Privacy and Cookie Policy

Your privacy is important to us. This page explains our online information practices and the choices you can make about how information about you is collected and used by the RSA here on this website and in other electronic communications networks.

The RSA is committed to protecting and respecting your privacy online. This privacy policy is not intended to, and does not, create any contractual or other legal rights in or on behalf of any party.

We may amend this privacy policy at any time by posting changes on this page. Amendments will automatically take effect upon publication. The last date of revision will always appear on the privacy policy.


By completing any detailed on-line registry you give your consent to the collection and use of your personal information in accordance with this Privacy Policy each time you use this website.
Web pages covered by this policy

This notice applies to all information collected or submitted on the RSA domain and includes areas of the website where you can create an account, comment on blogs, sign up for newsletters, enter competitions and book tickets for events as well as information collected automatically by cookies, if enabled.

The RSA is not responsible for the privacy policy of services on third party websites (for example Facebook, Twitter, YouTube, etc). You should refer to the appropriate privacy policies of each individual third party website for further information about them and their terms.

The way we use information

You can browse the RSA website without telling us who you are or revealing any personal information about yourself or your location. The websites collect some anonymous information about you automatically as you move through the site. We use this data to inform the development of our service (for example, we like to know which browsers most of our visitors are using). The information collected automatically in this way does not contain anything that can identify you personally. It provides data about what users do on the site, but not who they are.

Once you submit information to us you are no longer anonymous. Any personal information that you choose to give to us will be transferred and stored on secure local servers in a safe, confidential and secure environment.

We use the personal information you give us as a research tool to develop the content of the RSA website, to improve our understanding of our visitors and to determine better ways to serve you. We may use the information to provide you with details of RSA services and for this reason each screen that asks for data gives you the opportunity to opt out of receiving such information.

We use return e-mail addresses to answer e-mails we receive. Such addresses are not used for any other purpose and are not shared with outside parties. We will not send your data to third parties and we will not send data to areas where an adequate data protection policy is not in place.


We have strict security and confidentiality procedures covering the storage and disclosure of your information in order to safeguard it, to prevent unauthorised access and to comply with the UK Data Protection Act 1998. We only permit authorised employees, who are trained in the proper handling of customer information, to have access to information. Employees who breach our Privacy Policy are subject to our usual disciplinary procedures.

Whenever we sub-contract other organisations to provide support services, we require them to conform to our privacy standards and to allow us to audit them for compliance.

Further information that you post on any message board is visible to the public. If you disclose personal information publicly, including your email address, it can be collected and used by others which may result in unsolicited messages from other parties. The RSA cannot guarantee the security of your information although all reasonable measures will be taken to stop this falling into the wrong hands. The user or subscriber is responsible for the secrecy of your password(s) and/or any account information.

Cookie Policy

Some sections of the RSA website use cookies.

What are cookies?

Cookies are small, text-only strings of data which store information on the hard drive of your local computer or mobile device when you visit some websites.

How long do cookies last?

Cookies last for different lengths of time depending on what they are used for.

  • Session cookies are temporary cookies and are only stored until you leave the website or when you close your web browser.
  • Persistent cookies last for a fixed period of time, defined within the cookie, and allow the website to recognise the device again when the user returns to that website on that device.
These cookies do not contain any personal data about you individually. They are there to provide you with better information tailored to your individual needs. Most internet browsers are pre-set to accept cookies but if you prefer not to receive cookies, you can adjust your browser to refuse cookies, or to warn you when they are being used.

Information about the duration of cookies used on the RSA website will be published in the near future.

RSA compliance with cookie law

In the light of new legislation the RSA is making some changes to the website and we provide you here with a register of the cookies which are currently deployed on our site.

When you visit the RSA website, if your browser is using the standard settings and it is accepting cookies, you are giving consent for cookies on the RSA site to be stored on your computer. If you do not wish for this to happen, you can disable them in the settings of your browser.

This has to be done on each different browser you use. For more information about how to disable cookies in different browsers, visit

The RSA website works more efficiently if receipt of cookies is enabled, but it will still operate correctly if you disable cookies, although some extra enhanced features provided for you will not work. (For example the website will show you the last 4 pages you have visited on the site, but it cannot do this without setting a cookie.)

Cookies used on RSA websites

We use Google Analytics to collect information about site usage and performance. This helps us better understand our users and their needs so that we can continue to improve the services we provide. The analytics cookies collect information such as the number of visits to the site, pages visited and international traffic. This information is anonymous and cannot be used to identify you personally.

More information on the cookies that we use, how they help you use particular services, what type of cookie they are and the websites that are setting the cookies on your computer will be published on this page shortly.

Flash cookies used on the RSA website

The RSA website has a number of interactive features on parts of the site that use Flash. This is widely used to provide video and other interactive content. Many web browsers will have a version of the Flash player that plays these files.  The Flash player can store data in a similar way to standard cookies, using a data file called a Local Shared Object.

More information on Local Shared Objects that may be stored from within interactive elements on the RSA website will be published shortly. We are aware of a small number of local shared objects created by Flash features. These are used to make them work more easily.

For more information on how to control Flash cookies (Local Shared Objects) visit the Adobe website.

Cookies used on third party websites that provide services to RSA visitors

Certain areas of the website will also contain third party cookies, e.g. embedded Flickr or YouTube content. The RSA is not responsible for these cookies and you should refer to the appropriate third party website Privacy Policy for further information about them and their terms.

When we may use your details to contact you

If you do opt to provide us with any personal information we use this in various ways:


Winners of competitions are notified directly by the RSA, unless stated otherwise in the competition terms & conditions. We keep information gathered through web competitions for approximately three months on a secure local server. Entrants who have agreed to be sent third-party information have their contact details sent to the relevant organisations. Entrants who have declined to receive further information will have their contact details deleted from the server after approximately three months.


All users who agree to be sent an e-newsletter via the web are sent through automatically to the web subscription page. The data you provide when signing up is stored securely and for RSA use only. You can unsubscribe from email newsletters at any time by clicking on the link that appears at the bottom of every newsletter.

Social networks

Where we are active on third party sites which feature social networking or sharing (Facebook, Twitter, Flickr etc) we may very occasionally contact you directly in relation to activities we are running on those sites.

User ID and web contributions

If you submit content to the RSA website under a user name or create a user account, your user ID may be visible to the public alongside any submission you make. No other private information will be viewable. You can access all your personal identifiable information that we collect online and maintain by logging in to your account and viewing your profile page. You can correct factual errors in your personally identifiable information within your account via your profile page or by sending the webmaster a request that credibly shows error. Amendments or deletions to personal information will roll out to all activity you have had on the site.

To protect your privacy and security, we will also take reasonable steps to verify your identity before granting access and making corrections.

Links to non-RSA websites

The RSA accepts no responsibility or liability for content on third party websites. Users clicking on links to external sites should check the Terms and Conditions and Privacy Policy of the site they are visiting.

Our commitment to data security

To prevent unauthorised access, maintain data accuracy and ensure the correct use of information, we have put in place physical, electronic and managerial procedures to safeguard and secure the information we collect online.
How to contact us

Cookies used on the RSA website:

What Name Expires Example Page Insight
Squiz Matrix SQ_SYSTEM_SESSION At End Of Session The RSA site is running on a content management system (CMS) called Squiz Matrix.
Cookie Banner hasVisited At End Of Session The RSA site uses this cookie to remember a user’s acceptance of the cookie policy.

Cookies used by 3rd parties to provide services to RSA visitors:

What Name Expires Example Page Insight
Twitter Plugin k
Date not set
Date not set Twitter is a plugin, that shows most recent tweets on the RSA website.
AddThis __atuvc, xtc, uid, psc, loc, dt 730 AddThis across the site is used to allow sharing of content between different services.
Google NID, SNID,    khcookie, S, PREF 730 Used by Google Calendar and Google Maps, both of which set cookies to store user preferences.
TopTable pgseq, ftc, IsCKE, s_cc, s_nr, s_evar5, s_cmrun, s_sq, s_vi 5 years These cookies are set by bookings operator Top Table. They are essential when making a reservation through the online booking system.
YouTube APISID, HSID, SAPISID, SID, SSID, VISITOR_INFO, 1_LIVE, PREF 10 years The RSA site uses embedded YouTube videos.
Google Analytics __utma
Date note set
182 Google Analytics is used to gain insight into visitor statistics. The RSA use this data to improve and enhance user experience and roll out future changes with new and returning visitors in mind.

If you have any questions or concerns about our privacy policy and cookies policy, please email us.

Revised on 26 September 2012