Effective Date: December 1, 2025
Last Updated: June 2, 2026
Capitol Federal® (“we,” “us,” or “our”) uses cookies and similar tracking technologies on www.capfed.com (the “website”), to enhance your browsing experience, analyze website performance, and support our business operations. This Cookie Policy explains what cookies are, how we use them, the types of cookies we deploy, and how you can manage your cookie preferences. We process cookie-related data based on your consent, our interests in website functionality and security, and where applicable, to fulfill contractual obligations. Blocking or deleting certain cookies may negatively impact your user experience.
We may update this cookie notice from time-to-time by posting an updated copy on the website.
What Are Cookies?
Cookies are small text files stored on your device when you visit a website. They help ensure the website functions properly, improve security, provide a better user experience, and enable us to analyze performance and usage trends.
How We Use Cookies
We use both first-party and third-party cookies for various purposes:
- First-party cookies are set by Capitol Federal and are essential for the website’s core functionality.
- Third-party cookies are set by service providers and partners to help us understand website performance, deliver relevant advertising, and enhance your experience.
Cookies may collect information about your device, browser, and interaction with the website. Personal information is only collected if you provide it voluntarily (e.g., through forms).
Types of Cookies We Use
We use the following categories of cookies:
1. Necessary Cookies
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store personally identifiable data.
| Cookie Name | Duration | Description |
|---|---|---|
.AspNetCore.Antiforgery.* | Session | This cookie is set by Microsoft AspNet for the purpose of Anti-forgery protection. |
| AWSALBCORS | 7 days | Amazon Web Services set this cookie for load balancing. |
| rc::a | Never Expires | This cookie is set by the Google reCAPTCHA service to identify bots to protect the website against malicious spam attacks. |
| rc::c | Session | This cookie is set by the Google reCAPTCHA service to identify bots to protect the website against malicious spam attacks. |
| session_id | Never Expires | This cookie is used to set the session ID for the current session. |
| AWSALB | 7 Days | AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target. |
| _cfuvid | Session | Cloudflare sets this cookie to distinguish users behind the same IP address for security and rate limiting. |
| mp_*_mixpanel | 1 year | Mixpanel sets this cookie to determine how users use the website so that a good user experience can be provided. |
| AWSALBTG | 7 Days | hostedlandingpages sets this cookie for security, load balancing, network management or form submissions. |
| AWSALBTGCORS | 7 Days | Amazon Web Services for application load balancer stickiness cookie. |
| JSESSIONID | Session | New Relic uses this cookie to store a session identifier so that New Relic can monitor session counts for an application. |
| cookieyes-* | 1 Year | CookieYes sets this cookie for consent solution management. |
| guest | 1 Month | Jotform cookie used to preserve session state for users submitting forms without authentication. It supports form functionality and submission continuity, does not perform marketing or cross-site tracking, and is required for the service to function. |
| __cf_bm | 1 Hour | This cookie, set by Cloudflare, is used to support Cloudflare Bot Management. |
| QuiloWidget | Session | Quilo is a customer-facing loan assistance widget used to support the consumer lending experience. It provides interactive functionality initiated by the user and is not used for advertising, profiling, or cross-site tracking. |
2. Functional Cookies
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.
| Cookie Name | Duration | Description |
|---|---|---|
| li_gc | 6 Months | LinkedIn set this cookie for storing visitor's consent regarding using cookies for non-essential purposes. |
lidc | 1 day | LinkedIn sets this lidc cookie to facilitate data center selection. |
| userReferer | 1 Month | Jotform functional cookie used to store the referring URL for embedded form functionality and internal reporting. It supports form behavior and navigation context, does not perform cross-site tracking, and is not used for advertising. |
3. Analytics Cookies
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
| Cookie Name | Duration | Description |
|---|---|---|
| nmstat | 1 year 1 month 4 days | This cookie is set by SiteImprove. This cookie is used for web analytics, the cookie contains an ID string about the session. The cookie records the visitor use of the website. This information is used to improve the site experience. The cookie does not contain any personal information. |
| _ga | 1 year 1 month 4 days | Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors. |
| _ga_* | 1 year 1 month 4 days | Google Analytics set this cookie to store and count page views. |
| _clck | 1 Year | Microsoft Clarity sets this cookie to retain the browser's Clarity User ID and settings exclusive to that website. This guarantees that actions taken during subsequent visits to the same website will be linked to the same user ID. |
| _clsk | 1 Day | Microsoft Clarity sets this cookie to store and consolidate a user's pageviews into a single session recording. |
| __hstc | 6 Months | Hubspot sets this main cookie for tracking visitors. It contains the domain, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session). |
| hubspotutk | 6 Months | HubSpot sets this cookie to keep track of the visitors to the website. This cookie is passed to HubSpot on form submission and used when deduplicating contacts. |
| __hssrc | Session | HubSpot cookie sets this cookie to determine if the visitor has restarted their browser. If this cookie does not exist when HubSpot manages cookie, it is considered a new session. |
| __hssc | 1 Hour | HubSpot sets this cookie to keep track of sessions. This is used to determine if HubSpot should increment the session number and timestamps in the __hstc cookie. It contains the domain, viewCount (which increments with each pageview in a session), and session start timestamp. |
4. Performance Cookies
Monitor and improve website performance.
| Cookie Name | Duration | Description |
|---|---|---|
| SERVERID | 10 Minutes | This cookie is set by Slideshare's HAProxy load balancer to assign the visitor to a specific server. |
5. Advertisement Cookies
Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.
| Cookie Name | Duration | Description |
|---|---|---|
| __spdt | 1 Year | Spotify Pixel or Spotify ad integrations. |
| _tq_id.TV-4581725445-1.1752 | 1 Year 1 Month 4 Days | Aids reporting of site visits and actions for analytical reporting related to advertising campaigns. Belongs to Innovid, a digital advertising measurement and attribution platform commonly used for TV, video, and cross-channel ad tracking. |
_gcl_au | 3 months | Google Tag Manager sets this cookie to experiment advertisement efficiency of websites using their services. |
| _fbp | 3 months | Facebook sets this cookie to store and track interactions. |
| suid_legacy | 1 year | Collects information on user preferences and interaction with web-campaign content which is used on CRM-campaign-platforms used by website owners for promoting events or products. |
| suid | 1 Year | Simpli.fi sets this cookie to store a distinct session ID. |
| _dlt | 1 Day | Zendesk set this cookie to create a unique ID for the session. This enables the website to collect data on visitor behaviour for statistical purposes. |
| test_cookie | 15 min | doubleclick.net sets this cookie to determine if the user's browser supports cookies. |
| bcookie | 1 year | LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser IDs. |
| IDE | 1 Year 24 Days | Google DoubleClick IDE cookies store information about how the user uses the website to present them with relevant ads according to the user profile. |
| TTDID | 1 Year | This cookie is set by The Trade Desk to assign a unique advertising identifier to a browser. It is used for digital advertising delivery, attribution, frequency capping, and related advertising measurement purposes. |
| uid_syncd_secure | 7 Days | Used by Simpli.fi's platform to recognize the same browser across different sites for ad targeting, attribution, and measurement. |
| __141_cid | 1 Year | Beachfront Media sets this cookie to recognize a browser and enable cross-site ad targeting, measurements, and audience matching. |
| __141_exp | 7 Days | Beachfront Media sets this cookie to manage how ads are shown, such as testing or controlling ad delivery during your visit. |
| anProfile | 6 Months | This cookie is set by the provider pro-market.net. This cookie is used for personalizing online ads based on the behavior of the online customers. |
| TapAd_TS | 2 Months | TapAd sets this cookie to track users across devices to enable targeted advertising. |
| TapAd_DID | 2 Months | TapAd sets this cookie to offer personalized content, social media features, and traffic analysis for its retargeting of online advertising. |
| uid_syncd | 7 Days | The domain of this cookie is owned by Simpli.fi. This cookie is used for targeted advertising based on visitor preferences. |
| OAID | 1 Month | Cookie set to record whether the user has opted out of the collection of information by the AdsWizz Service Cookies. |
| TapAd_3WAY_SYNCS | 2 Months | TapAd sets this cookie for data synchronization with advertising networks. |
| __io_cid | 1 Year | This cookie is set by the provider bfmio.com. This cookie is used for detecting where the video advertisement should be displayed on the website. |
| ad-id | 7 Months 13 Days | Amazon Adsystem sets this cookie as part of its affiliate marketing program. |
| ad-privacy | 1 Year 1 Month 14 Days | Amazon Adsystem sets this cookie as part of its affiliate marketing program. |
6. Uncategorized Cookies
Cookies currently under review or not yet classified.
| Cookie Name | Duration | Description |
|---|---|---|
Manage Cookie Preferences
Capitol Federal uses CookieYes to manage cookie consent. You can modify your cookie settings anytime by clicking the 'Consent Preferences' button above. This will allow you to revisit the cookie consent banner and update your preferences or withdraw your consent immediately.
Additionally, different browsers offer various methods to block and delete cookies used by websites. You can adjust your browser settings to block or delete cookies. Below are links to support documents on how to manage and delete cookies in major web browsers.
Chrome: https://support.google.com/accounts/answer/32050
Safari: https://support.apple.com/en-in/guide/safari/sfri11471/mac
Internet Explorer: https://support.microsoft.com/en-us/topic/how-to-delete-cookie-files-in-internet-explorer-bca9446f-d873-78de-77ba-d42645fa52fc
If you are using a different web browser, please refer to its official support documentation.
Links to Other Third-Party Sites
Our website may contain links to third-party sites, such as credit card companies, service providers or merchants. Please be aware that we are not responsible for the privacy and security practices of sites we are not affiliated with or control. We encourage you to review their privacy and security notices and other terms and conditions, as they may be different from ours.
Collection of Personal Information
For additional information regarding Capitol Federal’s collection and use of personal customer information provided by visitors to the website, please see our Consumer Privacy Policy.