NCSC logo

Cookie Policy


NCSC.GOV.UK puts small files (known as “cookies”) onto your computer to collect information about how you use our site.

Cookies are used to:

  • measure how you use the website so it can be updated and improved based on your needs

  • remember the notifications you’ve seen so that we don’t show them to you again

The NCSC does not use cookies to identify you personally.

You will normally see a message appear on the site before we store a cookie on your computer.

Find out more about how to manage cookies.

How we use cookies on NCSC.GOV.UK

Measuring website usage

The NCSC uses Google Analytics software (Universal Analytics) to collect data that we use to improve your experience of our website. We do this to help make sure the site is meeting the needs of its users and to help us make improvements. 

Google Analytics stores information about:

  • the pages you visit on Cyber First
  • how long you spend on each Cyber First page
  • how you got to the site
  • what you click on while you'r visiting the site

We do not collect or store your personal information (for example your name or address) so this information can't be used to identify who you are. 

We do not allow Google to use or share our analytics data. 

The cookies we use are:

_ga This helps us count how many people visit Cyber First by tracking if you’ve visited before 2 years
_gid This helps us count how many people visit Cyber First by tracking if you’ve visited before 24 hours
_gat Used to manage the rate at which page view requests are made 10 minutes

You can opt out of Google Analytics cookies.

Our Introductory Message

We are legally obliged to tell you that we use cookies on our site and gain your consent to their use. We do this via a pop-up message when you first visit NCSC.GOV.UK. We store a cookie on your computer so that we know that you have acknowledged the pop-up and the site knows not to show it again:

cookie_consent Records whether or not the cookies notification pop-up has been acknowledged by the user 11 months

Denial of Service Prevention

We use Web Application Firewalls to detect and block suspicious traffic that may cause a denial of service, which uses a number of cookies:

BNIS_x-bni-jas DDoS Prevention Browser session
x-bni-ci DDoS Prevention Browser session
x-bni-ja DDoS Prevention Browser session
AWSELB Load Balancing Browser session