Volkswagen AG uses various cookies on its websites. Cookies are small files containing configuration information that are stored on your end device. There are basically three categories of cookies.
So-called functional cookies are essential for the functionality of the website. The processing of the functional Cookies is necessary to enable your visit to the website (cf. Art. 6 Para. 1 lit. b GDPR).
The comfort of a website visit is increased by so-called comfort cookies, which save your language settings, for example. The legal basis for Comfort Cookies is a legitimate interest (Art. 6 para. 1 lit. f GDPR). The legitimate interest is providing comfort when visiting the website. You can object to data processing at any time with effect for the future. Further information can be found in our privacy policy.
So-called tracking cookies are used to create a pseudonymised user profile. Tracking Cookies are only set if the website visitor has given their consent (Art. 6 Para. 1 lit. a GDPR). Consent is given via the so-called cookie banner, which must be actively clicked on. Further information on the tracking tools used and how you can revoke your consent can be found in the privacy policy.
Within the categories described, different types of cookies are used. The most common types of cookies are explained below for your understanding:
While you are using a website, a session cookie containing a session identifier is temporarily stored in your computer's memory, e.g. so tt you do not need to log on again every time you change webpages. Session cookies are deleted when you log off or cease to be valid as soon as your session automatically expires.
A permanent or protocol cookie stores a file on your computer for the duration defined by the file's expiration date. These cookies enable websites to remember your information and settings the next time you visit them. This speeds up your access and makes it more convenient, for instance because you do not need to adjust your language setting for our portal every time. The cookie is automatically deleted once its expiration date is reached when you visit the website that generated the cookie.
Third party cookies stem from a provider who is not the operator of the website. They can be used to collect information for purposes of advertising, user-defined content, and web statistics.
Pieces of data that are stored on your computer by a website are referred to as flash cookies if Adobe Flash is used to operate them. Flash cookies have no time limit.
The following cookies are used on this website:
| Name of the cookie | Purpose of use | Storage period | Type of cookie | |
| AWSALB | AWS Application Load Balancer routes each request independently to a registered target based on the chosen load-balancing algorithm. For that a sticky session feature is used to enable the load balancer to bind a user's session to a specific target. This ensures that all requests from the user during the session are sent to the same target. | 1 week | Functional Cookie | |
| AWSALBCORS | Cookie is used to control the load balancer for even load distribution on our servers | 1 week | Functional Cookie | |
| AWSSELBAuthSessionCookie-0 | The session ID is an identification number that is generated by the server to assign user requests to a session for AWSELB. | 1 week | Functional Cookie | |
| workgroup-session-id | The session ID is an identification number that is generated by the server to assign user requests to a session. | Session end | Functional Cookie | |
| XSRF-Token | CSRF tokens can prevent CSRF attacks by making it impossible for an attacker to construct a fully valid HTTP request suitable for feeding to a victim user. Since the attacker cannot determine or predict the value of a user's CSRF token, they cannot construct a request with all the parameters that are necessary for the application to honor the request. | Session end | Functional Cookie | |
| CSRF-state-legacy | State legacy for CSRF tokens can prevent CSRF attacks by making it impossible for an attacker to construct a fully valid HTTP request suitable for feeding to a victim user. | Session end | Functional Cookie | |
| CSRF-state | State for CSRF tokens can prevent CSRF attacks by making it impossible for an attacker to construct a fully valid HTTP request suitable for feeding to a victim user. | Session end | Functional Cookie | |
| tableau locale | The cookie detemines the preferred language and country-setting of the visitor - This allows the website to show content most relevant to that region and language. | Session end | Functional Cookie |
Version dated: July 2021