royal-warrant-queen royal-warrant-prince-of-wale

Cookie Policy

What are cookies?

A cookie is a short string of text that a website stores in your browser’s cookie file on your computer's disk.

Examples of things that cookies can help to do are:

  • remember what is in your shopping backet when you shop online;
  • support you in logging into a website;
  • analysing web traffic; and
  • tracking your browsing behaviour.

Some cookies called ‘session cookies’ are temporary and disappear once you close your web browser; whilst others called ‘persistent cookies’ may stay in your browser until manually deleted.

How do we use cookies?

Like most modern web sites, our sites use cookies to personalise your experience of shopping with Fortnum & Mason, and to provide you with tailored content.


Some cookies are essential for our website to work properly; whilst others such as those that track your browsing behaviour are non-essential, and you may opt out of these.

Managing cookies

You can manage cookies in your web browser by blocking the installation of cookies, or by removing cookies that have already been installed. Please note that if you block cookies, this can impact the performance of our website, and is likely affect your user experience.

Which cookies do we use?

When you visit our Website we send you a number of cookies, as set out below:

Essential Cookies are necessary for our website to work for you. They must be in place for the website to work, and we do not provide an option to opt out of them.


Performance Cookies are useful to improve your user experience when accessing our website.


Analytics Cookies help us improve our website by collecting and reporting information on how you use it. The cookies collect information in a way that does not directly identify anyone.


Advertising Cookies are used by third parties to offer you products and services in line with your browsing and shopping experiences on our website.


Details of our cookies are set out below.

Supplier Purpose Cookie Expiration
CloudFlare These cookies are part of the services provided by Cloudflare - Including load-balancing, identifying and managing traffic (including bots) deliverance of website content and serving DNS connection for website operators. __cf_bm, cf_chl_#, cf_chl_prog, cf_chl_rc_ni, cf_chl_seq_# 1 day
Zendesk We use Zendesk as our Live Chat service, these cookies allow us to communicate with you via Live Chat. Zendesk also saves a Zendesk Live Chat ID that recognises a device between visits during a chat session. You can see their privacy policy here. _zlcstore, ZD-settings, ZD-store, ZD-buid, ZD-suid Persistent
__zlcmid 1 year These cookies are used on our site to allow us to track and save items added to a customer’s basket (so that they are visible when the customer returns to the site), your preferred currency selected and your recently viewed products. en_gb-shop/cart/current-cart, en_gb-shop/cart/current-cart-hash, en_gb-shop/cart/current-cart-token, en_gb-shop / currencySwitcher / selected, en_gb-shop/recently- viewed/recently-viewed, redirect, shop Persistent These cookies relate to the cookie acceptance. en_gb-shop/claims/cookiesAccepted, en_gb-shop/cms/cms-blocks, en_gb-shop/cms/cms-page Persistent
Cookiebot Stores the user's cookie consent state for the current domain CookieConsent 1 year
Google Analytics This cookie name is associated with Google Universal Analytics - which is a significant update to Google's more commonly used analytics service. By default it is set to expire after 2 years, although this is customisable by website owners. _gid, _gat 1 day
_ga 2 years
Google Analytics Used to send data to Google Analytics about the visitor's device and behavior. Tracks the visitor across devices and marketing channels. collect Session
Google Analytics Tracks if the user has shown interest in specific products or events across multiple websites and detects how the user navigates between sites. This is used for measurement of advertisement efforts and facilitates payment of referral fees between websites. pagead/1p-user-list/# Pixel
Google Analytics Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement – This also allows the website to limit the number of times that they are shown the same advertisement. pagead/1p-user-list/# Session This cookie name is associated with Google Universal Analytics - and is used to check if the user's browser supports cookies. test_cookie 1 day from multiple websites, in order to present more relevant advertisement – This also allows the website to limit the number of times that they are shown the same advertisement. pagead/landing Session
New Relic Pending jserrors/1/# Session
New Relic Used by New Relic to monitor the performance of the page and page elements during user interaction. events/1/# Session
Facebook The Facebook pixel collects cookie data for targeting and measurement for Facebook and Instagram marketing activity. _fbp 3 months
tr, c_user, datr, dpr, oo, sb, spin, xs Session
Google Marketing Platform Google Marketing Platform cookies are used for conversion tracking, audience profiling and retargeting. More information can be found here. XSRF-TOKEN, S, scss::tab_id Session
DSID 13 Days
1P_JAR End Of Month
_gcl_au 3 Months
NID 7 Months
SID, __Secure-3PSID, HSID, SSID, APISID, SAPISID, __Secure-3PAPISID 2 year
permutive-id 3 year
CONSENT 38 Years
Affiliate Window AWIN 1st or 2nd party cookies are set when you click on an affiliate link. AWIN store IDs for the referring website, advertisement on which was clicked, group of advertisement as to which the advertisement belongs, time it was clicked on, ID for the type of advertisement, ID for the product and any reference the referring site adds to the click. 1st: _aw_m_5682
2nd: Aw5682
30 days
Impact Radius From a partner's site, when a user clicks on an ad/banner, the user is then directed to the Impact tracking server which drops this cookie behind the scene. This cookie stores a unique UUID key so that next time when the user hits the tracking servers, it gives the identity info of the same user. BRSWR 2 years
Impact Radius Impact radius tracking is set on advertisers page and drops cookies when the user clicks on banner/ad. These are first party cookie's which are set on advertisers domain. This part of UTT javascript functions and works based on unique identifier UUID keys.
Value : new Date().getTime().toString() + '-' + Math.random().toString(36).substring(2, 15)
IR_PI 2 years
Impact Radius The Last click cookie which is used to eliminate the duplicate clicks during checkout/conversion. IRLD 180 days
Impact Radius Impact Radius tracking application primarily lives on AWS cloud. The tracking servers in our private datacenters and interact with clients and relay data to the tracking servers in our private data centers for further processing. This AWSELB is the load balancer cookie for AWS. AWSELB Session
Impact Radius This is base domain cookie, set on host site. This is under the part of UTT tracking of web events. IR_GBD Session
Impact Radius This is a current session cookie, The activity is updated everytime the page loads. This is as part of UTT API implementation for tracking web events.
Value : last_activity_timestamp|source id|session_id
IR_(Campaign_ID) Session
Impact Radius This is a session cookie generated by the load balancer, we have tracking servers in Amazon EC2. The cookie may vary depending on the type of data center (Impact's Data centers) F5 EPERSIST Session
Impact Radius This cookie is used to control action tracker test flow. Testing the integration works IRBCN Session OR test complete
Apptus A session cookie (apptus.sessionKey) is used to track a visitor’s browsing experience throughout their journey in terms of search, navigation (product lists) and recommendation products. apptus.sessionKey Session
Apptus A cookie is used to temporarily store click and adding-to-cart notifications. As a web browser unloads the current page content when a visitor clicks a link, eSales must ensure that all notifications have been sent. apptus.queue Session
Apptus Used to distinguish visitors, track a visitor across sessions, and also to potentially provide a personalised browsing experience in terms of search, navigation (product lists) and recommendation products. apptus.customerKey 1 Year
Google Ads- Global Site tag The global site tag adds visitors to your website visitors lists and sets new cookies on your domain, which will store information about the ad click that brought a user to your site.  GCLID 2 Year
Google Ads event snippet The event snippet tracks different actions and parameters. Install this snippet on the pages where you want to track remarketing events.   2 years
Microsoft UET tag By creating one UET tag and placing it across your website, Microsoft Advertising will collect data that allows you to track conversion goals and target audiences with remarketing lists. 1 year
Pinterest This is a first party cookie used by Pinterest that groups actions for users who cannot be identigied by Pinterest. _pin_unauth, _pinterest_ct_ua 1 year
Pinterest Is the Pinterest login cookie and is used to store a person’s login state within a web browser. It’s updated whenever a person logs in to or out of Pinterest. This cookie contains the person’s Pinterest ID as well as their authentication tokens if the person is logged in to Pinterest. _pinterest_sess 1 year
Pinterest These cookies are used by Pinterest to track the usage of services. _routing_id, csrftoken, v3 Session
_auth 1 year These are needed, to properly record conversions, target and bid effectively for PPC activity on Microsoft ads. MUID 1 year Allows us to engage with a user that has previously visited our website. _uetsid, _uetsid_exp, _uetvid, _uetvid_exp Persistent These are needed for our Teads native activity. They allow us to track conversions, and users behaviour on the site, which allows us to target users with higher engagement. track Session
ContentSquare This cookie contains ContentSquare's user identifier. _cs_id 13 months
ContentSquare This cookie contains the number of pageviews within the running session for ContentSquare Solution _cs_s 30 minutes
ContentSquare This cookie is used by ContentSquare to record custom variables. _cs_vars Session
ContentSquare This cookie is used by ContentSquare to exclude some visitors from the collection. _cs_ex 30 days
ContentSquare This cookie is used by ContentSquare to save the user consent to be tracked. _cs_c 13 months
ContentSquare This cookie is used by ContentSquare to exclude some visitors from the collection. _cs_optout 13 months
ContentSquare This cookie is used for the Google Analytics and Adobe Analytics integrations. _cs_mk 30 minutes
Yahoo Cookies used by Yahoo for authentication, security and fraud, and abuse prevention. A3 13 months
Cookies used by Yahoo for content and advertising personalisation. APID, IDSYNC 13 months
APIDTS 24 hours
Youtube We embed videos from our official YouTube channel onto the website. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback. No sensitive data is collected unless you log in to your google account, in that case your choices are linked with your account, for example if you click "like" on a video. LOGIN_INFO, __Secure-3PAPISID, __Secure-3PSID, __Secure-3PSIDCC 2 years
YSC Session
PREF 639 days
CONSENT 17 years+
Vimeo We embed videos from our official Vimeo channel. When you press play Vimeo will drop third party cookies to enable the video to play and to collect analytics data such as how long a viewer has watched the video. _ga, _ga_UA-76641-8, _gid, has_logged_in, has-uploaded, is_logged_in, language, player, vimeo vuid Persistent
Advertising We use this cookie for advertising data.   1 day
Tracead We use this cookie for advertising data. PHPSESSID Session

How to Contact us

If you have any questions about this privacy policy, would like further details on any of the information contained in this privacy notice, or to exercise any of your legal rights, please contact us by email at

Whilst we would appreciate the opportunity to deal with your concerns before you do so, if you are unhappy with how we have used your personal information you have the right to lodge a complaint at any time with a supervisory authority. The supervisory authority in the UK is the Information Commissioner’s Office (ICO).

Fortnum & Mason plc.

Registered in England : 00084909

Registered office: 181 Piccadilly, London W1A 1ER.

Registered as a Data Controller with the Information Commissioner’s Office, registration number: Z5685139