Your Privacy and Security

IMCA takes your privacy and trust seriously. The following statement sets out the information we collect, how we use it and details on ‘cookies’ used by this website. Please contact us if you have any questions regarding our privacy policy and use of your data.

Data we collect

We do not collect personally identifiable details about you unless you choose to submit them – via a membership application, event registration, publications order or other form of contact. Where we do this, we collect the information we need for that process and only use it for that purpose.

We use Google Analytics to look at how our website is used, based on aggregated visitor data.  This analysis does not identify individual users, but lets us see trends such as popular content, visitor countries, browsers/devices used, etc. We can then use this data to help improve the website.

We also utilise Invisible reCAPTCHA by Google, which may track your behaviour on pages with submission forms.  This is to detect automated behaviour in order to eliminate spam.  We obtain no data from the reCAPTCHA process.

Payment Data

IMCA does not collect credit card details and where they are submitted, they are deleted from IT systems (or physically destroyed, as appropriate). For your security, all card payments are collected via PayPal or WorldPay using their secure servers. Card details are provided directly to those services and not made available to IMCA – we receive data relevant to the purchase being made, but not card details or other card data that, if intercepted, could pose a security risk to you.

Use of cookies

Our web site uses a technology known as cookies to store small amounts of data on our visitors’ computers or devices. Cookies are small pieces of text data that can be placed on a visitor’s computer, normally to provide enhanced functionality and/or improved relevancy of information.

First party cookies (our website creates these):

PHPSESSID – this stores certain settings during your visit (such as your logged-in status or whether withdrawn/expired material appears in publication listings). This cookie can only be used by this website and should be automatically deleted when you close your browser. You may block creation of this cookie, but should expect reduced website functionality.

If you wish to dismiss the notice about cookies, a separate cookie will be placed on your computer for the sole purpose of hiding the notice on future visits.  This cookie will expire in 365 days, or when this privacy policy changes, whichever is sooner.

Third party cookies (may be added by a service provider we use, subject to your browser settings):

Google Analytics:

Cookie Name Default Expiry Description
__utma 2 years from set/update Used to distinguish users and sessions. The cookie is created when the JavaScript library executes and no existing __utma cookies exists. The cookie is updated every time data is sent to Google Analytics.
__utmt 10 minutes Used to throttle request rate.
__utmb 30 mins from set/update Used to determine new sessions/visits. The cookie is created when the JavaScript library executes and no existing __utmb cookies exists. The cookie is updated every time data is sent to Google Analytics.
__utmc End of browser session Not used in ga.js. Set for interoperability with urchin.js. Historically, this cookie operated in conjunction with the __utmb cookie to determine whether the user was in a new session/visit.
__utmz 6 months from set/update Stores the traffic source or campaign that explains how the user reached your site. The cookie is created when the javascript library executes and is updated every time data is sent to Google Analytics.
__utmv 2 years from set/update Used to store visitor-level custom variable data. This cookie is created when a developer uses the _setCustomVar method with a visitor level custom variable. This cookie was also used for the deprecated _setVar method. The cookie is updated every time data is sent to Google Analytics.


We use Hotjar in order to better understand our users’ needs and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users’ experience (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback. Hotjar uses cookies and other technologies to collect data on our users’ behavior and their devices. This includes a device’s IP address (processed during your session and stored in a de-identified form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), and the preferred language used to display our website. Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually forbidden to sell any of the data collected on our behalf. For further details, please see the ‘about Hotjar’ section of Hotjar’s support site.