Know the law. Implement with confidence.
This section explains the legal ideas behind consent banners in plain language. The goal is not to drown site owners in legalese, but to make implementation choices easier and more defensible.
General Data Protection Regulation
Article 7 requires consent to be freely given, specific, informed and unambiguous. That means no tricks, no ambiguity and no silent opt-ins.
California Consumer Privacy Act
Even where the legal mechanics differ, users still need a clear way to understand choices and opt out of unnecessary tracking behavior.
Cookie rules before consent
The core principle is simple: non-essential cookies should not fire before the visitor has meaningfully chosen to allow them.
Three practical rules we follow
1. Necessary cookies should be separated clearly
Visitors should understand which cookies are essential for the site to function and which are optional analytics or marketing layers.
2. Accepting must not be easier than declining
A banner that nudges aggressively toward acceptance may look polished, but it weakens the legitimacy of the consent.
3. Performance matters to trust
If a compliance plugin slows the site down or loads unexplained third-party code, it introduces a different kind of trust problem.