Urgent—Jan 2026 enforcement

GPC Compliance for WooCommerce

Server-side consent enforcement and GPC signal detection for WooCommerce stores.

Coming to WordPress.org soon Buy Pro—coming soon

Generic consent banners don't stop WooCommerce checkout events from firing. This plugin intercepts at the server level, honors GPC browser signals, and produces an audit trail California CPRA requires by Jan 2026.

Free vs. Pro

Free

$0

Download on WordPress.org

  • Detects Sec-GPC header and navigator.globalPrivacyControl
  • Blocks WooCommerce GA and Meta Pixel integrations when consent denied
  • Basic consent banner (accept/reject)
  • Opt-out confirmation on WooCommerce thank-you page
Coming to WordPress.org soon
Pro

$149

/year

Agency license: $299/year (unlimited sites)

Everything in Free, plus:

  • Server-side enforcement for GTM, Facebook Pixel, TikTok, Bing Ads
  • Timestamped IP-logged audit trail for legal evidence
  • Monthly compliance report (CSV export)
  • Multi-state consent matrix by visitor state (GeoIP)
  • Google Consent Mode v2 dataLayer integration
Coming soon
Technical requirements
WordPress
6.4+
WooCommerce
8.0+
PHP
8.1+
HPOS-compatible Block checkout ready Freemius-powered licensing

Reviews will appear here once the plugin is live on WordPress.org.

FAQ

What is GPC (Global Privacy Control)?

GPC is a browser-level signal (Sec-GPC header) that tells websites the user doesn't want their data sold or shared. California's CPRA and Colorado's CPA require businesses to honor it as a valid opt-out from July 2023.

Do I need this if I already have a cookie consent banner?

Probably yes. Most consent banners only block client-side scripts they control. WooCommerce itself fires tracking events at the server level that banners miss. This plugin closes that gap.

Does this replace a cookie consent plugin?

No—it complements one. Use a consent banner (Complianz, CookieYes, etc.) for GDPR/ePrivacy cookie consent, and this plugin for GPC signal detection and server-side WooCommerce enforcement.

What's new

v1.2.0

2025-06-01

  • - Added Google Consent Mode v2 dataLayer push
  • - GeoIP multi-state matrix now supports Virginia, Colorado, Connecticut
  • - Audit trail export now includes customer email (hashed)

v1.0.0

2025-02-15

  • - Initial release with GPC header detection and basic consent banner

Questions about GPC Compliance for WooCommerce?