AonLine Cookie Notice
Effective March 10, 2020

 Printable version of cookie notice

By using the AonLine website, you agree that Aon can place cookies on your device as described in our AonLine Privacy Statement and this Cookie Notice.

What are cookies?
A cookie is a piece of information contained in a very small text file that is stored in your Internet browser or elsewhere on your hard drive. Cookies allow a website to identify a user's device whenever that user returns to the website and are commonly used in order to make websites work more efficiently and enrich the user experience, as well as to provide information to the owners of the site.

Aon's use of cookies
Aon collects information during your visit to an Aon website through the use of cookies. We use these cookies for a variety of reasons, most commonly to distinguish you from other users of our websites and to help us compile statistics about usage of our websites. We also use cookies to help us provide you with a positive experience when you browse our website, help improve our content, and to personalize your visit.

Aon's use of web beacons
Aon may also use tracking technologies called web beacons to collect information about your visit to Aon sites. These are small images embedded in web content and HTML-formatted email messages and are ordinarily not visible to users. Like cookies, this technology enables us to track pages and content accessed and viewed by users on Aon sites. Also, when we send HTML-formatted (as opposed to plain text) emails to our users, this technology may be embedded in such emails. Using web beacons allows us to determine whether emails have been opened or links were accessed, and identify aggregate trends, individual usage, and generate statistics about how our site is used. This enables us to provide our users with more relevant content or additional information about our services.

Web beacons are often used in combination with cookies; however unlike cookies, web beacons cannot be declined when delivered via a regular web page. However, they can be refused when delivered via email. If you do not wish to receive this technology via email, configure your email software to disable HTML images or refuse HTML emails (selecting the option for text only viewing). Setting your browser to decline cookies or to prompt you for an opt-in response before cookies are set will also reduce web beacons' functionality.

Main AonLine cookies
The table below is a list of the main cookies set by AonLine and by other applications that AonLine has Single-Sign-On (SSO) with. We provide both the purpose and the name of each cookie. Please note that we may from time to time modify or update our cookies. When that happens, we will update this list accordingly and you will be required to accept these changes.

 

Session Cookies:

 

These cookies are used to maintain your transaction with AonLine and expire based on your timeout settings. Idle timeout is 30 minutes with an overall general timeout of 480 minutes. The use of the session cookies reduces the need for Aon to transfer your information over the internet.

 

  • Name: ASPSESSIONID*
  • Area / Tool: US AonLine Web Assets
  • Purpose / Description: If a site uses US AonLine Web Assets (Forms or OCPL) these cookies are set by the ASP web server for session management and they store the SessionID of a user.
  • Name: ASP.NET_SessionId
  • Area / Tool:
    Aon Client Exchange (ACx)
    Aon GPS (Global Property System)
    Collaboration
    Access EOC
  • Purpose / Description: If an account/site has these tools enabled, this cookie contains the session details.
  • Name: ASP.NET_SessionId_Client
  • Area / Tool: GAMS
  • Purpose / Description: If an account / site has GAMS enabled, this unique identifier is given to each user for the duration of the session to allow authentication to GAMS.
  • Name: ASP.NET_SessionId_Demo
  • Area / Tool: GAMS Demo
  • Purpose / Description: If an account / site has GAMS Demo enabled, this unique identifier is given to each user for the duration of the session to allow authentication to GAMS Demo.
  • Name: BIGipServerpool_*
  • Area / Tool: US AonLine Web Assets
  • Purpose / Description: If a site uses US AonLine Web Assets (Forms or OCPL), this cookie is set by the load balancer (local traffic manager) for maintaining a sticky session in AonLine. This cookie contains the IP Address of the server that the client is being persisted to, as well as the server port that the connection is being established on.
  • Name: JSESSIONID
  • Area / Tool: All
  • Purpose / Description: A unique identifier for the AonLine portal.
  • Name: KSessionId
  • Area / Tool: All
  • Purpose / Description: A unique identifier for the AonLine identity management system.
  • Name: NGG_SessionId
  • Area / Tool: GAMS and GAMS Demo
  • Purpose / Description: A unique identifier for the AonLine identity management system.
  • Name: psm
  • Area / Tool: All
  • Purpose / Description: If an account / site has either enabled, this unique identifier is given to each user for the duration of the session to allow authentication to GAMS and/or GAMS Demo.

  • Name: TPCookie
  • Area / Tool: Aon GPS (Global Property System)
  • Purpose / Description: If an account/site has this tool enabled, this cookie stores the current selection of Company for third party users.
  • Name: TransactionIDCookie
  • Area / Tool: Aon GPS (Global Property System)
  • Purpose / Description: If an account/site has this tool enabled, this cookie stores an encrypted GUID (globally unique identifier) to track transactions (postbacks) for logging purposes.
  • Name: UserCookie
  • Area / Tool: Aon GPS (Global Property System)
  • Purpose / Description: If an account/site has this tool enabled, this cookie contains the session details.
  • Name: WSS_FullScreenMode
  • Area / Tool: Collaboration / Access EOC
  • Purpose / Description: If an account/site has this tool enabled, this cookie will be used internally by SharePoint to update content on SharePoint.
  • Name: FedAuth
  • Area / Tool: Collaboration / Access EOC
  • Purpose / Description: If an account/site has this tool enabled, this cookie contains the session authentication details.
  • Name: Local Storage
  • Area / Tool: Collaboration / Access EOC
  • Purpose / Description: If an account/site has this tool enabled, this cookie will be used internally by SharePoint. This cookie provides local web storage for the web application in browser.
  • Name: https://sp1.aonline.aon.com/xxxxxxxxxxxx%2FDiscovery
  • Area / Tool: Collaboration / Access EOC
  • Purpose / Description: If an account/site has this tool enabled, this cookie will be used internally by MS Office. The content of the cookie is used by MS Office to remember the recently used SharePoint Workspaces so it can show it to you when you want to save a document in MS Office. There can be many such cookies with similar URLs.
  • Name: ZROUTE
  • Area / Tool: Collaboration / Access EOC
  • Purpose / Description: If an account/site has this tool enabled, this cookie will be used internally by SharePoint. This cookie is used for session persistency to enable the capability in the load balancer to route to the same web server.
Functionality Cookies:

These cookies are used to recognize repeat visitors to the site and allow the website to remember the choices you make (such as user name, language or the region you are in. They are often used to record specific browsing information (that is the way you arrive on the site, the pages you view, options you select, information you enter and path you take through the site) against an individual user profile.
 

User interface: Denotes the way the site is being viewed
  • Name: Ps
  • Area / Tool: All
  • Purpose / Description: Creates a list of portal windows a user has minimized in AonLine. If a user minimizes a window it will appear minimized in a future session on the same computer.
  • Name: _AntiXsrfToken
  • Area / Tool: Aon GPS (Aon Global Property System)
  • Purpose / Description: If an account / site has this tool enabled, this cookie is used to prevent Cross-site Request Forgery.
  • Name: .ASPXAUTH
  • Area / Tool:
    Aon Client Exchange (ACx)
    Aon GPS (Global Property System)
    Collaboration
    Access EOC
  • Purpose / Description: If an account / site has these tools enabled, this cookie is used to authenticate the user.
     
  • Name: AuthCookie
  • Area / Tool: Aon GPS (Aon Global Property System)
  • Purpose / Description: If an account / site has this tool enabled, this cookie stores .Net Forms Authentication Token.
Localization:

Allows the site to generate different language strings based on browser locale settings

  • Name: AUTH_SESSION_ID
  • Area / Tool: All
  • Purpose / Description: A unique identifier given to each user for the duration of the session to allow authentication over all applications the user has access to within AonLine (e.g. Aon Client Exchange, GAMS, etc.).
Authentication management:

Contains your authentication ticket information

  • Name: CSATargetURL
  • Area / Tool: Aon Client Exchange (ACx)
  • Purpose / Description: This cookie is used for new ACx users automatically created by ACx. It causes new ACx users to be redirected to the proper ACx page after they log in for the first time. Once used, this cookie is unset; never to appear again for the user.
  • Name: LtpaToken
  • Area / Tool: N/A
  • Purpose / Description: Not used but still being set at this time.
  • Name: LtpaToken2
  • Area / Tool: All
  • Purpose / Description: Used for Single-Sign-On (SSO) between the different web services within the WebSphere Portal application. It is used to make sure each component of the AonLine portal knows which user is logged in.
  • Name: Remember_me
  • Area / Tool: Login
  • Purpose / Description: This cookie is used for storing the user name on the computer for users that tick the "Remember user name on this computer" box.

 

Analytics Cookies:

These cookies are used to estimate our audience and usage patterns, etc.

  • Name: _ga
  • Area / Tool: AonLine
  • Purpose / Description: This cookie is used by Google Analytics to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports.The cookie is stored long term and will expire after two years.
  • Name: _gid
  • Area / Tool: AonLine
  • Purpose / Description: This cookie is used by Google Analytics to distinguish unique users, similar to the _ga cookie. This cookie is used short term and will expire in 24 hours.
  • Name: _gat_UA-xxxxxxx-x
  • Area / Tool: AonLine
  • Purpose / Description: This is a pattern type cookie set by Google Analytics, where the pattern element on the name contains the unique identity number of the account or website it relates to. It is used to throttle request rate to Google Analytics. It is set to expire in one minute.

 

 

How to control cookies


You can control acceptance of cookies by modifying your Internet browser preferences. You have the ability to accept all cookies, to be notified when a cookie is set or to reject all cookies. Please note that, if you choose to block all cookies (including essential cookies) you may not be able to access all or part of our site and may be unable to use those services or engage in activities that require the placement of cookies.

To disable cookies:
  • If you are using Microsoft Edge:
    • Select Tools (three horizontal dots at the top right)
    • Select Settings
    • Scroll down and select Advanced Settings
    • In the Cookies section select Block all Cookies
  • If you are using Internet Explorer 11+:
    • Select the gear in the upper-right corner of the screen, then select Internet Options.
    • Click the Privacy tab.
    • Select the Advanced button.
    • Under First-party Cookies and Third-party Cookies, choose one of the following:
      • Accept - To automatically accept cookies.
      • Block - To automatically block cookies.
      • Prompt - To prompt with each cookie request.
         
  • If you are using FireFox 59+:
    • Select the "Hamburger" (three stripes icon at the top left).
    • Select Privacy
    • Drop-down History - FireFox will:
    • Set FireFox will: to Use custom settings for history.
    • Untick the box Accept cookies from sites
       
  • If you are using Google Chrome 67+:
    • Select the Tools Menu (three vertical dots on the top right)
    • Select Settings
    • Scroll down and select Advanced Settings
    • In the Privacy and security section select Content Settings
    • Select Cookies and unselect Allow sites to save and read cookie data
  • If you are using Safari 11+:
    • Choose Safari > Preferences, click Privacy, then do any of the following:
      • Always block: Safari doesn't let any websites, third parties, or advertisers store cookies and other data on your Mac. This may prevent some websites from working properly.
      • Allow from current website only: Safari accepts cookies and website data only from the website you’re currently visiting. Websites often have embedded content from other sources. Safari does not allow these third parties to store or access cookies or other data.
      • Allow from websites I visit: Safari accepts cookies and website data only from websites you visit. Safari uses your existing cookies to determine whether you have visited a website before. Selecting this option helps prevent websites that have embedded content in other websites you browse from storing cookies and data on your Mac.
      • Always allow: Safari lets all websites, third parties, and advertisers store cookies and other data on your Mac.

For more detailed information on how to control cookies you may wish to visit www.allaboutcookies.org