Cookie Statement
Last updated: 15 May 2026
en
This Cookie Statement describes how SAP (hereinafter also "We", "Our") uses cookies and similar technologies to collect and store information when you visit SAP Signavio Process Transformation Suite Products. For marketing and information web pages under the .signavio.com domain refer to https://www.signavio.com/cookies/
SAP Signavio's Privacy Statement applies in addition to this Cookie Statement. SAP Signavio's Privacy Statement informs you about the way SAP Signavio uses, stores and protects personal data collected. It also informs you of your data protection rights and how to exercise them. We recommend that you read SAP's Privacy Statement and SAP Signavio's Privacy Statement.
What are Cookies and similar technologies?
Cookies are small files placed on your device (computer, tablet or smartphone). When you access a website, a cookie is placed on your device and it will send information to the party that placed the cookie. There are other technologies performing a similar function to cookies. These include inter alia web beacons, clear gifs, and social plug-ins. These are often used in conjunction with cookies to help a website owner understand its users better.
What are first party Cookies?
SAP's websites contain first party Cookies. First party cookies are cookies that are specific to the website that created them. These cookies enable SAP to operate an efficient service and to track patterns of user behavior to SAP's website.
What are third party Cookies?
The difference between a first party cookie and a third party cookie relates to who places the cookie on your device. SAP sometimes allows third parties to place Cookies on your device. Third party cookies are placed on your device by a third party (i.e., not by SAP). While SAP allows third parties to access SAP's website to place a third-party cookie on your device, SAP does not retain control over the information supplied by the cookies, nor does SAP retain access to this information. This information is controlled wholly by that third party according to the respective privacy policy of the third party. For more information about these Cookies, please click the "Cookie Preferences" link in the footer of the webpage.
What cookies are used?
SAP wants you to be in a position to make an informed decision for or against the use of cookies which are not strictly necessary for technical features on SAP Signavio Process Transformation Suite Products. If you elect to reject cookies used for advertising, you will be shown advertising that is less targeted to your interests. This will still allow you to use all of the functionality of SAP Signavio Process Transformation Suite Products.
When tracking and evaluating the usage behavior of users of the Web Presence by means of cookies or similar technologies includes the processing of your personal data, SAP conducts the processing based on the following legal permissions:
- GDPR Article 6.I (a) — if it is necessary that We ask you for your consent to process your personal data,
- GDPR Article 6.I (b) — if necessary to fulfill (pre-)contractual obligations with you,
- GDPR Article 6.I (f) — if necessary to fulfill (pre-)contractual obligations with the company or other legal body you represent as a customer contact (legitimate interest to efficiently perform or manage SAP's business operation),
- or equivalent legal permissions under other relevant national laws, when applicable.
SAP differentiates between Required Cookies that are absolutely necessary to enable technical core functionalities, Functional Cookies that allow SAP to analyze the site usage, and Advertising Cookies that are used to serve ads relevant to your interests.
Required Cookies
| Name | Purpose | Lifespan |
|---|---|---|
| slo_regular_domains_eu1 | Used to store authentication information. | Session |
| !Proxy!Gateway__VCAP_ID__ | Used to ensure that subsequent user requests are routed to that same BTP gateway server. | Session |
| !Proxy!Gateway__VCAP_ID_META__ | Used to store the information related to the __VCAP_ID__ cookie for the BTP gateway. | Session |
| !Proxy!GatewayJSESSIONID | Used to facilitate account authentication for BTP gateway server. | Session |
| __VCAP_ID__ | Used to provide affinity with SAP BTP Cloud Foundry. | Session |
| __VCAP_ID_META__ | Used to store the information related to the __VCAP_ID__ cookie. | Session |
| embed-context | Used to store the tenantID as context for embedding SAP Signavio into other applications. | 1 day |
| identifier | Used to store URL encoded user's first and last name to autofill the user name fields in SAP Signavio. | Session |
| JSESSIONID | Used to store a unique identifier to manage user session for account authentication. | Session |
| LBROUTEID | Used to manage the technical routing. | Session |
| login | Used to store URL encoded email address of the user post authentication to autofill the email fields in SAP Signavio. | Session |
| token | Used to store the authentication token associated with the current login for SAP Signavio. | Session |
| tenant | Used to store the tenant ID associated to the user account. | 1 month |
| previous_page_loads | Used to store a short list of previously visited pages for the purposes of detecting "U-turns" where a visitor very quickly returns to a previously visited page. | Session |
| s_cc | Used to store information about cookies that have been detected on the site. | Session |
| s_sq | Used by Activity Map to store information about the previous link clicked by the visitor. | Session |
| spg-csrf-token | Used to store a unique token generated server-side to protect against CSRF attacks. | 1 day |
| statereference | Used as part of the authentication workflow. | Session |
| workflow-authentication | Used for cookie based authentication. | 1 day |
| dtCookie | Set by Dynatrace. Used to track application performance and user errors. | Session |
| dtSa | Set by Dynatrace. Used as an intermediate storage for page-spanning actions and user action names across page loads. | Session |
| dtPC | Set by Dynatrace. Used to identify proper endpoints for beacon transmission. | Session |
| rxvt | Set by Dynatrace. Used to store two timestamps for performance optimization and to track session timeouts. | Session |
| rxVisitor | Set by Dynatrace. Used to store anonymous, unique visitor ID to correlate user sessions across services. | Session |
| cmapi_gtm_bl | Set by TrustArc. Used to manage the display of the cookie consent pop-up and to retain selected settings. | 13 months |
| cmapi_cookie_privacy | Set by TrustArc. Used to manage the display of the cookie consent pop-up and to retain selected settings. | 13 months |
| notice_behavior | Set by TrustArc. Used to store the cookie preferences of visitors. | Session |
| notice_gdpr_prefs | Set by TrustArc. Used to store the chosen cookie categories. | 13 months |
| notice_preferences | Set by TrustArc. Used to store the cookie preferences of visitors. | 13 months |
| TAsessionID | Set by TrustArc. Used to store the user's cookie consent state for the current domain. | 1 day |
| SAP_webassistant | Used by SAP Web Assistant to store settings in order to display content correctly. | Session |
| SAP_webassistant_page | Used by SAP Web Assistant to store the current page the user is on to display correct content. | Session |
| hubspotutk | Set by HubSpot. Used to store the visitor ID when deduplicating contacts. | 120 days |
| __hstc | Set by HubSpot. Used to store the domain, utk, and session timestamps. | Session |
| __hs_do_not_track | Set by HubSpot. Used to store 'do not track' signals. | 6 months |
| __hssc | Set by HubSpot. Used to determine if HubSpot should increment the session number and timestamps in the __hstc cookie. | 1 day |
| __hssrc | Set by HubSpot. Used to determine if the visitor has restarted their browser. | Session |
| _GRECAPTCHA | Set by Google. Used to distinguish between humans and bots. | 180 days |
| _ga_<id> | Set by Google. Used to store a unique identifier to determine that two distinct hits belong to the same user across browsing sessions. | 13 months |
| AMP_<ID> | Set by Sentry. Used to provide error monitoring and customer error support services. | 320 days |
| AMP_MKTG_<ID> | Set by Sentry. Used to provide error monitoring and customer error support services. | 320 days |
| sentry-sc | Set by Sentry. Used for authentication. | 320 days |
| APPROUTER_AFFINITY | Set by SAP Enable Now. Ensures that if a user starts an interaction on one server, subsequent requests go to that same server. | 1 day |
| MANAGER_AFFINITY | Set by SAP Enable Now. Ensures that if a user starts an interaction on one server, subsequent requests go to that same server. | 1 day |
Required Local Storage Entries
| Name | Purpose | Lifespan |
|---|---|---|
| APOLLO_PERSISTED_LIBRARY_CACHE-<HASH> | Used to store the results of GraphQL queries on folder structure for performance optimisation. | Unlimited |
| canvas-dots-activated | Used to store the information if the canvas in SAP Signavio Process Modeler has a grid of dots. | Unlimited |
| dashboards-disabled | Used to store the selected start page user experience. | Unlimited |
| ETL_CASE_MODELING_BANNER_DISMISSED_v1<HASH> | Used to store the decision to show or dismiss the Object-Based Pipelines banner. | Unlimited |
| hub-preview-mode-state | Used to store the current viewMode of the user. | Unlimited |
| Id: <id> | Used as frontend cache to improve performance. | Unlimited |
| insightsCentralTransformationAdvisorNotice | Used to store the decision to show or dismiss the Transformation Advisor feature banner. | Unlimited |
| loglevel | Used to store the error logging granularity. | Unlimited |
| optout_domains | Set by TrustArc. Used to ensure consistent consent tracking across different parts of the site. | Unlimited |
| process-insights-logged-in | Used to store the login state of the user for synchronizing the frontend behaviour. | Unlimited |
| storage-app-base-sidebar-collapsed | Used to store the sidebar state preference. | Unlimited |
| storage-app-settings | Used to store user selections in the frontend like currency and expanded/collapsed states of UI elements. | Unlimited |
| storage-default-pf-variants-list | Used to optimize performance for process flow execution variants. | Unlimited |
| storage-env-info | Used to optimize performance for application wide settings. | Unlimited |
| storage-system-info | Used to store the selected source system. | Unlimited |
| storage-timepush-survey-popup-key | Used to store the information if survey has already been shown to the user. | Unlimited |
| storage-user-info | Used to store user related information. | Unlimited |
| storage-web-assistant-status | Used to store the status of the web assistant SAP Enable Now. | Unlimited |
Functional Cookies
| Name | Purpose | Lifespan |
|---|---|---|
| country | Set by Adobe Analytics. Used to store the preferred language and country-setting of the visitor. | Session |
| s_pltp | Set by Adobe Analytics. Used to store data on the time spent on the website and its sub-pages, during the current session. | Session |
| s_plt | Set by Adobe Analytics. Used to register the website's speed and performance. | Session |
| _pendo___sg__.SUB_KEY_VALUE | Set by Pendo. Used to store the historical metadata fields for the current visitor when enabled in an application. | 100 days |
| _pendo_accountId.SUB_KEY_VALUE | Set by Pendo. Used to store the visitor's anonymized Account ID. | 100 days |
| _pendo_guides_blocked.SUB_KEY_VALUE | Set by Pendo. Used to avoid guide errors when an ad blocker is detected. | 1 day |
| _pendo_meta.SUB_KEY_VALUE | Set by Pendo. Used to store a hash of the current metadata so that Pendo can see when it has changed. | 100 days |
| _pendo_oldVisitorId.SUB_KEY_VALUE | Set by Pendo. Used to store the old anonymous visitor id information. | Session |
| _pendo_sessionId.SUB_KEY_VALUE | Set by Pendo. Used to store a randomly generated string that identifies a session. | 100 days |
| _pendo_unsentEvents.SUB_KEY_VALUE | Set by Pendo. If enabled, Pendo will write pending events to local storage before unloading the page and send them on next page load. | Session |
| _pendo_utm.SUB_KEY_VALUE | Set by Pendo. Used to store UTM parameters that were present in the URL when the visitor loaded the application. | 100 days |
| _pendo_visitorId.SUB_KEY_VALUE | Set by Pendo. Used to store the anonymized visitor information. | Session |
| OptanonConsent | Set by Pendo. Used to store whether a user has given or withdrawn consent for various cookie categories. | 1 year |
| pendo_tabId | Set by Pendo. Used to store the randomly generated string that identifies a browser window. | Session |
| __gtm_referrer | Set by Qualtrics. Tracks referrer information for analytics. | Session |
| ak_bmsc | Set by Qualtrics. Used by the website to optimize the response time between the visitor and the website. | 1 day |
| mutiny.user.token | Set by Qualtrics. Used to track a user's journey and make improvements to optimise this journey for future users. | 13 months |
| OptanonConsent | Set by Qualtrics. Used to store whether a user has given or withdrawn consent for various cookie categories. | 1 year |
| q_marketing_lang_ga_s | Set by Qualtrics. Used to store referrer and page behavior to allow proper follow-up of form submissions. | 1 day |
| q_marketing_utm_ref_tracking | Set by Qualtrics. Used to store the language preference for the PX Survey. | 1 day |
| QSI_History | Set by Qualtrics. Used to detect whether the user has responded to surveys presented on the website. | Session |
| QSI_HistorySession | Set by Qualtrics. Used to determine when the visitor last visited the different subpages on the website. | Session |
| QST | Set by Qualtrics. Enforces the "Prevent multiple submissions" setting in survey options. | 6 months |
Functional Local Storage Entries
| Name | Purpose | Lifespan |
|---|---|---|
| Q_INTER | Set by Qualtrics. Used to store a timestamp to a Survey-specific type ID, needed to decide whether or not to show another Intercept when evaluating Intercept targeting logic. | Unlimited |
| QSI_ActionSetHistory | Set by Qualtrics. Used to store a timestamp to a specific Action Set ID (a sub-element of a Qualtrics survey). | Unlimited |
| QSI_QualtricsSurveyHistory | Set by Qualtrics. Used to store survey identifying information. | Unlimited |
| sap.feedback.ui.pushState | Set by Qualtrics. Ensures that the number of survey invitations presented to the user can be kept below an acceptable limit per timeframe and per specific survey. | Unlimited |
How can you manage and delete Cookies?
SAP provides you with the option to adjust your preferences for Functional and Advertising Cookies when such cookies are placed on your device. In such a case, you can access preferences at any time by clicking on the "Cookie Preferences" link in the footer of the Web presence. You can also block and delete cookies by changing your browser settings.
To manage cookies using your browser settings, most browsers allow you to refuse or accept all cookies or only to accept certain types of cookies. The process for the management and deletion of cookies can be found in the help function integrated in your browser. If you wish to limit the use of cookies, you may not be able to use all the interactive functions.