Cookie Policy of Coca-Cola HBC Switzerland Ltd

November 2022

Cookie policy

A cookie is a small text file which sits on your device or browser and assists with information flow and functionality. We use cookies to support the main and mobile websites and our app. For instance, some cookies help with site security or provide information to help us improve the site, but each cookie performs a specific action. These cookies don’t usually capture your personal data and we wouldn’t be able to identify people from the information. They simply provide grouped information about site or app navigation which can give you a more personalised experience and tells us if people can find what they want.

  • Session cookies last for the length of your visit to a website and remember information from one page to another, so you don’t have to keep entering it.They delete themselves when you close your browser.

  • Persistent cookies remember things for longer, from one visit to the next. They can personalise the site and remember information each time you visit. We use them to see how people engage with our site to help us change and develop the site and improve your experience of it.These stay on your device when you close your browser and vary by cookie – please see the cookie table at the end for specific expiration times.

Whether a cookie is first or third party depends on where it comes from and can be sent by different parties.

If the cookie comes from our site it is a first party cookie set by us.

If it comes from another site or organisation, such as our suppliers or business partners, it is a third-party cookie, specifically chosen by us to provide a service, such as a more personalised visit. For example, you may be on a website that has ‘Like’ and ‘Share’ buttons for social network sites. If you click one, the social network site will put a ‘third party’ cookie on your device. That cookie may then collect data about you and send it to them too. You will need to set your privacy choices on their site, to tell them how they can use your data.

Different types of cookies do different things. We use the following cookies on our sites and apps.

Strictly Necessary Cookies - these are required for the operation, security and integrity of our website and app and are essential when you move around them and use their features. For example, they remember your details when you login and allow you to access your account. Without such cookies such services cannot be provided.

Functional Cookies remember you when you return to the site or app and choices you have made on previous visits, such as searches and which country you’re from. This allows us to improve your experience by remembering your preferences when you log into our loyalty club. These Cookies will remain on your device until you choose to clear them, however, if you choose to do this, you will need to log in again into your loyalty account each time you visit the site as an example, but they do eventually expire.

Analytical/Performance Cookies – these allow us to anonymously count the number of visitors to our website and see how they move around and use them. This helps us improve how they work, to find things easily and improve site navigation. The data is aggregated and anonymised, which means we cannot identify you as an individual. Some of the Analytical Cookies we use include (but not limited to) Google Analytics and Adobe Digital Analytics.

You may reject cookies, however, site and app functions will be affected. Cookies help our sites and app to work properly and personalise your experience. You’ll be able to browse the sites and app without cookies but some standard functionality, preferences and certain features will not work.

By accepting cookies, you allow us to improve your experience and remember information about you, which can personalise your experience.

To withdraw consent, you can reject or delete cookies. Please see the Managing Your Cookies section below on how you can adjust your browser settings.

By browsing or using our site or app you agree that we and the selected third parties in this notice can use (as described in this notice) data collected by the cookies you allow. If you do not agree, you can withdraw your consent by setting your browser to reject cookies, see below.

There are several ways to manage cookies. You can:

  1. Set your browser to prevent cookies from being accepted. More information should be in your browser’s “help” menu. How to adjust your browser will depend on which browser you’re using.

  2. Set some browsers to send you an alert when a website is trying to place a cookie on your browser.

  3. Block cookies by activating the setting on your browser to refuse all or some cookies. However, if you use your browser settings to block all cookies including strictly necessary cookies, site access and features can be limited or not available.

  4. Delete cookies stored in your browser by “clearing cookies”. This will only delete cookies already stored. It won’t prevent new ones being accepted unless you change the acceptance settings. Also, clearing your cookies on one browser of one device does not automatically clear them on another. You need to clear all browsers on all devices, independently.

  5. By declining cookies in the banner that appears when you visit our site.

We are not responsible for the content or cookies from external websites. If you follow a link from our site to a third-party site, they will have their own privacy and cookie notices.

Please bear in mind that if you restrict or disable cookies it can limit functionality and prevent sites from working properly at all.

Cookies and similar technology used by us are listed below:

Adobe - Experience Cloud Identity Service - everestsessionv2 / everestgv2

Type: Targeting Cookies

Expiry: 24 months

Purpose: This Adobe cookie allows site visitors to be linked (anonymously) across different Adobe Experience Cloud solutions.

https://experienceleague.adobe.com/docs/core-services/interface/administration/ec-cookies/cookies-privacy.html?lang=en

Adobe - dpm / demdex

Type: Targeting Cookies

Expiry: 180 days - 24 months

Purpose: These cookies helps Adobe Audience Manager perform basic functions such as visitor identification, ID synchronization, segmentation, modeling, reporting, etc.

Adobe - mbox

Type: Functional Cookies

Expiry: 24 months

Purpose: Used by Adobe Target to generate dynamic content in a marketing box on the page. Contains the following values:

PC ID - ID for visitor's browser. Removed when cookie deleted.

Session ID - A unique ID for a user session.

Check  - checks if cookies are supported. Set on each page load.

Adobe – atCheck

Type: Functional Cookies

Expiry: At the end of the session

Purpose: Used by Adobe Target to check if cookies are enabled/supported on the browser.

Adobe – atCheck

Type: Targeting Cookies

Expiry: At the end of the session

Purpose: Used by Adobe Target to check if cookies are enabled/supported on the browser.

Adobe - scc

Type: Performance Cookies

Expires: At the end of the session

Purpose: This Adobe Analytics Site Catalyst cookie determines whether cookies are enabled in the browser.

AMCVS30304ADC5B7680930A495EDE%40AdobeOrg

Type: Targeting Cookies

Expires: At the end of the session

Purpose: This is a pattern type cookie name associated with Adobe Marketing Cloud. It stores a unique visitor identifier and uses an organisation identifier.

AMCV30304ADC5B7680930A495EDE%40AdobeOrg

Type: Targeting Cookies 

Expires: At the end of the session

Purpose: This is a pattern type cookie name associated with Adobe Marketing Cloud. It stores a unique visitor identifier and uses an organisation identifier to allow a company to track users across their domains and services.

Akamai Bot Manager – abck

Type: Strictly necessary

Expiry: After 12 months

Purpose: Collects information about your activity on the site to help protect against malicious website attacks.

Akamai – bmmi

Type: Strictly Necessary Cookies 

Expires: After 2 hours

Purpose: This cookie is associated with Akamai. It is used to analyse traffic to determine if it is automated traffic generated by bots or a human user.

Akamai – bmsz

Type: Strictly Necessary Cookies

Expiry: After 4 hours

Purpose: Collects information about your activity on the site to help protect against malicious website attacks.

Akamai - cfbm

Type: Strictly Necessary Cookies

Expires: 1 day

Purpose: The cfbm cookie is a cookie necessary to support Cloudflare Bot Management, currently in private beta. As part of our bot management service, this cookie helps manage incoming traffic that matches criteria associated with bots.

This is a CloudFoundry cookie.

Akamai - akbmsc

Type: Strictly Necessary Cookies

Expires: After 2 hours

Purpose: This cookie is associated with Akamai and is used to differentiate between traffic from humans and bots.

Akamai - bmsv

Type: Strictly Necessary Cookies 

Expires: After 2 hours

Purpose: Collects information about your activity on the site to help protect against malicious website attacks.

Cloudflare - cfobinfo / cfuseob

Type: Strictly Necessary Cookies 

Expires: 1 minute

Purpose: This cookie is associated with sites using CloudFlare.  It is used to improve page load times and to override any security restrictions based on the visitors IP address.  It does not contain any user identification information.

HotJar - hjSessionUser2519238

Type: Performance Cookies 

Expires: 30 minutes

Purpose: Hotjar cookie that is set when a user first lands on a page with the Hotjar script. It is used to persist the Hotjar User ID, unique to that site on the browser. This ensures that behaviour in subsequent visits to the same site will be attributed to the same user ID.

HotJar - hjTLDTest

Type: Performance Cookies 

Expires: At the end of the session

Purpose: When the Hotjar script executes we try to determine the most generic cookie path we should use, instead of the page hostname. This is done so that cookies can be shared across subdomains (where applicable). To determine this, we try to store the hjTLDTest cookie for different URL substring alternatives until it fails. After this check, the cookie is removed.

HotJar - hjFirstSeen

Type: Performance Cookies 

Expires: At the end of the session

Purpose: Identifies a new user's first session on a website, indicating whether or not Hotjar's seeing this user for the first time.

HotJar - hjSession2519238

Type: Performance Cookies 

Expires: 30 minutes

Purpose: A cookie that holds the current session data. This ensures that subsequent requests within the session window will be attributed to the same Hotjar session.

HotJar - hjIncludedInPageviewSample

Type: Performance Cookies 

Expires: 30 minutes 

Purpose: This cookie is set to let Hotjar know whether that visitor is included in the data sampling defined by your site's pageview limit.

HotJar - hjIncludedInSessionSample

Type: Performance Cookies 

Expires: 30 minutes 

Purpose: This cookie is set to let Hotjar know whether that visitor is included in the data sampling defined by your site's daily session limit.

HotJar - hjAbsoluteSessionInProgress

Type: Performance Cookies 

Expires: 30 minutes 

Purpose: This cookie is used by HotJar to detect the first pageview session of a user. This is a True/False flag set by the cookie.

HotJar - hjSessionRejected

Type: Performance Cookies 

Expires: At the end of the session

Purpose: If present, this cookie will be set to '1' for the duration of a user's session, if Hotjar rejected the session from connecting to our WebSocket due to server overload. This cookie is only applied in extremely rare situations to prevent severe performance issues.

HotJar - hjid

Type: Performance Cookies

Expires: 365 days

Purpose: Hotjar cookie. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behaviour in subsequent visits to the same site will be attributed to the same user ID.

OneTrust - OptanonConsent

Type: Strictly Necessary Cookies

Expires: 365 days

Purpose: This cookie is set by the cookie compliance solution from OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the users’ browser, when consent is not given. The cookie has a normal lifespan of one year, so that returning visitors to the site will have their preferences remembered. It contains no information that can identify the site visitor.

OneTrust - OptanonAlertBoxClosed

Type: Strictly Necessary Cookies

Expires: 365 days

Purpose: This cookie is set by websites using certain versions of the cookie law compliance solution from OneTrust.  It is set after visitors have seen a cookie information notice and, in some cases, only when they actively close the notice down.  It enables the website not to show the message more than once to a user.  The cookie has a one-year lifespan and contains no personal information.

Cloudflare cfduid

Type: Strictly necessary - Third party cookie

Expires: After 1 month.

Purpose: Cloudflare is a web security service. It remembers which users are considered safe and helps to protect the site from hackers. It does not collect any personal information. More info is available at: https://www.cloudflare.com/security-policy/ and https://support.cloudflare.com/hc/en-us/articles/200170156-What-does-the-CloudFlare-cfduid-cookie-do-

Google Analytics - gat / gatgtagUA1044804416

Type: Analytical – Third party cookie

Expires: Within 1 minute

Purpose: This cookie is used to throttle request rate.

Google third party cookies collect anonymous information about how visitors use our site, app and Gift Cards site. This grouped data helps us improve the site and app. It may provide benchmarked data and broader market information as well.

The cookie also sends certain information to Google. This includes, for example, the web address of the page you're visiting and your IP address, which will be assigned a code, to make it anonymous but distinguished by the code. Google may also set cookies on your browser or read cookies that are already there. Google may use the information to maintain and protect the Analytics service.

More info is available at: https://policies.google.com/privacy/partners?hl=en-GB&gl=uk

You may opt-out of Google analytics directly by using a plug-in from Google: https://tools.google.com/dlpage/gaoptout. Using this plug in will opt you out of all of the Google cookies below:

Cookie: Google Analytics - gid
Type: Analytical – Third party cookie
Expires: 1 day
Purpose: This cookie is used to distinguish users.

Cookie: Google Analytics - ga
Type: Analytical – Third party cookie
Expires: 2 years
Purpose: This cookie is used to distinguish users.

costacookieconsent

Type: Strictly necessary - First party cookie

Expires: After 1 year

Purpose: Remembers that the customer has accepted the cookie consent banner. It’s stored in the user's browser for one year and means you don’t see the banner again. We don’t receive any information from it.

Adobe sfid

Type: Analytical - Third party cookie

Expiry: After 2 years

Purpose: This cookie is used by Adobe Analytics to identify a unique visitor.

Adobe ssq

Type: Analytical - Third party cookie

Expiry: At the end of the session

Purpose: This Adobe analytics contains information about the previous link on this site that was clicked on by the user, so the page shows relevant content.

Adobe AMCVS

Type: Analytical - Third party cookie

Expiry: At the end of the session

Purpose: This Adobe analytics cookie serves as a flag indicating that the session has been initialised.

Akamai Bot Manager – akbmsc / bmsv / bmm / akwfSession / bmmi

Type: Strictly necessary – Third party cookie

Expiry: After 2 hours

Purpose: Collects information about your activity on the site and Gift Cards site to help protect against malicious website attacks.

hjIncludedInSample

Type: Analytical – Third party cookie

Expires: At the end of the session

Purpose: This cookie is associated with Hot Jar web analytics. It uniquely identifies a visitor during a single browser session and indicates they are included in an audience sample

If you have any queries in relation to data privacy, please email us at DataProtectionOffice@cchellenic.com