Title: KaaTai Consent Manager Author: kaatai Published: April 17, 2026 Last modified: April 29, 2026 --- Search plugins ![](https://ps.w.org/kaatai-consent-manager/assets/banner-772x250.png?rev=3508876) ![](https://ps.w.org/kaatai-consent-manager/assets/icon-256x256.png?rev=3508876) # KaaTai Consent Manager By [kaatai](https://profiles.wordpress.org/kaatai/) [Download](https://downloads.wordpress.org/plugin/kaatai-consent-manager.3.35.3.zip) * [Details](https://wordpress.org/plugins/kaatai-consent-manager/#description) * [Reviews](https://wordpress.org/plugins/kaatai-consent-manager/#reviews) * [Installation](https://wordpress.org/plugins/kaatai-consent-manager/#installation) * [Development](https://wordpress.org/plugins/kaatai-consent-manager/#developers) [Support](https://wordpress.org/support/plugin/kaatai-consent-manager/) ## Description KaaTai Consent Manager is a **privacy-first cookie consent plugin built specifically for the German and DACH market** (Germany, Austria, Switzerland). It gives your visitors full control over cookies and tracking scripts — while keeping you compliant with DSGVO, TDDDG, and ePrivacy. Unlike international tools that try to cover 100+ countries, KaaTai focuses on doing one thing well: **GDPR compliance for German websites**. The cookie database, legal text templates, vendor presets, and compliance checks are all tailored to German law. The admin interface is available in German and English. #### Cookie Consent Banner * Customizable consent banner with 3 layouts: Bottom Bar, Centered Popup, Corner Box * All design settings free for all plans: colors, overlay, border radius, spacing, box shadow * Responsive design — works on desktop, tablet, and mobile * WCAG 2.1 compliant: ARIA roles, focus trap, keyboard navigation, semantic HTML * No jQuery dependency — lightweight vanilla JavaScript * Cache-safe: works correctly with all popular caching plugins #### Content Blocking * Automatically blocks YouTube, Vimeo, Facebook, Instagram, and Spotify embeds until consent * Blocks Google Maps and OpenStreetMap iframes * Shows privacy-friendly placeholders with click-to-load buttons * MutationObserver detects and blocks dynamically injected content * Auto Script Blocker detects and blocks tracking scripts from third-party plugins( 67 known services) #### Consent Management * Google Consent Mode v2 — always enabled, sends proper signals to GTM, GA4, and Google Ads * Granular consent — visitors can accept/reject individual vendors, not just categories * 5 cookie categories: Essential, Functional, Statistics, Marketing, Performance * Consent choices persist across sessions and can be withdrawn at any time * Consent logging with unique record IDs for GDPR Art. 7(1) compliance (36-month retention) * Global Privacy Control (GPC) — automatically honors browser-level privacy signals #### Legal Text Generator * Impressum generator — all mandatory fields per German law (TMG/DDG) * Privacy policy generator — covers all 14 items required by GDPR Art. 13 * Shortcodes: [kccm_impressum] and [kccm_datenschutz] for easy page integration * Data for responsible person (Verantwortlicher) stored locally — no external service needed #### Vendor Registry * Pre-configured database of 66+ common services with accurate cookie descriptions * Google Analytics, Meta Pixel, Microsoft Clarity, YouTube, Google Maps, and many more * 1-click install from the service catalog * Custom vendor support — add your own services with cookie details #### Setup Wizard * 4-step guided setup: General Settings, Responsible Person, Select Services, Banner Design * Live banner preview during setup * Works without an API key — no account required for basic features #### Built for the German Market The cookie database, legal text templates, and compliance checks are tailored to GDPR/DSGVO, TDDDG, and ePrivacy requirements as they apply in Germany. International expansion is planned — the plugin architecture is fully translatable and locale- aware. #### Integrations KaaTai Consent Manager works with the most popular WordPress plugins and services: * **Analytics:** Google Analytics, Google Tag Manager, Matomo, Piwik PRO, Microsoft Clarity, Plausible, Fathom * **Marketing:** Meta Pixel (Facebook), Google Ads, Taboola, Outbrain, Awin, Tradedoubler * **Embeds:** YouTube, Vimeo, Google Maps, OpenStreetMap, Facebook, Instagram, Spotify * **E-Commerce:** WooCommerce (Checkout Banner mode, one-click setup) * **Chat & Support:** Tidio, Crisp, Zendesk, Drift, LiveChat * **Security:** Google reCAPTCHA, Cloudflare, hCaptcha * **Payments:** PayPal, Klarna * **Other:** HubSpot, Twitter/X Pixel, Snap Pixel, Gravatar, Site Kit by Google #### Premium Features (optional SaaS) Connect to the **KaaTai Consent Manager** dashboard to unlock additional features. The SaaS integration is entirely optional — the plugin works fully standalone. Pricing per domain, incl. 19% VAT: **Free (0 EUR):** * Cookie banner with all designs and layouts * Local consent logging * Vendor registry (4 vendors) * Content blocking (YouTube, Maps, etc.) * Google Consent Mode v2 **Starter (1,90 EUR/month):** * 66+ vendor presets * Banner logo upload * Cookie scanner (local JS scan) * Impressum generator * Auto script blocker * White-label (remove branding) * Ticket support **Business (2,49 EUR/month):** * Privacy policy generator (via SaaS) * Playwright deep scan * Audit scanner with compliance score * WooCommerce presets * Central consent logging * Multi-domain support **Pro (2,90 EUR/month):** * Analytics dashboard (consent trends, geo data) * Conversion impact calculator #### Useful Links * [Plugin Homepage](https://consent-management.kaatai.de) * [Documentation](https://consent-management.kaatai.de/docs) * [Support](https://wordpress.org/support/plugin/kaatai-consent-manager/) * [GitHub](https://github.com/kahramanatalay/consent-by-kaatai) * [Translate KaaTai Consent Manager](https://translate.wordpress.org/projects/wp-plugins/kaatai-consent-manager) #### About KaaTai KaaTai Consent Manager is developed by **KaaTai** in Germany. We believe that GDPR compliance should be simple, affordable, and accessible to every website owner — not just enterprises with legal departments. Our goal is to be the best cookie consent solution for the German-speaking market. ### External Services #### Third-party service references (detection patterns, NOT dependencies) This plugin is a **Consent Management Tool**. Its purpose is to detect, categorize, and block third-party tracking scripts until the visitor gives consent. The plugin contains a database of known tracking services with their hostnames and script patterns. These references are **identification patterns only**. The plugin does **not** load, connect to, or transmit any data to these services. It uses the patterns to recognize scripts already present on your site and block them until consent is granted. The following services are referenced as detection patterns: * **Google Analytics** — detected and blocked until “statistics” consent. [Privacy Policy](https://policies.google.com/privacy), [Terms](https://policies.google.com/terms) * **Google Tag Manager** — detected and blocked until “marketing” consent. [Privacy Policy](https://policies.google.com/privacy), [Terms](https://policies.google.com/terms) * **Meta Pixel (Facebook)** — detected and blocked until “marketing” consent. [Privacy Policy](https://www.facebook.com/privacy/policy/), [Terms](https://www.facebook.com/legal/terms) * **Cloudflare** — detected and categorized as “essential”. [Privacy Policy](https://www.cloudflare.com/privacypolicy/), [Terms](https://www.cloudflare.com/website-terms/) * **Google reCAPTCHA** — detected and categorized as “functional”. [Privacy Policy](https://policies.google.com/privacy), [Terms](https://policies.google.com/terms) * **Piwik PRO / Matomo** — detected and blocked until “statistics” consent. [Privacy Policy](https://piwik.pro/privacy-policy/) * **Microsoft Clarity** — detected and blocked until “statistics” consent. [Privacy Policy](https://privacy.microsoft.com/privacystatement), [Terms](https://www.microsoft.com/licensing/terms) No data is sent to any of these services by this plugin. #### KaaTai Consent Manager SaaS (optional, requires API key) This plugin optionally connects to servers operated by **KaaTai** (`consent-management. kaatai.de`). These connections are **only made when the site administrator has entered an API key**. Without an API key, no external connections occur. **Service:** KaaTai Consent Manager SaaS **Service URL:** [https://consent-management.kaatai.de](https://consent-management.kaatai.de)** What it does:** License validation, consent analytics, cookie scanner, service library, legal text generation. **What data is sent:** API key, domain, consent configuration, anonymized consent events (no PII), scan results. **Privacy Policy:** [https://consent-management.kaatai.de/datenschutz](https://consent-management.kaatai.de/datenschutz)** Terms of Service:** [https://consent-management.kaatai.de/agb](https://consent-management.kaatai.de/agb) #### Data transmitted when an API key is configured 1. **License Validation** (`/api/license/validate`) — API key sent to verify license status and features. Cached for 24 hours. 2. **Config Sync** (`/api/consent/config`) — Consent configuration sent when settings are saved. No personal visitor data. 3. **Consent Events** (`/api/consent/event`) — Anonymized consent events via sendBeacon(). Contains: action, categories, hashed session ID, policy hash. No PII. 4. **Legal Texts** (`/api/legal/impressum`, `/api/legal/privacy-policy`) — Legal text content fetched from SaaS. Cached for 24 hours. 5. **Newsletter** (`/api/newsletter/subscribe-by-key`) — Only when administrator clicks“ Subscribe”. 6. **Scanner** (`/api/scan/results`) — Scan results synced to SaaS dashboard (Business plan+). 7. **Cookie Definitions** (`/api/cookies/definitions`) — Cookie descriptions fetched for Service Library. #### Data stored on the external server * License/API key association and plan details * Aggregated consent statistics (no personal data) * Consent configuration snapshots * Scan results (URLs and detected services) #### User consent The site administrator gives explicit consent by entering and saving an API key. The API key can be removed at any time to stop all external communication. ## Screenshots * [[ * Cookie consent banner (Bottom Bar layout) with accept/reject buttons and legal links * [[ * Cookie banner with “Einstellungen” link for granular consent control * [[ * Admin — General settings with language selector and GDPR compliance options * [[ * Admin — License tab for API key and SaaS integration * [[ * Admin — Cookie scanner with website scan and audit features * [[ * Content blocking — YouTube embed with cookie banner overlay (before consent) * [[ * Admin — Main settings page with Consent Mode v2 info and configuration * [[ * Admin — Services and categories with vendor registry (109 known services) * [[ * Admin — Banner design editor with live preview and theme options * [[ * Admin — Privacy tab with responsible person form (GDPR Art. 13) ## Installation #### Automatic Installation 1. Go to **Plugins > Add New** in your WordPress admin 2. Search for “KaaTai Consent Manager” 3. Click **Install Now**, then **Activate** #### Manual Installation 1. Download the plugin ZIP file 2. Go to **Plugins > Add New > Upload Plugin** 3. Upload the ZIP file and click **Install Now** 4. Activate the plugin #### After Activation 1. The setup wizard starts automatically — follow the 4 steps 2. Configure your site name, language, and responsible person 3. Select which services (vendors) your site uses 4. Customize the banner design and preview it live 5. Done! The cookie banner appears on your frontend No API key needed for basic features. Enter a KaaTai API key on the **License** tab to unlock premium features. ## FAQ ### Do I need an API key to use this plugin? No. The plugin works fully without an API key. The Free tier includes the cookie banner, local consent logging, vendor registry, content blocking, and Google Consent Mode v2. An API key unlocks additional features like the cookie scanner, legal text generator, analytics, and central logging. ### Does this plugin connect to external services? Only if you enter an API key. Without an API key, **no external connections are made**. When an API key is configured, the plugin communicates with `consent-management. kaatai.de` for license validation, config sync, and consent event tracking. See the External Services section below for full details. ### Is this plugin GDPR/DSGVO compliant? Yes. The plugin is designed for GDPR, DSGVO, TDDDG, and ePrivacy compliance: * No cookies are set before consent is given * Consent choices are stored locally and can be withdrawn at any time * Consent logs are retained for 36 months per GDPR Art. 7(1) * Global Privacy Control (GPC) signals are automatically honored * All consent records include unique IDs for audit trails * Legal text generator covers all 14 items required by GDPR Art. 13 ### Does the plugin support Google Consent Mode v2? Yes. Google Consent Mode v2 is always enabled and sends proper consent/denial signals to Google Tag Manager, GA4, and Google Ads. No additional configuration needed. ### Can I customize the banner appearance? Yes. All banner design settings are free for all plans: colors, positions, layouts, overlay, border radius, spacing, box shadow, and custom CSS. Only logo upload requires a Starter plan or higher. ### Does it block YouTube and other embeds? Yes. The plugin automatically detects and blocks YouTube, Vimeo, Google Maps, OpenStreetMap, Facebook, Instagram, and Spotify embeds until consent is given. A privacy-friendly placeholder with a click-to-load button is shown instead. ### Is this plugin only for German websites? The plugin is currently optimized for the German/DACH market. Legal text templates and compliance checks are tailored to German law (DSGVO, TDDDG). The plugin works on international sites too, but some presets and legal texts are German-focused. International expansion is planned. ### Does it work with WooCommerce? Yes. The plugin includes a Checkout Banner mode (minimal single-line banner) and a one-click e-commerce setup that automatically configures the right cookie categories for WooCommerce shops. ### What PHP and WordPress versions are supported? PHP 7.4 or higher and WordPress 5.8 or higher. Tested up to WordPress 6.9 and PHP 8.3. ### Where can I get support? Free support is available on the [WordPress.org support forum](https://wordpress.org/support/plugin/kaatai-consent-manager/). Starter plan and above include ticket support. ## Reviews There are no reviews for this plugin. ## Contributors & Developers “KaaTai Consent Manager” is open source software. The following people have contributed to this plugin. Contributors * [ kaatai ](https://profiles.wordpress.org/kaatai/) [Translate “KaaTai Consent Manager” into your language.](https://translate.wordpress.org/projects/wp-plugins/kaatai-consent-manager) ### Interested in development? [Browse the code](https://plugins.trac.wordpress.org/browser/kaatai-consent-manager/), check out the [SVN repository](https://plugins.svn.wordpress.org/kaatai-consent-manager/), or subscribe to the [development log](https://plugins.trac.wordpress.org/log/kaatai-consent-manager/) by [RSS](https://plugins.trac.wordpress.org/log/kaatai-consent-manager/?limit=100&mode=stop_on_copy&format=rss). ## Changelog #### 3.35.3 — April 29, 2026 * Fix: GTM checklist — added GA4 (most common GTM use case), removed YouTube (not a GTM service) * Fix: GTM checklist vendor ID corrected (ga4 instead of google_analytics) * New: 7 privacy policy text blocks for marketing services (Meta Pixel, Google Ads Remarketing, LinkedIn Insight, Pinterest Tag, TikTok Pixel, Twitter/X Pixel) * Fix: Vendor toggle now creates vendor from preset catalog if not in database ( upsert) * Fix: Meta Platforms Ireland address updated (Merrion Road, Dublin 4) * Fix: Twitter/X privacy URL unified #### 3.35.1 — April 21, 2026 * Fix: Store version was deployed without build step — premium code markers were active in WP.org release * Fix: Free users saw license key prompt in setup wizard (should only appear in premium version) * Fix: Sidebar badges showed plan levels (Starter/Business/Pro) instead of unified“ Premium” label * Fix: kccm_has_feature() used premium API path instead of store feature map — all features incorrectly disabled #### 3.35.0 — April 16, 2026 * Remove: Custom CSS field removed from store version (WP.org guideline compliance) * Remove: Script integration textareas removed from store version * Fix: Last inline style tag replaced with wp_add_inline_style and JS class approach * Fix: Legacy ccm_ shortcode aliases removed — only kccm_ prefixed shortcodes * New: 5 additional design options — button text color, link color, overlay opacity, box shadow, banner spacing #### 3.34.0 — April 12, 2026 * Refactor: Store-Plugin uses KCCM_IS_STORE compile-time constant — all local features fully functional without API key * Refactor: Premium-only files physically removed from store build * Docs: External Services section documents all referenced third-party detection patterns * Fix: Premium build gets -premium version suffix to distinguish from store version #### 3.33.0 — March 27, 2026 * Refactor: Plugin slug migrated from consent-by-kaatai to kaatai-consent-manager * Refactor: Code prefix migrated from ccm_ to kccm_ (4+ character prefix per WP. org requirement) * Refactor: All inline scripts and styles migrated to wp_add_inline_script/style * Fix: DB migration for ccm_ to kccm_ prefix (options, transients, user meta) #### 3.32.0 — March 19, 2026 * Security: Input sanitization hardened — all $_GET/$_COOKIE wrapped with sanitize_text_field * Security: Nonce checks and cookie JSON data sanitization improved * Refactor: Removed build-time premium flag in favor of runtime feature gates #### 3.30.0 — March 6, 2026 * Feature: Status tab — new setup step for responsible person (GDPR Art. 13 check) * Feature: Precise error message when privacy policy cannot be generated * Fix: DSE section numbering, X-Button banner close #### 3.29.4 — February 28, 2026 * Feature: Wizard Free version — new responsible person step with GDPR Art. 13 form * Feature: Auto-Blocker — 17 new patterns (Tidio, Crisp, Zendesk, PayPal, Klarna, and more) * Style: All wizard and admin buttons use unified gold design #### 3.28.0 — February 20, 2026 * Feature: Store vs Premium build separation * Feature: Auto-Blocker own admin tab with per-vendor toggles * Feature: Branding toggle (Powered by hide, local, no SaaS required) * Fix: Uninstall cleanup — 11 missing options + 2 transients #### 3.27.3 — February 15, 2026 * Security: SSRF protection, IP spoofing hardening, rate-limit improvements * Security: CSV export limited to 100,000 rows against memory exhaustion #### 3.27.2 — February 13, 2026 * Accessibility: Decorative icons marked with aria-hidden, color-picker labels linked, scanner aria-live region #### 3.27.0 — February 10, 2026 * Fix: Banner stays visible after accepting on cached pages — cache-safe Early- Hide * Fix: OpenStreetMap blocking extended (osm.org, openstreetmap.de) * Fix: Cookie set with Secure flag on HTTPS sites * Accessibility: WCAG AA color contrast and focus-visible on all interactive elements #### 3.26.0 — February 1, 2026 * Feature: Auto Script Blocker — automatically blocks known tracking scripts from third-party plugins * Feature: Runtime Engine — activates blocked scripts upon consent #### 3.25.0 — January 25, 2026 * Feature: Audit Scanner mode — detect compliance gaps after setup * Feature: Compliance score with color-coded report #### 3.24.0 — January 15, 2026 * Feature: Service Library — on-demand service catalog with 1-click install #### 3.23.0 — January 10, 2026 * Feature: 4 new embed blockers — Vimeo, Facebook, Instagram, Spotify #### 3.20.0 — December 2025 * Feature: WooCommerce Checkout Banner mode * Feature: One-Click E-Commerce Setup #### 3.18.0 — November 2025 * Feature: Legal Generator — Privacy policy HTML generation (GDPR-compliant) #### 3.17.0 — November 2025 * Feature: Legal Generator — Local Impressum HTML generation #### 3.15.0 — October 2025 * Rename: Plugin renamed from “Custom Consent Manager” to “Consent by KaaTai” * Change: New slug kaatai-consent-manager #### 3.13.0 — September 2025 * Feature: All banner design settings now free for all plans * Feature: 3-step setup wizard on first activation #### 3.10.0 — August 2025 * Feature: Cookie Scanner with deep scan and 67 service detection * Feature: Banner Editor — 3 positions, border-radius, live preview #### 3.8.0 — July 2025 * Feature: Banner Editor with theme presets (Light/Dark/Custom) * Feature: Layout types, logo upload, overlay option #### 3.7.0 — June 2025 * Feature: Impressum and Datenschutz shortcodes * Improvement: Consolidated admin tabs from 11 to 7 ## Meta * Version **3.35.3** * Last updated **2 weeks ago** * Active installations **Fewer than 10** * WordPress version ** 5.8 or higher ** * Tested up to **6.9.4** * PHP version ** 7.4 or higher ** * Tags * [consent mode](https://wordpress.org/plugins/tags/consent-mode/)[cookie banner](https://wordpress.org/plugins/tags/cookie-banner/) [cookie consent](https://wordpress.org/plugins/tags/cookie-consent/)[dsgvo](https://wordpress.org/plugins/tags/dsgvo/) [GDPR](https://wordpress.org/plugins/tags/gdpr/) * [Advanced View](https://wordpress.org/plugins/kaatai-consent-manager/advanced/) ## Ratings No reviews have been submitted yet. [Your review](https://wordpress.org/support/plugin/kaatai-consent-manager/reviews/#new-post) [See all reviews](https://wordpress.org/support/plugin/kaatai-consent-manager/reviews/) ## Contributors * [ kaatai ](https://profiles.wordpress.org/kaatai/) ## Support Got something to say? Need help? [View support forum](https://wordpress.org/support/plugin/kaatai-consent-manager/)