Cookiesentry

Cookie checkerFeaturesPricingBlogContact
Home/Cookies Guide/WooCommerce
Back to all cookies
Platform guide

WooCommerce cookies

WooCommerce adds ecommerce-specific cookies to WordPress for cart state, customer sessions, and storefront behavior. Those cookies often coexist with plugins, payment tools, and marketing tags.

Cookie entries

5

Consent required

0

Case-by-case review

1

How to audit WooCommerce

WooCommerce cart and checkout cookies can be strictly necessary, but stores frequently layer in analytics, email capture, remarketing, and payment integrations that require consent before loading.

Test add-to-cart flows, mini-cart widgets, checkout, account areas, and any plugin that modifies product recommendations, popups, or attribution tracking.

Audit checklist

  • Document WooCommerce and WordPress cookies separately from third-party marketing tools.
  • Scan category pages, product pages, cart, checkout, and account areas as separate templates.
  • Retest whenever plugins change cart, personalization, payments, or pop-up behavior.
  • Keep the cookie banner aligned with actual store functionality and installed extensions.

Where GDPR risk usually starts

  • Storefront plugins often inject analytics or recommendation scripts alongside necessary cart cookies.
  • Checkout-adjacent tools such as email capture, upsell widgets, or payment add-ons can change cookie behavior.
  • WooCommerce stores inherit WordPress plugin risk on top of ecommerce-specific logic.

Provider mix on this platform

WooCommerce3 cookies
WordPress2 cookies
EssentialFunctional

WooCommerce cookie reference

woocommerce_cart_hashEssentialNo consent required

WooCommerce cart-hash cookie. Indicates when the cart contents change so the front-end can reload cart fragments.

Expires: Session
Automattic, Inc.
WooCommerce
woocommerce_items_in_cartEssentialNo consent required

WooCommerce cart-items counter. Tracks the number of items currently in the cart.

Expires: Session
Automattic, Inc.
WooCommerce
wp_woocommerce_session_<hash>EssentialNo consent required

WooCommerce session cookie. Holds a unique code for the customer so cart and order data can be retrieved from the database.

Expires: 2 days
Automattic, Inc.
WooCommerce
wordpress_logged_in_<hash>EssentialNo consent required

Set when a user logs in to WordPress. Used by the WordPress interface to keep the user signed in.

Expires: Session or 14 days (with Remember Me)
WordPress Foundation
WordPress
wp-settings-<user_id>FunctionalCase-by-case

Persists logged-in WordPress users' admin interface preferences (e.g., dashboard layout).

Expires: 1 year
WordPress Foundation
WordPress

Category breakdown

EssentialFunctional

Need to verify your live WooCommerce setup?

Run a CookieSentry scan to see which cookies your WooCommerce site sets before consent and where hidden app or plugin scripts are creating exposure.

Run a free scan →
Cookiesentry
About usFAQContactBlogCookies GuidePrivacyTermsEU Hosting

No cookies. No tracking. Analytics by EU-hosted Umami.

© 2025 CookieSentry. All rights reserved. Made with care for your privacy.