What cookies and device storage objects are used by Viafoura?

For your reference, these are the cookies used by Viafoura's integration.

Web storage

For web integrations we store some data in cookies and some in local/session storage of browsers. Refer to tables below for details of each.

Cookie Reference

Cookie Name	Description	General Purpose	IAB Purpose(s) ¹	Domain	Lifetime
`_vfa`	Stores user and session identifiers for analytics	Product analytics, customization	1,5,6,8,9,10,11	Page DomainIAB Purpose(s) ²	1 year
`_vfb`	Stores recirculation data for analytics	Product analytics, customization	1,8,9,10	Page Domain²	30 minutes
`_vfz`	Stores referral data for analytics	Product analytics, customization	1,8,9,10	Page Domain²	6 minutes
`_vf_rd_test*`	Testing best domain name (SLD+TLD) to set cookies at	Functional	1, Special Purpose 2	Page Domain²	1 sec
`VfRefresh`	Refresh identifier for authentication	Functional	1, 10, Special Purpose 1 & 2	viafoura.co	1 year
`VfAccess*`	Access identifier for authentication	Functional	1, 10, Special Purpose 1 & 2	viafoura.co	5 minutes

Local/Session Storage Key Reference

storage key	Description	General Purpose	IAB Purpose(s) ¹	Storage Type
`_vf_notification_queue_last_seen_*`	Prevents unnecessary refresh of notifications	Functional, customization	1,10,11, Special Purpose 2	Local Storage³
`vf-push-notifications-opt-in*`	Indicates if user opted in for push notifications	Functional, customization	1,10,11, Special Purpose 2	Local Storage³
`_vf_pending_content_action`	Prevents extra API calls for new content actions	Functional, customization	1,10,11, Special Purpose 2	Local Storage³
`_vf-content-reported`	Prevents extra API calls for reporting events	Functional, customization	1,10,11, Special Purpose 2	Local Storage³
`vf_content_editor_id_*`	Temporary storage for operational data for content events	Functional, customization	1,10,11, Special Purpose 2	Local Storage³
`_vf_bootstrap`	Minimum Entry Point base settings	Functional	1, Special Purpose 2	Local Storage³
`LoginRadiusUser`	Login radius operational data	Functional, customization	1,10, Special Purposes 1 & 2	Local Storage³
`adsDisabled-`	Flag indicating if ad integration is disabled	Functional	1, Special Purpose 2	Local Storage³
`vf.analytics.*`	Operational analytics data storage	Product analytics, Customization	1,5,6,8,9,10,11	Local³ & Session⁴ Storage
`vf.p3.*`	3rd-party targeting integration data store	Customization	1,9,11	Local Storage³
`vf.cmp`	CMP integration flag	Functional	1, Special Purpose 2	Local Storage³
`vf_root_domain`	Best root domain for 1st party cookies	Functional	1, Special Purpose 2	Local Storage³
`_vf_skeleton_view_analytics`	Minimum Entry Point analytics data	Product analytics, Customization	1,5,6,8,9,10,11	Local Storage³
`signupReferralData`	Stores referral data for analytics	Product analytics, Customization	1,9	Local Storage³
`vf.consent.*`	Stores user consent information information applicable to device	Functional	1, Special Purposes 1 & 2	Local Storage³

SDK

For SDK integrations we store some data in the in-app specific storage. Refer to tables below for details of keys we store data under. App data is stored as defined in device storage policies, which usually means that data is stored on a device until the app is uninstalled.

storage key	Description	General Purpose	IAB Purpose(s) ¹
`authTokenKey`	Access identifier for authentication	Functional, customization	1,10, Special Purposes 1 & 2
`refreshTokenKey`	Refresh identifier for authentication	Functional, customization	1,10, Special Purposes 1 & 2
`sessionKey`	Session identifier for authentication	Functional, customization	1,10, Special Purposes 1 & 2
`userUUIDKey`	User identifier	Functional, customization	1,10, Special Purposes 1 & 2
`X-unfinishedContent`	Prevents extra API calls for new content actions	Functional, customization	1,10,11, Special Purpose 2
`X-unfinishedContentLiveChat`	Prevents extra API calls for new content actions	Functional, customization	1,10,11, Special Purpose 2
`X-Y-flaggedComment`	Prevents extra API calls for reporting events	Functional, customization	1,10,11, Special Purpose 2
`visitorIdKey`	Visitor identifier	Product analytics, Customization	1,5,6,8,9,10,11, Special Purposes 1 & 2
`X-lastVisit`	Previous visit timestamp	Product analytics, Customization	1,8,9,10
`firstVisit`	First visit timestamp	Product analytics, Customization	1,8,9,10
`X-numberVisits`	Number of visits so far	Product analytics, Customization	1,8,9,10

GDPR Transparency and Consent Framework

For purpose of operational information disclosures required of Vendors by the Transparency and Consent Framework we also have the above information available via deviceStorage.json.

Footnotes

1: IAB Purpose(s) are as per Appendix A of IAB TCF Policies.

2: Page Domain here means, the domain of the page on which the Viafoura Javascript is running.

3: Local Storage data does not expire as per how it is implemented in browsers.

4: Session Storage is cleared when person closes all tabs with a site or shuts down the browser.