cookies. Let's take a look at what they are used for.

Why are cookies stored?

Anyone who spends a lot of time on the internet, either privately or professionally, will probably come across cookies every day.

Website users can assume that website operators use cookies on all websites. You will find them on pages

• where adverts are placed or
• where interactive functions are offered.

And this is despite the fact that they have neither given their consent nor received a corresponding notice.

• Some cookies increase the user-friendliness of a website: Login data or language settings used do not have to be typed in again and again.
  
  Examples:
  You are recognised when you visit the Amazon website.
  An online shop remembers the items you have placed in your shopping basket.
  You remain logged in to a website with your user login.
  

• With the help of other cookies such as marketing or tracking cookies, website operators can create visitor profiles with the respective interests of a user. These are used for personalised advertising and other online marketing measures.

Both visible and invisible cookies are often used to measure people's behaviour on a website.

The Google Analytics cookie is a good example of this.

Cookie website test

With the Cookiemetrix tool, you can test up to 10 URLs daily free of charge and determine which and how many cookies are in use on a website.

Let's now take a look at the different types of cookies.

What are the different types of cookies?

If you've ever googled the term cookies, you've probably come across terms such as first party cookies, third party cookies, affiliate cookies or session cookies.

In principle, cookies are divided into two large groups: technically necessary "good cookies" and technically unnecessary "bad cookies".

Technically necessary cookies

Session cookies

Technically necessary cookies or non-persistent session cookies are essential for the functioning of a website. At the end of an internet session, these first-party cookies are automatically deleted from computers, smartphones or tablets.

Example: A visitor to an online shop can add items to their shopping basket without logging in first.

According to the EU Cookie Directive, these necessary cookies may also be set without the user's consent.

Technically unnecessary cookies

The cookies listed here are cookies that require consent - users must therefore be able to activate and deactivate them in their website settings.

Performance cookies

Like necessary cookies, these cookies do not store any personal user information such as the IP address.

However, data relating to user behaviour and surfing behaviour on the website accessed is collected.

What are they used for?

To obtain answers to the following questions:

• • In which country or region or city was the access made?
  • Which mouse movements such as scrolling and clicking were performed?
  • Which search terms led the visitor to the site?
  • How long and how often were subpages accessed?
  • In which order were the pages visited?

Dein Ansprechpartner:
Florian Prohaska - Co-Founder

Möchtest du mehr Kunden über das Internet gewinnen? Wir können helfen!

• SEO: Sichtbarkeit und qualifizierten Traffic durch gezielte SEO-Strategien
• Google Ads: Effektive Werbekampagnen für maximalen ROI.
• Webdesign: Professionelles Design, das deine Besucher beeindruckt.
• Webshops: Individuelle Lösungen für erfolgreiche Online-Shops.
• Content-Erstellung: Wertvolle Inhalte, die Interessenten überzeugen.

Functional cookies

Functional cookies store data such as the language selection or the user name. The information obtained is anonymised and is used to improve personalised functions.

Statistics cookies

To help website owners understand how their users interact with their website, various statistics cookies are used to collect anonymised information. The best-known statistics tool is probably Google Analytics.

Marketing cookies

Marketing or tracking cookies, such as those from Google Ads, track website users and store information such as user interests.

The aim is to use the data to display relevant and customised advertisements and offers to the user.

How do cookies work?

The two known options for transferring, assigning and analysing cookies through a website are

• A server's website is requested by a user's browser via an HTTP request or response: The cookie data is transmitted in the header.
• Cookies can be generated locally using a scripting language such as JavaScript. In this case, the script is located in the web page transmitted by the server.

Data protection

The European Union's Cookie Directive came into force in 2009. Since then, website operators and online shops in Europe have been obliged to inform their visitors about the use of cookies.

But that's not all: they must obtain active consent from users using the opt-in method.

In the past, many German websites referred to the GermanTelemedia Act (TMG): Users had to actively object to the use of cookie tracking, for example.

This opt-out method is no longer legally permissible.

This is because a decision by the Federal Court of Justice in May 2020 is based on a ruling by the European Court of Justice (ECJ) from 2019: Both judgements state that pre-filled cookie notices do not comply with European law.

In addition to the cookie banner, you must also update your privacy policy: Because the cookies you use must be listed in your privacy policy.

If you want to know how to obtain the consent of your website visitors, read on.

Step-by-step instructions: How to install a cookie banner on your website

Due to the numerous content management and online shop systems, we are focussing on WordPress (including WooCommerce), Joomla and Shopify.

All of the plugins we list comply with the current GDPR and ePrivacy Directive.

WordPress and WooCommerce plugin

For WordPress sites and WooCommerce online shops, we recommend the paid opt-in plugin Borlabs Cookie 2.2.

Installation for Google Chrome, Microsoft Edge, Mozilla Firefox

• Save the zip file locally on your computer.
• Then upload it with the WordPress backend: Plugins > Add new > Upload plugin

Installation for Apple Safari

Experience has shown that the zip file is automatically unpacked by Safari after downloading.

Proceed as follows:

• First click on the Borlabs cookie folder and select "Compress Borlabs cookie".
• Then upload the file via your WordPress backend: Plugins > Add new > Upload plugin

Activation of the plugin

The plugin is now in your WordPress menu on the left.

• Go to the plugin settings and open the Licence menu item.
• Enter your licence key here and click on the save button.

Joomla extension

If you run a Joomla website, it is recommended to use one of these two tools.

CookieHint and Consent

CookieHint and Consent is a free extension that we can recommend to you with a clear conscience.

• Download the latest plugin version to your computer.
• Then go to the Joomla backend and click on Extensions > Manage.
• Now click on the "Select file" button and add the plugin by double-clicking on it.
• Now activate the plugin by going to Extensions > Plugins and setting the status to active.

Cookiebot

The Cookiebot Consent Management Platform (CMP for short) provides you with a tool with various tariffs. The tool can generate 2 scripts for you to implement on your website.

Shopify app

GDPR Legal Cookie is a paid app from Beeclever. It guides you through the installation process.

Cookie GDPR - Is your cookie banner working properly? GDPR cookie consent banner tips - YouTube

Cookie settings: Surfing the internet and social media safely

In popular browsers such as Chrome, Edge or Firefox, users can manage cookies individually: As a user, you can delete accepted cookies or activate and deactivate the collection of cookies in the browser settings.

I will now show you how to delete your cookies on your computer, tablet or smartphone.

Delete cookies

Google Chrome

• Open a window in your Chrome browser and open the settings.
• Click on the "Privacy and security" menu item on the right-hand side.
• First select "Delete browser data" and tick the box next to "Cookies and other website data".
• Confirm your selection by clicking on "Delete data".

Mozilla Firefox

• Open a Firefox browser window and select "Settings".
• Click on "Privacy & Security" on the left-hand side.
• Tick the box "Cookies and website data".
• Confirm your selection by clicking the Clear button.

Microsoft Edge

• First open a window of your Edge browser and click on Settings.
• Go to Privacy, Search and Services.
• Here you will see several functions such as Delete browser data.
• Delete the cookies by clicking on the "Select items to delete" button and making your selection.

Conclusion

In this article, we have dealt with the topic of cookies in detail. You have learnt what internet biscuits are all about and why they are used.

I have explained to you

• why you need to be made aware of the use of cookies,
• why you can accept or reject them and
• how you can place a cookie notice on your own website.

Plus: With my step-by-step instructions, you can now remove your cookies from your smartphone or computer yourself.

If you have any questions about cookies or would like professional support in creating an up-to-date cookie banner, just get in touch. Write an email to This email address is being protected from spambots. You need JavaScript enabled to view it. call us on +43 1 353 2 353 or send us your enquiry using our contact form.