As part of a customer project to implement Dynamics Marketing, the customer wants to know exactly:
- Which cookies exactly are set?
- Where exactly are cookies set everywhere? We use landing pages, forms, portal pages and event portal pages.
- How long are the cookies set?
- For what purpose are cookies set?
- What exactly is tracked using the cookies?
- Which are essential, which are not?
In the documentation, the information on this is very general - to general for EU requirements.
Are there any further documentations to share with the customer? Thanks in advance!
Thats correct, i needed all four cookies set to strictly necessary for my forms to load. I tried to disable the two non-session cookies but this wouldn't work.
Thanks for the detailed response Chris. Our issue is more around security than GDPR.
It sounds like it isn't possible to remove any of those cookies entirely without causing issues with the form loading? (specifically, we would look to remove the first party cookies).
Appreciate your help.
Thanks
Gemma
Hi Gemma,
Below are the cookies in question
Two of these are related to the immediate session and the other two are placed to track future activity (behaviour tracking). These can initiate web page scoring with future visits for example and match the data to the Lead/Contact in your system. The two behavior cookies last 2 years.
https://docs.microsoft.com/en-us/dynamics365/marketing/cookies
Im just configuring a cookie consent with OneTrust and unfortunately, all four of these cookies will need to be Strictly Necessary, if like me you are embedding a 365M Form onto our external website.
If not set as Strictly Necess, the form will not load. This however is in breach of GDPR as a web visitor has a right not to be tracked if selected with the cookie consent tool.
To get around this, we will implement the randomized script provided my Microsoft that will basically mean the visitor will remain anonymous. Form submission data however will work as normal.
I will call this script to load if "targeting cookies" are deselected by the visitor in the Cookie Consent Tool. This means, after a form submission we will not be able to match his future web activity unless they fill out another form. Below is an example im using in Tag Manager.
From what i understand from GDPR, we should be compliant if this script is triggered. Im no legal expert here, i have dome most of this research and testing myself.
Hope this helps you and anyone else who are also struggling with 365M and compliance.
We're also looking for this information
Hi Nya,
thanks again for your answer.
My problem is, that our customer exactly wants to know details about cookie tracking.
Our customer wants to adhere very closely to privacy requirements and must tell website visitors exactly which cookies are being set, why they are being set and for how long.
Is there any other documentation that shows the current status of cookie tracking in great detail?
Thanks in advance
Diana
Thanks for your answer. Unfortunately, the documentation do not answer above mentioned questions in detail. It only shows how dynamics marketing is using cookies in general and how to track only essential cookies. My question was: which(!) cookies dynamics marketing is tracking in detail.
Hi,
Please refer to the following documentation:
Cookies set and read (Dynamics 365 Marketing) | Microsoft Docs
André Arnaud de Cal...
292,031
Super User 2025 Season 1
Martin Dráb
230,868
Most Valuable Professional
nmaenpaa
101,156