Learn how to display a CCPA/CPRA-compliant cookie banner in WordPress.
Since the introduction of the California Consumer Privacy Act (CCPA), privacy standards for businesses in California have significantly increased. The amendment of CCPA and the introduction of the California Privacy Rights Act (CPRA) have further elevated these standards.
Complying with privacy laws is no longer a choice but a necessity for businesses to operate legally and maintain customer trust. However, keeping up with legal requirements can be challenging, especially with ongoing amendments and updates.
Fortunately, numerous tools are available to help you comply with these regulations. Our WordPress Cookie Consent plugin is one of the most advanced consent management platforms for WordPress websites. It helps you comply with GDPR and CCPA requirements for using cookies on your website.
In this article, we will provide you with a detailed guide on how to create a CCPA/CPRA-compliant cookie banner on your WordPress website.
Key Takeaways:
- California Privacy Rights Act (CPRA) requires an opt-out consent mechanism for cookie compliance.
- Websites should provide a “Do Not Sell My Personal Information” link on the cookie banner.
- WebToffee GDPR Cookie Consent plugin deploys a cookie consent banner to comply with CPRA for WordPress websites.
Cookies are considered personal information under CPRA as they can be used to identify users or devices linked to them.
CPRA adopts an opt-out consent mechanism, which means websites can use cookies without asking for explicit consent but should provide users with an option to opt-out.
However, certain requirements must be met in order to use cookies, including cookie consent management. They are as follows:
- A clear and up-to-date privacy policy (or cookie policy) to disclose the use of cookies.
- Provide details on cookies, such as their name, purpose, source, and expiration date.
- Provide a “Do not sell my personal information” link or button to opt out of cookies.
- Manage, store, and secure personal data collected by cookies.
- Keep a consent log report with the details of cookies consent to, timeframe, etc.
- Allow cookie preferences to be accessed through a banner or button.
Now that you are aware of the requirements for using cookies in compliance with CPRA let’s dive in.
Learn more about CPRA: California Privacy Rights Act (CPRA) – A Comprehensive Guide for Businesses
Our GDPR Cookie Consent Plugin will help you deploy a CPRA-compliant cookie banner on your WordPress website.
Follow the below steps to create a CPRA cookie banner to manage cookie compliance in WordPress:
- Step 1: Install GDPR Cookie Consent Plugin by WebToffee
- Step2: Enable US State Law cookie banner
- Step 3: Choose a layout for CPRA banner
- Step 4: Customize the cookie banner
- Step 5: Previewing the cookie banner
Now, let’s dive into the details of each step.
Step 1: Install GDPR Cookie Consent Plugin by WebToffee
After purchasing the plugin, you can download the plugin zip file from the My account section.
- Now, log in to your WordPress dashboard and go to Plugins > Add New Plugin.
- Click on Upload Plugin to upload the plugin zip file.
- Then, install and activate the plugin.
Step 2: Enable US State Law Cookie Banner
- From your WordPress sidebar menu, go to Cookie Consent.
- Choose consent law as US State Laws. This helps you comply with different US State privacy laws, such as CCPA/CPRA (California), VCDPA (Virginia), CTDPA (Connecticut), CPA (Colorado), and UCPA (Utah).
- Check the Enable cookie banner checkbox.
- If you want to restrict the cookie banner only to US citizens, choose the Geo-target option for United States.
- Enable the Google Consent Mode checkbox if required. This supports Google’s Consent Mode v2 integration to comply with Google’s latest consent requirements.
- Expand the advanced settings dropdown.
- Enable the Reload page upon user consent checkbox. This will reload the page after users update their consent preferences.
- Then, copy the Do not sell script and add it to your website footer to show a “Do not sell my personal information” link on your footer.
Now, let’s proceed to the next step.
Step 3: Choose a Layout for CPRA Banner
- Go to the Layout tab in the Cookie Consent settings page.
- Choose a layout and style for the cookie banner and preference center.
Use the banner preview icon near the Update settings button to preview the banner.
Step 4: Customize the Cookie Banner
Go to the Content & Colors tab. The plugin will add the relevant message for the cookie banner per CPRA requirements. However, you can also edit or modify the text or title of the cookie banner.
You can also change the color of the background, border, and text. The plugin also allows you to add, edit, or modify additional elements on the cookie banner, like links to the cookie policy, consent preference center, revisit consent option, etc.
After making the necessary changes, click on Update settings to save the changes.
Step 5: Previewing the Cookie Banner
Go to your website homepage, and you will see the banner we just created.
Click on the Do Not Sell or Share My Personal Information link to opt out of cookies.
You can then select the Do Not Sell or Share My Personal Information checkbox and click the Save My Preferences button.
Now, you have successfully deployed a CPRA-compliant cookie banner on your WordPress website.
No, CPRA does not require websites to show a cookie banner. Instead, it requires websites to provide an opt-out mechanism for users to reject the collection and selling of their personal data using cookies.
The GDPR mandates an opt-in consent mechanism, requiring websites to obtain explicit user permission before placing cookies on their devices. In contrast, the CCPA follows an opt-out consent mechanism, where websites can load cookies without prior consent but must provide users with the option to opt-out.
The WebToffee GDPR Cookie Consent plugin is a cookie compliance tool for WordPress websites. It helps you comply with the EU’s GDPR and other US State laws such as CCPA/CPRA (California), VCDPA (Virginia), CTDPA (Connecticut), CPA (Colorado), and UCPA (Utah).
The steps outlined in this article will help you deploy a CPRA-compliant cookie banner on your WordPress website. It will manage your website’s cookie compliance with CPRA. However, to fully comply with CPRA, you should conduct a detailed audit of your data collection practices and seek legal advice from a professional.
Your website should also have a detailed and up-to-date cookie policy. If you don’t have one, the plugin discussed in this article will help you create one.
If you find this article helpful, drop your thoughts in the comments section below.