Regulation Coverage
Every regulation, handled automatically.
GDPR, CPRA, LGPD, PIPEDA, Law 25, and 191+ more. ConsentStack ships with a complete regulation library covering the EU, US states, Canada, Brazil, Australia, Japan, Singapore, India, and the UK. Each one mapped to its jurisdiction, consent model, and enforcement requirements.
Regulation-first consent
Consent rules are derived from regulation requirements, not configured in a vacuum. When you add a regulation, ConsentStack knows what it demands: opt-in, opt-out, or notice-only. It applies the right consent model to the right visitors.
Real-time compliance status
The builder validates your configuration against every active regulation before you publish. If a category's consent model doesn't meet a regulation's requirements, you'll know immediately, not after a regulator does.
One-click global and US state compliance
Enable global compliance mode and your site covers 195+ privacy laws across 157+ jurisdictions, including all 20 enacted US state laws. A visitor from California gets CCPA/CPRA treatment, a visitor from Virginia gets VCDPA, and a visitor from Texas gets TDPSA — all automatically, from a single toggle. As new laws take effect, they apply without any configuration changes.
Regional Experiences
The right experience, every time.
ConsentStack detects each visitor's location and resolves the correct consent model in real time. A visitor in Germany sees an opt-in banner. A visitor in California sees opt-out. A visitor in Texas sees a notice. One configuration handles all of it.
Intelligent consent mode
Each regulation maps to a consent model: opt-in, opt-out, or notice-only. ConsentStack resolves the strictest applicable model per visitor at the edge, so the experience is always regionally correct without any client-side logic or geo-lookup libraries.
Consent-model-aware rendering
The banner, preferences center, and controls adapt to the resolved consent model. Opt-in regions get accept and reject buttons. Opt-out regions default toggles on. Notice-only regions show a simple acknowledgment. The visitor sees exactly what their jurisdiction requires. Nothing more, nothing less.
Centralized policy management
One configuration governs every property. Update a consent rule, add a regulation, or adjust a category. Changes propagate to every site instantly. No per-domain rebuilds. No configuration drift.
Built for Builders
Lightweight, flexible, developer-ready.
The compliance engine runs at the edge. Fast, small, and invisible to your visitors. No heavy client-side bundles. No third-party domains. Just a script tag that does exactly what it needs to and gets out of the way.
Custom code
Ship custom CSS and JavaScript directly from your dashboard. Tweak styles, add behaviors, or extend the consent experience without touching your deployment pipeline and without going fully headless.
Headless mode
Strip out the UI entirely and use the compliance engine as a pure API. Query a visitor's resolved consent state, enforce category rules, and build your own consent experience, or integrate consent logic into native apps, server-side flows, or anywhere a banner doesn't belong.
React SDK
For teams building with React, a first-class component library that wraps the compliance engine with hooks and pre-built components. Full control over rendering, full access to consent state, full compliance logic handled for you.
100+ happy customers
Ready to launch consent that feels built in?
Set up a modern compliance in minutes, block scripts before consent, and stay compliant across regions without enterprise pricing or sales calls.