Session Cookie

A temporary cookie that expires when the user closes their browser, used to maintain state during a single browsing session. Session cookies enable essential website functionality like keeping users logged in as they navigate pages, maintaining shopping cart contents, and remembering form inputs. These cookies don't have expiration dates set into the future—they're stored in temporary memory and deleted when the browser session ends. From a privacy perspective, session cookies are generally less concerning than persistent cookies because they're short-lived and don't track users across multiple visits. Under GDPR, session cookies necessary for website functionality (like login state) typically qualify as 'strictly necessary' and may not require consent. However, if session cookies are used for tracking or analytics beyond core functionality, they may require consent under ePrivacy Directive Article 5(3). Organizations should clearly categorize session cookies in cookie policies, distinguish between necessary and non-necessary session cookies, and implement them with appropriate security flags (Secure, HttpOnly, SameSite) to prevent unauthorized access.