Cookie Policy

This document informs Users about the technologies that help this Website to achieve the purposes described below. Such technologies allow the Owner to access and store information and interact with this Website and platforms.

For simplicity, all such technologies are defined as "Trackers" within this document – unless there is a reason to differentiate.

For example, while Cookies can be used on both web and mobile browsers, it would be inaccurate to talk about Cookies in the context of mobile apps as they are a browser-based Tracker. For this reason, within this document, the term Cookies is only used where it is specifically meant to indicate that particular type of Tracker

 

Some of the purposes for which Trackers are used may also require the User's consent. Whenever consent is given, it can be freely withdrawn at any time, following the instructions provided in this document.

This Website uses Trackers managed directly by the Owner (so-called “first-party” Trackers) and Trackers that enable services provided by a third-party (so-called “third-party” Trackers). Unless otherwise specified within this document, third-party providers may access the Trackers managed by them.

The validity and expiration periods of Cookies and other similar Trackers may vary depending on the lifetime set by the Owner or the relevant provider. Some of them expire upon termination of the User’s browsing session.

 

Mercell (hereinafter referred to as "Mercell," "We," or "we") Website uses cookies or Trackers managed directly by Mercell also called (“first-party” Cookies or Trackers) or Cookies or Trackers that enable services provided by a third-party (so-called “third-party”  Cookies and Trackers). However, depending on the User's browser or device setting, some Cookies or information may be locally stored or set on your browser or device. This varies depending on the browser and the manufacturer of the device, We encourage you to learn more about your browser or device's cookie setting by checking the respective control and configuration. Mercell has no access to such information, and in order for this information to not be stored on the User's browser, the user must change the browser settings and/or preferences. The present cookie policy does not apply to the app webpage or other correlated services and webpage provided by Mercell.

 

Type of cookies used by Webpage

The cookies that are categorized as "Necessary" are stored in your browser as they are essential for enabling the basic functionalities of the site.

We also use third-party cookies that help us analyze how you use this website, store your preferences, and provide the content and advertisements that are relevant to you. These cookies will only be stored in your browser with your prior consent.

You can choose to enable or disable some or all of these cookies but disabling some of them may affect your browsing experience.

 

Necessary Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data. The following are the cookies used in our webpage

 

Cookie Name

Description 

Duration 

__cfruid

CloudFlare, used to identify trusted web traffic.

Less than a day

OptanonConsent

This cookie is set by the cookie compliance solution from OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the users browser, when consent is not given. The cookie has a normal lifespan of one year, so that returning visitors to the site will have their preferences remembered. It contains no information that can identify the site visitor.

1 year

__cf_bm

necessary to support Cloudflare Bot Management, . As part of our bot management service, this cookie helps manage incoming traffic that matches criteria associated with bots.

This is a CloudFoundry cookie

Less than a day

 

 

 

 

 

Functional

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

 

Cookie Name

Description

Duration

hubspotutk

This cookie name is associated with websites built on the HubSpot platform.  HubSpot report that its purpose is user authentication. As a persistent rather than a session cookie it cannot be classified as Strictly Necessary.

5 months 





Performance

Performance cookies are used to understand and analyze the key performance indexes of the website, which helps in delivering a better user experience for the visitors.  This is also understood as Analytical cookies, which are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc. The use of these types of cookies relies on consent. This is the cookie we use for analytics on the webpage. 

 

Cookie name

Description

Duration 

__hssc

This cookie name is associated with websites built on the HubSpot platform.  It is reported by them as being used for website analytics.

0 days 

__hstc

HubSpot platform. It is reported by them as being used for website analytics.

5 months

_gclxxxx

Google conversion tracking cookie

2 months

__hssrc

associated with websites built on the HubSpot platform. It is reported by them as being used for website analytics.

O days

_gat

Google Universal Analytics. it is used to throttle the request rate - limiting the collection of data on high traffic sites. It expires after 10 minutes.

O days

_gid

Google Analytics 

0 days

_ga

Google This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports.  

1 year

_ga_xxxxxxxxxx

To generate statistical data on how the visitor uses the Service

1 year




Targeting Cookies 

Targeting cookies, also known as advertising cookies or tracking cookies, are a type of HTTP cookie used by websites and online advertisers to collect and store user data for the purpose of delivering personalized advertisements and content. These cookies are designed to track a user's online behavior, including their browsing habits, interests, and interactions with websites, in order to create a profile or user persona.

The primary function of targeting cookies is to serve users with advertisements that are more relevant to their interests and preferences. This is achieved by analyzing the data gathered from a user's previous online activities and tailoring advertising content accordingly. For example, if a user frequently visits sports-related websites, targeting cookies may enable advertisers to display sports-related ads when the user visits other websites.

 

First Party 

 

Cookie name

Description

Duration 

_fbp

Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers

2 months 

ln_or

Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers

0 days

 

Third-party cookies

Cookie Name

Description 

Duration 

AnalyticsSyncHistory

This domain is owned by LinkedIn, the business networking platform. It typically acts as a third party host where website owners have placed one of its content sharing buttons in their pages, although its content and services can be embedded in other ways. Although such buttons add functionality to the website they are on, cookies are set regardless of whether or not the visitor has an active Linkedin profile, or agreed to their terms and conditions.  For this reason it is classified as a primarily tracking/targeting domain.

1 month

__cf_bm

This is a CloudFoundry cookie

0 days

lidc

This domain is owned by LinkedIn, the business networking platform. It typically acts as a third party host where website owners have placed one of its content sharing buttons in their pages, although its content and services can be embedded in other ways. Although such buttons add functionality to the website they are on, cookies are set regardless of whether or not the visitor has an active Linkedin profile, or agreed to their terms and conditions.  For this reason it is classified as a primarily tracking/targeting domain.

0 days 

bcookie

This domain is owned by LinkedIn, the business networking platform. It typically acts as a third party host where website owners have placed one of its content sharing buttons in their pages, although its content and services can be embedded in other ways. Although such buttons add functionality to the website they are on, cookies are set regardless of whether or not the visitor has an active Linkedin profile, or agreed to their terms and conditions.  For this reason it is classified as a primarily tracking/targeting domain.

2 years

IDE

This domain is owned by Doubleclick (Google). The main business activity is: Doubleclick is Googles real time bidding advertising exchange

1 year

li_sugr

This domain is owned by Doubleclick (Google). The main business activity is: Doubleclick is Googles real time bidding advertising exchange

2 Month 

test_cookie

This domain is owned by Doubleclick (Google). The main business activity is: Doubleclick is Googles real time bidding advertising exchange

0 days 

UserMatchHistory

This domain is owned by LinkedIn, the business networking platform. It typically acts as a third party host where website owners have placed one of its content sharing buttons in their pages, although its content and services can be embedded in other ways. Although such buttons add functionality to the website they are on, cookies are set regardless of whether or not the visitor has an active Linkedin profile, or agreed to their terms and conditions.  For this reason it is classified as a primarily tracking/targeting domain.

1 Month 



Platform Cookies 

This section provides a description of the cookies used once to log into the Mercell platforms.


Mercell app

Analytics 

 

Cookie name

Description 

Duration

AMP_MKTG83CDB8107F

Related to behavior activities  and marketing campaign on a platform or website that uses AMP (Accelerated Mobile Pages) technology.


track user interactions, preferences, or other behavioral data for analytics purposes.


Data track included 


deviceId: A randomly generated string

userId: Upon user log-in, if the your instrumentation sends this value to Amplitude, it's stored in the cookie. Amplitude recommends you set this to uniquely identify users. Amplitude encodes this value as Base64 before storing it.

optOut: A flag to opt this device out of amplitude tracking. If this flag is set, no additional information will be stored for the user.

sessionId: A randomly generated string for each session

lastEventTime: Time of the last event, used to determine when to expire and create a new session Id

eventId: An incrementing sequence of identifiers used to distinguish events

identifyId: An incrementing sequence of identifiers used to distinguish identify calls

sequenceNumber: A sequence number used to order events and identifies and properly sequence them

1 year

AMP_83CDB8107F

Related to behavior activities and marketing campaign on a platform or website that uses AMP (Accelerated Mobile Pages) technology.


Track user interactions, preferences, or other behavioral data for analytics purposes.


Data collection includes 


deviceId: A randomly generated string

userId: Upon user log-in, if your instrumentation sends this value to Amplitude, it's stored in the cookie. Amplitude recommends you set this to uniquely identify users. Amplitude encodes this value as Base64 before storing it.

optOut: A flag to opt this device out of amplitude tracking. If this flag is set, no additional information will be stored for the user.

sessionId: A randomly generated string for each session

lastEventTime: Time of the last event, used to determine when to expire and create a new session Id

eventId: An incrementing sequence of identifiers used to distinguish events

identifyId: An incrementing sequence of identifiers used to distinguish identify calls

sequenceNumber: A sequence number used to order events and identifies and properly sequence them

1 year 









Necessary 

Cookie name

Description 

Duration 

CookieConsent

This cookie is set on each first visit. It sets a timestamp and the initial consent to the cookie selection  choice  

1 year

CookieConsentClosed 

This cookie is set a cookie where the value is the timestamp of when the user explicitly set their consent 

1 year

wfx_unq

This cookie is set a  to identify the user for using whatfix services. It does not store any PII.

100 days 



Necessary nx3

Cookie name

Description 

Duration 

__AntiXsrfToken

Used to prevent Cross-site request forgery (also known as XSRF or CSRF) attacks.

0 days

ASP.NET_SessionId

Used to validate login user into subsequent requests and responses.

0 days 

.ASPXAUTH

The ASPXAUTH cookie is used to determine if a user is authenticated or not.

0 days

NxShowTooltips

Used to show Tooltips, for subsequent user requests.

1 year

NxLanguage

Used to set user culture when user getting login into the system, it is automatically set culture for subsequent user requests.

1 year

NxShowMainMenu

Used to set user culture when user getting login into the system, it is automatically set culture for subsequent user requests.

1 year

     

 

OPIC 

Necessary cookies

Cookie name

Description 

Duration 

ASP.NET_SessionId

This cookie contains information about your session. The cookie does not contain any personal information.

0 days

Opic_Login

This cookie contains information that helps with automatic login to the site. This cookie only exists if you have enabled this feature. The cookie does not contain any personal information.

1 year 

Opic_Preferences

This cookie contains information about your language choices so that non-logged-in pages can be presented in your chosen language. The cookie does not contain any personal information.

1 year

__RequestVerificationToken

This cookie contains information to protect users against cross site scripting (XSS). The cookie does not contain any personal information.

0 days

showMoreResults

This cookie is used to display messages to the user. The cookie does not contain any personal information.

1 year

LOGINCOOKIE__

Used to load the login page in a secure way. The cookie does not contain any personal information.

1 0 days 

S2CLogin

This cookie is used to facilitate navigation between the different components of S2C.

0 days

menuState

This cookie is used to contains information on how to display the menu in the Opic systems. The cookie does not contain any personal information.

1 year

 

Performance 

Cookie name

Description 

Duration 

Compliance

This cookie contains information indicating that you have chosen to hide the cookie information box that appears when you visit the service. The cookie does not contain any personal information.

6 months

site24x7RUMSnapshotId

This cookie collects user session traces and is used to provide snapshots.

0 days 

site24x7rumID

This cookie is created to identify unique users and sessions.

0 days

NPS_*

These cookies comes from the Net Promotor Score site that we use for user feedback.

3 months

 

Negometrix Portal

Necessary Cookies 

Cookie name

Description 

Duration 

MSI

Session related cookie (regular session)

0 days

__msi

Session related cookie (anonymous session)

0 days

msia

Session related cookie (Internal use only. Used when navigating to servicedesk app from Portal)

0 days

nx4token

Session related cookie (Used for integration with NX4)

0 days

samlRequestid

Session related cookie (Used for integration with NX4)

0 days

 

Functionality cookies 



Cookie name

Description 

Duration 

language

Cookie related to storing preferred language (regular session)

1 day

__language

Cookie related to storing preferred language (anonymous session)

0 days

__timezone

Cookie related to storing the user's timezone

0 days

__locale

Cookie related to storing the user's timezone

0 days

lastdomain

Cookie related to storing the last domain a user logged into

1 days

 

ETHICS 

Necessary

Cookie name

Description 

Duration 

vertx-web.session

Cookie that manages the web session.

0 days



Functionality 

Cookie name

Description 

Duration 

AWSALBCORS

Cookie placed by AWS to provide load balancing functionality. 

1 week

AWSALB

Cookie placed by AWS to provide sticky session feature.

1 week




Negometrix 4

Necessary Cookies 

Cookie name

Description 

Duration 

idsrv

Identity token value

0 days

idsrv.session

Session related cookie (anonymous session)

0 days

     
     
     

 

Functionality 

Cookie name

Description 

Duration 

NxLanguage

Used to get user language setting

0 days

NxRememberMe

Used to set if user details remembered on particular system

0 days

wfx_fv

Used to set whatfix url

1 year

Cookies Mercell tendering platform

Analytics 

 

Cookie name

Description 

Duration

Domain

AMP_MKTG83CDB8107F

Related to behavior activities  and marketing campaign on a platform or website that uses AMP (Accelerated Mobile Pages) technology.


track user interactions, preferences, or other behavioral data for analytics purposes.


Data track included 


deviceId: A randomly generated string

userId: Upon user log-in, if the your instrumentation sends this value to Amplitude, it's stored in the cookie. Amplitude recommends you set this to uniquely identify users. Amplitude encodes this value as Base64 before storing it.

optOut: A flag to opt this device out of amplitude tracking. If this flag is set, no additional information will be stored for the user.

sessionId: A randomly generated string for each session

lastEventTime: Time of the last event, used to determine when to expire and create a new session Id

eventId: An incrementing sequence of identifiers used to distinguish events

identifyId: An incrementing sequence of identifiers used to distinguish identify calls

sequenceNumber: A sequence number used to order events and identifies and properly sequence them

1 year

mercell.com

AMP_83CDB8107F

Related to behavior activities  and marketing campaign on a platform or website that uses AMP (Accelerated Mobile Pages) technology.


track user interactions, preferences, or other behavioral data for analytics purposes.


Data collection includes 


deviceId: A randomly generated string

userId: Upon user log-in, if the your instrumentation sends this value to Amplitude, it's stored in the cookie. Amplitude recommends you set this to uniquely identify users. Amplitude encodes this value as Base64 before storing it.

optOut: A flag to opt this device out of amplitude tracking. If this flag is set, no additional information will be stored for the user.

sessionId: A randomly generated string for each session

lastEventTime: Time of the last event, used to determine when to expire and create a new session Id

eventId: An incrementing sequence of identifiers used to distinguish events

identifyId: An incrementing sequence of identifiers used to distinguish identify calls

sequenceNumber: A sequence number used to order events and identifies and properly sequence them

1 year 

mercell.com

Necessary 

Cookie name

Description 

Duration 

Domain

CookieConsent

This cookie is set on each first visit. It sets a timestamp and the initial consent to the cookie selection  choice  

1 year

app.mercell.com

CookieConsentClosed 

This cookie is set a cookie where the value is the timestamp of when the user explicitly sets their consent 

1 year



app.mercell.com

wfx_unq

This cookie is set to identify the user for using whatfix services. It does not store any PII.

100 days 

mercell.com

r_tz

Timezone definition of the user so that critical business activities can be controlled correctly on timezone. For instance, bid deadline control is based on timezone.

2 months

app.mercell.com

cd_ssid

Session ID

1 month

app.mercell.com

ASP.NET_SessionId_CSM

Session related cookie (Portal session)

Session

 

JSESSIONID

Servlet container specific session cookie

Session

 

sid

Initial User management session id cookie

Session

 

ssid

Actual session id cookie

Session

contract.c1.app.mercell.com

dashboard.c1.app.mercell.com

SERVERID

Sticky session server cookie

Session

contract.c1.app.mercell.com

ASP.NET_SessionId

Session related cookie

Session

tendering.c1.app.mercell.com

sourcing.c1.app.mercell.com

.ASPXAUTH_Ultima

Session-related cookie (logged in user)

Session

tendering.c1.app.mercell.com

authToken

Session-related token cookie

Session

order.c1.app.mercell.com

ASP.NET_SessionId_SP

Session related cookie

Session

 

TarjPalv

Session-related cookie (logged in user)

Session

 

org_cookie

Company name

Session

contract.c1.app.mercell.com

language_cookie

Language settings

Session

contract.c1.app.mercell.com

Kilpailutus.Mercell.com

Cookie-related to storing the user's locale

300 days

tendering.c1.app.mercell.com

CloudiaSupplierManagement

View state related cookie

7 hours

suppliermanagement.c1.app.mercell.com

mercellsuppliermanagement.com

Session related cookie

Session

suppliermanagement.c1.app.mercell.com

language-cookie

Language settings

Session

dashboard.c1.app.mercell.com

Sourcing.cloudia.net

Cookie-related to storing the user's locale

300 days

sourcing.c1.app.mercell.com

cloudiasuppliermanagement.com 

Cookie-related to storing the user's locale language

300 days

 

Kilpailutus.cloudia.fi

Cookie-related to storing the user's locale language

300 days

 

tarjouspalvelu.fi

Cookie-related to storing the user's locale Language 

300 days

 

Name of the cookie

Description 

Duration

 

wfx_unq

This cookie is set to identify the user for using whatfix services assigning a random id. It does not store any PII.

100 days 

 

wfx_uuid 

Identify the user of the platform to ensure the correct display of information while using the platform. This cookies identify what information has been displayed by the whatfix to ensure the correct provision of service. User identification is an anonymized information

30 days

 

rub_lang

Language settings

30 days

 

Others

Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.

How to manage preferences and provide or withdraw consent

There are various ways to manage Tracker-related preferences and to provide and withdraw consent, where relevant:

Users can manage preferences related to Trackers from directly within their own device settings, for example, by preventing the use or storage of Trackers.

 

Additionally, whenever the use of Trackers is based on consent, Users can provide or withdraw such consent by setting their preferences within the cookie notice or by updating such preferences accordingly via the relevant consent-preferences widget, if available.

 

It is also possible, via relevant browser or device features, to delete previously stored Trackers, including those used to remember the User’s initial consent.

 

Other Trackers in the browser’s local memory may be cleared by deleting the browsing history.

 

With regard to any third-party Trackers, Users can manage their preferences and withdraw their consent via the related opt-out link (where provided) or by using the means indicated in the third party's privacy policy, or by contacting the third party.

Locating Tracker Settings

Users can, find information about how to manage Cookies in the most commonly used browsers at the following addresses:

Users may also manage certain categories of Trackers used on mobile apps by opting out through relevant device settings such as the device advertising settings for mobile devices, or tracking settings in general (Users may open the device settings and look for the relevant setting).

 

Consequences of denying consent

Users are free to decide whether or not to grant consent. However, please note that Trackers help this Website to provide a better experience and advanced functionalities to Users (in line with the purposes outlined in this document). Therefore, in the absence of the User's consent, the Owner may be unable to provide related features.

Data Controller

Mercell Company

Mercell  Contact Email: post@mercell.com

Since the use of third-party Trackers through this Website cannot be fully controlled by the Owner, any specific references to third-party Trackers are to be considered indicative. In order to obtain complete information, Users are kindly requested to consult the privacy policies of the respective third-party services listed in this document  “under the section third party cookies”. 

 

Links to third-party cookies owner: 

 

Linkedin 

https://www.linkedin.com/legal/privacy-policy

 

Google

https://support.google.com/analytics/answer/4597324?hl=en

 

Facebook

https://www.facebook.com/privacy/policies/cookies/ 

 

Given the objective complexity surrounding tracking technologies, Users are encouraged to contact the Owner should they wish to receive any further information on the use of such technologies either of the website or the platforms uses by user at  post@mercell.com