cookies purpose edits

NHSDigital · Feb 26, 2025 · f99e582 · f99e582
1 parent 9b1e365
commit f99e582
Showing 1 changed file with 8 additions and 8 deletions.
diff --git a/docs/pages/footer/cookies.md b/docs/pages/footer/cookies.md
@@ -15,11 +15,11 @@ We use essential cookies to keep your data secure while you use NHS Notify.
 
 We do not need to ask permission to use essential cookies.
 
-| Name                                         | Purpose                                                                                        | Expires                     |
-| -------------------------------------------- | ---------------------------------------------------------------------------------------------- | --------------------------- |
-| csrt_token                                   | Helps keep the site secure by preventing cross-site request forgery (CSRF) attacks.            | When your session has ended |
-| CognitoIdentityServiceProvider.accessToken   | This lets us know that you've started a session in our interface and keeps it open for an hour | 1 year                      |
-| CognitoIdentityServiceProvider.clockDrift    | This cookie tracks the time difference between your local clock and a remote clock...          | 1 year                      |
-| CognitoIdentityServiceProvider.oauthMetadata | This records the type of authentication you used to sign in to help signing you out.           | 1 year                      |
-| CognitoIdentityServiceProvider.refreshToken  | This tells NHS Notify to remember...                                                           | 1 year                      |
-| CognitoIdentityServiceProvider.LastAuthUser  | This records the user ID...                                                                    | 1 year                      |
+| Name                                         | Purpose                                                                                                                                                         | Expires                     |
+| -------------------------------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------- | --------------------------- |
+| csrf_token                                   | Helps keep the site secure by preventing cross-site request forgery (CSRF) attacks.                                                                             | When your session has ended |
+| CognitoIdentityServiceProvider.accessToken   | A cookie used for authentication. This lets us know that you've started a session in our interface and keeps it open for an hour.                               | 1 year                      |
+| CognitoIdentityServiceProvider.clockDrift    | A cookie used for authentication. This cookie tracks the time difference between your local clock and a remote clock to keep your session active.               | 1 year                      |
+| CognitoIdentityServiceProvider.oauthMetadata | A cookie used for authentication. This records the type of authentication you used to sign in to help when signing you out.                                     | 1 year                      |
+| CognitoIdentityServiceProvider.refreshToken  | A cookie used for authentication. This periodically refreshes your session to the maximum time.                                                                 | 1 year                      |
+| CognitoIdentityServiceProvider.LastAuthUser  | A cookie used for authentication. This records the user ID of the last authenticated user on a device and identifies any corresponding cookies to that user ID. | 1 year                      |