The MERL privacy policy

The MERL Privacy Policy

We updated in July 2018 to comply with the General Data Protection Regulation (GDPR).


We use the following functional cookies on our website:
ARRAffinity – This cookie is set by websites run on the Windows Azure cloud platform. It is used for load balancing to make sure the visitor page requests are routed to the same server in any browsing session
redux_blast – to facilitate the visual look of the site.
If you prefer not to receive cookies while browsing our website, you can set your browser to refuse cookies that are stored on your computer. You do not need to have cookies turned on to use or navigate through most parts of our website, although some functionality may be lost.

For users of Better Impact volunteer management software

vol2Auth — the authorization cookie for the site. Allows us to know that you are who you say you are and contains information about your session. This is heavily encrypted
RequestVerificationToken — used to prevent cross site request forgery on vulnerable forms (for instance, the login forms)
InvalidSessionTracker — another cookie related to the users session. Contains just the information needed to determine whether or not the session is invalid, so the browser can be redirected to our invalid session page if needed
SessionHeartbeat — again related to sessions, allows us to automatically log you out gracefully if your session gets too old, rather than booting you out the next time you try to do something
ResponseMonitorToken — used to monitor download process of files downloaded from the system (raw data reports use this)
TrackingClientId — used to tell intercom what clientid the logged in person is from

This Privacy Notice applies to the MERL webpages, if you navigate to other University for Reading sites please refer to the accompanying Privacy Notice for that website.