Notion

Notion

Notion public pages embedded on websites load via iframe or direct embed and execute Notion page rendering scripts. Scripts track page view events and load dynamic content from Notion servers; visitors accessing embedded Notion content are subject to Notion tracking practices.

Back to Vendor Library

Overview

Notion is a collaborative workspace platform used for documentation, project management, wikis, and knowledge bases. When organizations embed public Notion pages into their websites — via iframes or direct embeds — Notion's rendering engine loads and executes scripts on the visitor's browser to display the page content dynamically. This means visitors interact with Notion's infrastructure even though they're on your site.

Embedded Notion content is fetched from Notion's servers in real time, so each page load involves network requests to Notion domains. The platform is widely used by startups and teams as a lightweight CMS alternative, embedding changelogs, help docs, or product roadmaps directly into their marketing or product pages.

What This Script Does

When a Notion embed loads on your website, the following occurs:

  • Content rendering: Notion's JavaScript fetches page blocks, databases, and media from Notion's API and renders them in the visitor's browser.
  • Page view tracking: Notion records page view events for its own analytics, giving page owners insight into how many times embedded content is accessed.
  • Asset loading: Images, files, and other media hosted on Notion's CDN are fetched directly from Notion's servers, exposing visitor IP addresses and browser metadata to Notion infrastructure.
  • Dynamic content: Notion pages can include linked databases, toggles, and interactive elements that generate additional requests as visitors interact with the content.

Notion does not drop traditional tracking cookies on visitors, but the network requests themselves transmit standard browser information including IP address, user agent, and referrer to Notion's servers.

Consent & Compliance

From a GDPR and ePrivacy perspective, Notion embeds create a data-sharing scenario. Visitor IP addresses and browser metadata are transmitted to Notion (a third-party processor) with every page load. Under the GDPR, IP addresses are considered personal data.

However, Notion embeds typically serve a functional purpose — displaying documentation or content that is integral to the site experience. If the embedded content is genuinely necessary for the page to function as intended, a legitimate interest basis may apply. If the embed is supplementary (e.g., a changelog that could be hosted directly), the case for requiring consent is stronger.

Notion's own privacy policy governs how they handle data from embedded page views. Site operators should review this and consider whether a Data Processing Agreement is appropriate.

Should You Block This Without Consent?

Conditional. If Notion embeds serve core functional content on your site (like documentation or help articles), they can reasonably load without consent under legitimate interest. If they're used for supplementary content or if you want to minimize third-party data exposure, gating them behind consent is the safer approach.

Visit website

Consent Categories

Functional
Analytics

Also Known As

Notion embedNotion public pagesNotion widgetNotion integration

Industries

Computers Electronics and TechnologyProgramming and Developer SoftwareBusiness and Consumer ServicesMarketing and Advertising

Tracked Domains (2)

notion.soFunctional
notion.comFunctional

Frequently Asked Questions

Does embedding a Notion page on my website require visitor consent?

Notion embeds transmit visitor IP addresses and browser metadata to Notion's servers on every page load. If the embedded content is core to the page — such as documentation or help articles — legitimate interest may apply. Supplementary embeds should be gated behind consent.

What data does Notion collect from visitors who view embedded content?

Notion's rendering engine executes JavaScript that fetches page blocks from Notion's API, loads media from Notion's CDN, and records page view events. Each request exposes the visitor's IP address and browser metadata to Notion's infrastructure.

How does ConsentStack handle Notion embeds?

ConsentStack categorizes Notion as functional/analytics and can block embed scripts until consent is granted. This prevents Notion's rendering engine from loading, stopping data transmission to Notion's servers before the visitor has made a consent choice.

Related Vendors

Google Maps
Google Maps
Google Maps is the dominant web mapping service used for embedded maps and location features on websites. Scripts load interactive map tiles, geocoding, and Places API functionality through the Maps JavaScript API. May set cookies to remember map preferences and manage API quota.
Google Search
Google Search
Google Search appears on websites through the Programmable Search Engine, enabling custom site-specific search functionality. Scripts load the search widget from Google's servers to render search bars and display results within the host website. Sends search queries to Google's index and may set cookies for search personalization and query history.
Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Microsoft Teams
Microsoft Teams
Microsoft Teams is a workplace communication and collaboration platform that can be embedded on websites for chat, meetings, and document sharing. Embedded widgets load from Microsoft's servers to enable real-time messaging, video calls, and file collaboration. Sets authentication and session cookies to verify participant identity and maintain connection state.
Apple Maps JS
Apple Maps JS
Apple Maps JS is Apple's JavaScript mapping framework for embedding interactive maps on websites. Scripts load map tiles, location pins, and routing data from Apple's MapKit servers to render navigable maps within web pages. Requires a MapKit JS token for authentication but does not set tracking cookies or collect behavioral analytics data.
Apple Business Chat
Apple Business Chat
Apple Business Chat enables direct customer messaging between websites and Apple's Messages app. Scripts load chat buttons and conversation interfaces that connect visitors to business support agents through iMessage. Sets minimal session cookies to maintain conversation context but does not track browsing behavior or collect analytics data.

Manage consent for Notion

ConsentStack automatically detects and manages Notion trackers so your site stays compliant with global privacy regulations.

Get started