All About Cookies is an independent, advertising-supported website. Some of the offers that appear on this site are from third-party advertisers from which All About Cookies receives compensation. This compensation may impact how and where products appear on this site (including, for example, the order in which they appear).
All About Cookies does not include all financial or credit offers that might be available to consumers nor do we include all companies or all available products. Information is accurate as of the publishing date and has not been provided or endorsed by the advertiser.
The All About Cookies editorial team strives to provide accurate, in-depth information and reviews to help you, our reader, make online privacy decisions with confidence. Here's what you can expect from us:
- All About Cookies makes money when you click the links on our site to some of the products and offers that we mention. These partnerships do not influence our opinions or recommendations. Read more about how we make money.
- Partners are not able to review or request changes to our content except for compliance reasons.
- We aim to make sure everything on our site is up-to-date and accurate as of the publishing date, but we cannot guarantee we haven't missed something. It's your responsibility to double-check all information before making any decision. If you spot something that looks wrong, please let us know.
Whether you should accept cookies or not depends on the website you’re visiting. Digital cookies, also called HTTP cookies or browser cookies, are small text files that store information in the form of data. Most sites use cookies to identify who you are and improve your online experience.
E-commerce sites, in particular, need a way to understand their customers, what they purchase, and why. So the cookie was created to remember things like who you are and what you purchased. However, some cookies track a lot more than that, and you may want to keep some activities private.
We’ll help you decide when it’s safe to accept cookies and when you should click “Reject All," or use tools like ad blockers to prevent third-party cookies and trackers.
Do cookies collect personal information?
What types of cookies are there?
Why do websites ask you to accept cookies?
What happens if you don’t accept cookies?
FAQs
Bottom line
Should I accept cookies?
Accepting cookies isn't usually a big problem. However, there are some times when you should decline cookies:
- Don’t accept cookies from unsecured websites. The web address for an unencrypted site starts with “http://” instead of “https://,” and you may see the lock icon in your browser’s URL bar change from locked to unlocked.
- Reject third-party cookies. Third-party cookies are a privacy concern because they track you across the internet. For example, if you helped your friend search for a new apartment in Oregon and suddenly see ads popping up for Oregon rentals, this is thanks to third-party cookies tracking and sharing your data.
- Check cookies with your antivirus. If your antivirus software’s browser protection flags cookies as potentially malicious, it’s better to be safe than sorry and hit the Reject button.
Don't be concerned if you find yourself in a position where you must decline cookies. Most websites will function just fine without collecting your personal information.
When are cookies helpful?
If you often visit the same websites for banking, financial trading, travel, or online shopping, accepting cookies helps personalize and optimize your experience. Session cookies and persistent cookies can also help your web experience in the following ways:
- Session cookies will keep you signed if you accidentally close your browser window.
- Persistent cookies remember your site preferences for a personalized experience.
- Cookies will also help provide localized content or recommendations based on your geolocation. Hotels, restaurants, car rental shops, and other services use cookies to show you information relevant to your location.
Do cookies collect personal information?
Cookies collect a variety of information about you, including:
- A unique user ID
- Your browsing history
- Site-specific settings and preferences
- Your hobbies and interests
- What links you’ve clicked
- How often you’ve visited a website
- How long you’ve spent browsing a website
- Your username and password
- Your geolocation and IP address
- Your phone number and physical address
- What products you’ve placed in your cart
- Items you’ve saved or bookmarked
Collection of all this data may seem like an infringement on your privacy, and it can be. But sometimes cookies collect this data to help you. This could include auto-filling your username and password when you return to a site, showing you offers available in your area, and remembering where to ship your next purchase.
Of course, marketers use cookies to know what sites you’re browsing, what types of content you prefer, and your general location too.
On top of that, cybercriminals can steal cookies and use them to gain access to your accounts. For example, a hacker could create a phishing email that lures you to an impostor site that looks just like sites you’ve already browsed. This method of phishing often starts with social engineering and cookie extraction.
What types of cookies are there?
Most cookies are perfectly safe. They’re intended to make your online experience more convenient, such as filling in your username when you revisit a site. But some cookies can be used by websites to track you without your knowledge.
There are two main types of cookies used by websites, session cookies and persistent cookies, as well as third-party and first-party cookies. Each of these captures relevant and, in some cases, personal information about you. But third-party cookies are the ones to watch out for.
Session cookies and persistent cookies
Session cookies are temporary, which means they disappear after you close your web browser. They’re used to remember any settings or selections you make on a website. For example, if you choose to add items to your cart, a session cookie remembers those items and saves them in the cart for you.
Persistent cookies, also called stored or permanent cookies, help websites remember your preferences and take care of authentication as well. But instead of disappearing when you close your browser, persistent cookies keep information, such as bookmarks, login details, and language preferences, stored in a text file on your computer for up to two years.
Persistent cookies are also used for tracking what pages or products you view on a site so that a profile can be created and the site can offer personalized suggestions.
First-party cookies and third-party cookies
First-party cookies tend to be less intrusive than third-party cookies. They’re created by each website you visit and should be safe as long as the website itself isn’t malicious.
Third-party cookies aren’t always looking out for your best interests. These specialized cookies are often used by web analytics and advertising companies — sometimes they’re even created by a site you’re not actively browsing. These cookies track user behaviors such as your history and data to advertise product recommendations, such as options for better hotels or tours in the area.
Most ad blockers prevent your computer (or other device) from saving cookies from advertisements, which can help protect your information. Some popular ad block services include:
- Total Adblock: Total Adblock did very well in our testing and blocked multiple types of ads. It offers a browser extension and it’s easy to use. You can see if it’s turned on or off and how many trackers it’s stopped.
- uBlock Origin: uBlock Origin is one of the most popular ad blockers around, and it lets you whitelist sites you trust. uBlock also has filter options like EasyPrivacy, which removes trackers and blocks data collection.
- Ghostery: Even Ghostery’s free plan lets you whitelist trusted sites, but if you don’t mind paying extra, then the premium version gets you upgraded customer service and more customizable settings.
Zombie cookies
Because they’re permanently installed on a computer, zombie cookies are challenging to remove. Zombie cookies could even get installed on your computer after you opt not to install them. Sometimes called flash cookies, zombie cookies may even reappear after you think you’ve deleted them.
Zombie cookies track your browsing history to gather info for advertisers and web analytics companies.
Why do websites ask you to accept cookies?
If it feels like you’re bombarded with cookie notices every time you go online, you’re not alone. Most websites need to follow strict data privacy laws, such as the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Protection Act (CCPA). By asking you to opt-in to using cookies, the sites are giving you more control over your data and how it’s collected and used.
This also means you can refuse to accept cookies. But you should be aware that some sites may not work correctly or at all if you don’t accept cookies.
What does it mean when I accept cookies?
Most of us quickly accept cookies just to get rid of those irritating pop-up notifications. These are sent by each site you visit so it can get your permission to use cookies and track your session and web experience.
By accepting the cookie, you’re granting the site permission to record your actions. These recordings could be used to better your website experience in the future and maybe even help the site improve by adding or removing features.
What happens if you don’t accept cookies?
Most web browsers allow you to turn off internet cookies, but if yours doesn't, you can reject them by clicking “Reject” when prompted.
You won't get a personalized experience if you reject cookies. This means that next time you visit that site, you’ll need to tell it where your nearest store is or what language you would prefer the website to be in. Some website tools, such as Google Analytics, also use cookies to provide feedback to the website owner on how users interact with the site.
For the most part, cookies are optional. So if you feel unsafe about accepting cookies, no worry, you can still shop, browse, and post. You may just need to log in or enter your information every time.
FAQs
Are cookies safe to accept?
Yes, most cookies are safe to accept. They’re intended to personalize your online experience and add to your convenience when using a website.
Third-party cookies, on the other hand, may not be safe to accept. And you should always reject cookies that your antivirus flags as suspicious or that come from an unsecured website.
Should I accept all cookies on a website?
Yes, you should accept all cookies on a trusted site, such as your banking site. Just remember that, if you lose your phone and someone clicks on your banking app, you may still have a session open. This could make it easy for someone to steal or misuse your personal data.
Can cookies track you?
Yes, cookies can track you, though the type of tracking depends on the cookie. Some cookies track how you use a site and any information you share with it. Third-party cookies are known to track you across the internet and record your browsing history in order to build a profile about you.
Can cookies steal passwords?
Yes, hackers can use cookies to steal passwords through an attack called cookie hijacking. Hackers may go after cookies because your password hash value and other personal data is stored inside. If the hacker gains access to the cookie, they might be able to use it to spoof your login credentials and access various sites under your name.
Bottom line
Accepting cookies can be valuable, but certain types of cookies can pose a cybersecurity risk. Remember, cookies contain your information, including what sites you browse, what products you click on, where you’re located, and even login information.
By not accepting cookies, you eliminate the chance a hacker could hijack your cookies and use the data inside to access sites while pretending to be you. There are times when accepting cookies is particularly risky, including:
- Accepting third-party cookies
- Accepting cookies your antivirus flagged as malicious
- Accepting cookies from unsecured sites
Ultimately, you have the choice. The security risk posed by cookies is real. But cookies also provide helpful improvements to websites. You can also use software to prevent some cookies from following you around the web, including on your phone with tools like the best ad blockers for Androids.
If you’re still undecided about whether you should accept cookies, you could simply disable cookies on your web browser and see how it affects your online experience.