Configure Multi-Region Consent
Show GDPR opt-in banners to EU visitors and CCPA opt-out notices to California visitors — from a single property.
Step 1: Configure region rules
Property → Policy → Regions → Add Rule
Recommended setup for a global site:
| Region | Mode | Banner behaviour |
|---|---|---|
| EU / EEA | EU (GDPR) | Full opt-in banner, all categories |
| Brazil | EU (GDPR) | Full opt-in (LGPD requirement) |
| California, USA | US (CCPA) | "Do Not Sell" notice, opt-out only |
| Rest of World | None | No banner |
Step 2: Configure CCPA mode
For California visitors, enable the "Do Not Sell or Share My Personal Information" link:
Property → Banner → CCPA Settings → Enable Do Not Sell link
This adds a persistent link to your site (required by CCPA/CPRA).
Step 3: Test region detection
Use a VPN or browser extension to simulate different regions:
- Connect to a German IP → should see GDPR banner
- Connect to a California IP → should see CCPA notice
- Connect to an Australian IP → should see no banner (if configured)
Step 4: Allow region override
Enable the region override option so users can self-select their region:
Property → Banner → Preference Center → Show region selector → On
This is recommended for compliance — a user on a VPN who believes they're in the EU should be able to access GDPR-level controls.
Publish
After configuring region rules, publish a new policy version. The region rules are part of the policy and versioned alongside it.
See also: Regions