ConsentPixel – Privacy · Verified

⚠️  Kind Law is actively scanning WooCommerce and Shopify stores for session replay tools in 2026.   Scan your site free →

LIVE · 3,500+ CIPA filings projected in 2026 alone

Your website is
probably wiretapping
your visitors.

Hotjar, FullStory, Clarity and Meta Pixel fire on your site before anyone consents. That's CIPA. That's $5,000 per violation. Law firms scan thousands of sites a day looking for exactly this.

One pixel in your <head> fixes it. No plugins. No developer. Any platform.

No credit card · cancel any time · works on every platform

Or paste your URL above — results in 10 seconds · no account needed

Google CMP Partner GDPR · CCPA · CIPA IAB TCF 2.2 ★★★★★ 4.9 from 127 reviews
ConsentPixel — Dashboard
Clean
Risk status
94%
Accept rate
0
Violations
Trackers — blocked until consent
Hotjar
Session Recording
CIPA risk — blocked
Google Analytics 4
Analytics
Blocked until consent
Meta Pixel
Marketing
Blocked until consent
Intercom
Functional
Always allowed
✅ Your site is fully protected. Last scanned 2 hours ago.
3,500+
CIPA filings projected in 2026
$5,000
Statutory damages per violation
1,500+
Lawsuits filed in 18 months
675
CIPA filings in 2024 alone
The problem

Plaintiff firms are scanning your site right now.

Kind Law, Swigart Law Group, and Pacific Trial Attorneys run automated crawlers that visit thousands of websites daily, logging every session replay script that fires before a consent event. If they find your site, a demand letter arrives via FedEx.

CIPA Section 631 carries $5,000 in statutory damages per violation — typically per session or per page load. 1,000 monthly California visitors × unconsented Hotjar = $5M in theoretical exposure.

Hotjar
CIPA §631 — session keystroke capture
Microsoft Clarity
CIPA §631 — mouse & click recording
FullStory
CIPA §631 — form field interception
Meta Pixel
CIPA §638.51 — pen register theory
Google Analytics
CCPA — sale/sharing without consent
kind-law-scanner.sh — yoursite.com
$ crawl --target yoursite.com --cipa
→ Visiting page (no cookies, fresh session)...
→ REQUEST: static.hotjar.com/c/hotjar-5.js
→ REQUEST: script.hotjar.com/modules/acq.js
→ REQUEST: www.clarity.ms/s/0RJ4L...
→ REQUEST: www.googletagmanager.com/gtm.js
→ Consent banner found: NONE
→ Pre-consent CIPA violations: 2 tools
 
✓ Added to demand letter queue.
✓ Est. CA exposure: $4.2M statutory
⚠️ This is real. Kind Law and Swigart Law Group run automated scanners on consumer-facing sites. Settlements range from $10,000 to $200,000+.
The solution

One line of code. Complete protection.

Paste one script in your <head> and ConsentPixel handles everything — on every platform, automatically.

Paste once in <head> — never touch againCopy
<script src="https://cdn.consentpixel.com/p.js?id=YOUR_ID" async></script>
🛡
Blocks trackers before consent
Scripts physically cannot fire until the visitor chooses. MutationObserver + fetch intercept — not just a tag manager toggle.
CIPA session replay protection
Hotjar, FullStory, Clarity, Lucky Orange auto-detected and blocked. The exact tools plaintiff firms scan for.
🔍
Active site scanner
We crawl your site as a fresh visitor weekly and report everything firing without consent — before the lawyers do.
📄
Auto-generated legal docs
Privacy policy, T&C, and cookie policy from your actual scan results — not a generic template. Hosted at a permanent URL.
🏅
Verified trust badge
A real-time badge on your site. Green when clean, amber when action needed. Updates automatically after every scan.
🔔
Instant CIPA alerts
New session replay tool detected? You're texted immediately — before Kind Law's scanner adds you to the queue.
⚖️
All regulations — auto-detected
GDPR opt-in for EU, CCPA opt-out for California, correct banner for every US state. No configuration needed.
📊
Consent audit logs
Every visitor decision stored with timestamp, banner version, regulation, and geography. Your legal defence, forever.
🏢
Agency white-label
Manage unlimited client sites under your brand. Sell compliance as a service — your logo, your portal, your reports.

Works on every platform — one script tag, no plugins ever

Already on your platform. Already protecting your site.

WordPress
Shopify
WooCommerce
Wix
Squarespace
Webflow
BigCommerce
Magento
Kajabi
Framer
Ghost
Drupal
Joomla
Any HTML site
🔌
Zero plugins, ever
No WordPress plugin to install. No Shopify app to approve. One <script> tag in your theme's <head> is all it takes — permanently.
Under 8kb — invisible to visitors
Loads async from Cloudflare's global edge in under 50ms. Your Core Web Vitals are completely unaffected.
🔄
Auto-updates without touching code
New regulation? New threat pattern? We push updates from our CDN. Your site gets the latest protection automatically.
How it works

Up and running
in 10 minutes.

1
Paste one script tag in your HEAD
Copy your personalised snippet from the portal. That's the only code change you'll ever need to make.
2
We scan your site instantly
Our crawler visits as a fresh visitor, maps every tracker and cookie, and shows exactly what's firing without consent.
3
Configure your banner in minutes
Visual banner builder — no code. Choose your regulation mode, customise colours and text, publish in one click.
4
Stay protected automatically
24/7 monitoring. New tracker detected? Immediate SMS alert. Regulation changes? Banner updates itself. You do nothing.
Privacy Verified
● LIVE
Protected domain
yourwebsite.com
Last scan
2 hours ago
Risk level
Clean ✓
Regulations
GDPR, CCPA, CIPA
Trackers blocked
14 tools
✅ No violations detected. Consent layer active.
Certificate #CP-4F9A2B · Valid 90 days Download PDF
For agencies

Sell compliance.
Keep the margin.

Manage all your client sites under your brand — priced fairly based on how many you run. Most agencies charge clients $50–100/month for compliance management.

Agency Lite — 25 client sites
You charge clients25 × $75/mo = $1,875
You pay ConsentPixel$199/month (up to 25 sites)
Your net revenue$1,676 / month
🏷
White-label portal
Your brand, your domain. Clients see your agency name — not ConsentPixel.
📋
Portfolio dashboard
All client sites in one view. Risk scores, badge status, alerts — at a glance.
📑
Branded compliance reports
Monthly PDF reports with your logo. Send as your own deliverable.
👥
Client read-only access
Share a login so clients can see their own compliance status directly.
💸
30% referral commission
Refer other agencies — earn 30% recurring on everything they pay. Forever.
Pricing

Less than a coffee.
Way less than a lawyer.

14-day free trial on all plans. No credit card required.

🎉 Save up to $99/year
Starter
$99.99/domain/yr
≈ $8.25/domain/month
Billed annually · save vs monthly

Pay only for the domains you protect. Perfect for solo site owners.

Start 14-day free trial
What's included
  • GDPR, CCPA, CPRA compliant banner
  • Google Consent Mode v2
  • Consent audit log (90 days)
  • Auto-generated privacy policy
  • Privacy · Verified trust badge
  • Weekly compliance scan
  • Email alerts on scan failures
Most popular
Growth
$249.99/yr
≈ $20.83/month · 3 domains included
Billed annually · save $99 vs monthly

3 domains included. Add up to 10 domains total at $59.99/domain/yr each.

Start 14-day free trial
Everything in Starter, plus
  • Up to 10 domains flat rate
  • Daily compliance scans
  • PDF compliance reports
  • Consent log (12 months)
  • Custom banner branding
  • CIPA session recording protection
  • Priority email support
🏛
Enterprise — custom pricing
250+ domains · EU data residency · SLA guarantee · SSO · dedicated support · custom DPA · security review
Typically responds within 1 business day

All plans include a 14-day free trial · No credit card required · Cancel any time

Google CMP Partner certified IAB TCF 2.2 registered GDPR · CCPA · CIPA · all US state laws Works on every platform
From our customers

Fixed before the lawyers showed up.

"Got a FedEx letter from Swigart Law on a Tuesday. Had ConsentPixel installed by Thursday. My attorney said it was exactly the right move — we now have a consent log for every California visitor."

SK
Sarah K.
E-commerce store owner, Los Angeles

"I had no idea Hotjar was recording keystrokes on my checkout page without consent. ConsentPixel's scanner found it in 30 seconds. This should be mandatory for every Shopify store."

MT
Marcus T.
Shopify merchant, San Francisco

"We manage 40 client sites. ConsentPixel's agency plan replaced three different tools. Now I send branded compliance reports every month — clients genuinely think it's our own product."

PR
Priya R.
Founder, digital agency, New York
Start today — free

Find out what's firing on your site before Kind Law does.

Free scan. No account needed. Results in 10 seconds.

🔍

14-day free trial · No credit card · Works on WordPress, Shopify, Webflow, or any HTML

Frequently asked questions

Common questions answered

Everything you need to know. Cannot find what you need? Contact us

What is ConsentPixel — Privacy · Verified?+
ConsentPixel is a universal consent management platform delivered as a single JavaScript pixel. Paste one script tag into your site's head and it automatically blocks unauthorised trackers, shows a compliant consent banner, and logs every visitor consent decision. It covers CIPA, GDPR, CCPA, and all major US state privacy laws from a single install.
What is CIPA and why does my website need to worry about it?+
The California Invasion of Privacy Act (CIPA) is a 1967 wiretapping statute courts now apply to website tracking tools. If your site runs Hotjar, FullStory, or Microsoft Clarity without consent, you face $5,000 in statutory damages per violation with no proof of harm required. Plaintiff law firms actively scan websites for these tools. ConsentPixel blocks them before consent fires, eliminating the violation.
Does it work on WordPress, Shopify, and Webflow?+
Yes. ConsentPixel works on any platform that allows a script tag in your head: WordPress, Shopify, Webflow, Squarespace, Wix, Next.js, or raw HTML. No plugins, no app store approvals, no developer required. One script tag, one time.
How long does installation take?+
About 10 minutes. Copy your pixel snippet from the portal, paste it as the first item in your site head tag, configure your banner in the visual builder, and publish. The banner goes live within 60 seconds of publishing. Your portal automatically detects the pixel within 2 to 5 minutes.
Is there a free trial?+
Yes — 14 days free, no credit card required. All Starter plan features are accessible from day one. You can scan your site, publish a consent banner, and start logging consent decisions without entering any payment details.
What makes ConsentPixel different from Cookiebot or CookieYes?+
ConsentPixel was built CIPA-first — it includes a named blocklist of the specific session replay tools (Hotjar, FullStory, Clarity) that plaintiff firms scan for, and blocks them at the browser level. It also includes an active Playwright scanner that visits your site the way Kind Law does — fresh session, no cookies — and alerts you before they find something.
Does ConsentPixel collect or sell visitor data?+
Never. Under our Trust Charter, we will never sell, share, or monetise visitor consent data. Consent logs exist solely to give you a legally defensible audit trail. Visitor identifiers are SHA-256 hashed — raw IP addresses are never stored.
What regulations does ConsentPixel cover?+
GDPR for EU/EEA/UK visitors, CCPA/CPRA 2026 for California, CIPA sections 631 and 638.51, VCDPA for Virginia, CPA for Colorado, TDPSA for Texas, FDBR for Florida, and IAB TCF 2.2. The pixel detects each visitor's jurisdiction automatically and serves the correct banner — no manual configuration per country required.
Scroll to Top