COOKIES. CONSENT. COMPLIANCE
Schedule a Demo
secure privacy badge logo
Regulations
EUROPE
GDPR (EU) UK DPA (United Kingdom) FADP (Switzerland) NewDPA (Norway)

View All

North America
PIPEDA (Canada) CCPA/CPRA (California) CPA (Colorado) VCDPA (Virginia)

View All

Middle East
PDPL (UAE) DIFC DPA (Dubai) PDPL (Saudi Arabia) KVKK (Turkey)

View All

Asia
PIPA (South Korea) NewPIPL (China) Data Privacy Act 2012 (Philippines) PDPA (Singapore)

View All

Central and South America
LGPD (Brazil) DPL (Colombia) Personal Data Protection Law (Argentina) LSPDP (Panama)

View All

Africa
POPIA (South Africa) Law no.09-08 (Morocco) LPDP (Egypt) DPA (Kenya)
Oceania
APP (Australia) Privacy Act (New Zealand)
Features
Cookie BannersPreference CenterCookie & Website ScannerConsent LoggingData Subject Request FormsCookie PolicyPolicy CenterLegal Templates70+ Language Support
Cookie Banners
Integrations
HubspotWordpressMagentoAdobe Tag ManagerWixShopifyDrupalGoogle Tag ManagerWeeblySquarespaceWebviewSitecoreUmbracoJoomlaBigcommerceGoogle Consent ModeAdobe LaunchTealium IAB TCF v2.2
Hubspot badge
Pricing
Partner
Resources
BlogSupportContact UsDocsRequest DemoTraining & CertificationGDPR Website Scanner
June 23, 2019

How to block cookies and trackers with JavaScript rewrite

This guide explains you how to block cookies and plugins with Secure Privacy using Javascript rewrite.

To block cookies and trackers you need to change the attributes of the script tags on your website. Follow these steps to change the attributes.

  1. Apply the attribute sp-consent="PLUGIN NAME" to the script/image tags on your website. Depending on where you have installed the plugins, this may be inside a module, plugin or directly on your website. Make sure that you write the exact plugin name, which appears on your Scan Report.
  2. On script tags change the attribute 'type' from 'text/javascript' to 'text/plain'.
  3. If you are using a pixel tracker (image trackers), then change the attribute “src” from “src” to “data-src”.

Here is an example of how it would look after you have modified a Google Analytics script.

Normal script tags look like this:

<script type="text/javascript"> code…

</script>

Using script type re-writing, you need to change the scripts to:

​<script type="text/plain" sp-consent="Google Analytics"> code…

</script>

Schedule a call to learn more

image

Mobile App Privacy Compliance Guide: GDPR, CCPA & Beyond

Your app is live. Downloads are growing. Then someone in legal asks: "What happens when an analytics SDK fires before the consent banner resolves?" You review the network logs and discover that device identifiers are being transmitted to three different ad networks within 200 milliseconds of app launch — before a single user has touched the consent interface. The banner looked correct. The underlying behavior was not. That gap is where enforcement happens.

  • Mobile Consent
image

Data Residency Requirements: EU vs US Explained

Your SaaS platform serves users in Germany, France, and California. Your infrastructure runs on AWS us-east-1. Your analytics vendor is headquartered in San Francisco. Your customer support tool uses a helpdesk provider with data centers in Virginia. Each of these arrangements involves the transfer or storage of personal data in ways that intersect with two fundamentally different regulatory philosophies — and the cost of misunderstanding those differences is climbing. Meta's €1.2 billion fine for unlawful EU-US data transfers remains the largest single GDPR penalty on record. TikTok absorbed €530 million in 2025 for failing to protect EEA user data from unauthorized access in China. Cumulative GDPR fines have now passed €7.1 billion.

  • Data Protection
  • Privacy Governance
image

California AI Regulations 2026: A Practical Compliance Guide

Your engineering team shipped a new AI feature three months ago. It screens job applicants, ranks them by predicted fit, and surfaces a shortlist for the hiring manager. Nobody called it "regulated."

  • Data Protection
  • AI Governance