Pactorio gives your visitors clear, honest choices. Two script tags. Full compliance. Zero dark patterns.
No credit card required · Free tier available · Live in under 5 minutes
<!-- Paste at the top of <head> — that's all it takes --> <script>/* inline snippet from Admin → Install tab */</script> <script src="https://cdn.pactorio.io/sdk/v1/bundle.js" data-cc-id="YOUR_ID" async></script>
Pactorio handles the hard parts — script blocking, geo rules, consent records — so you can focus on your product.
The inline snippet intercepts document.createElement before the page parses — third-party scripts never run until the user consents.
Show the opt-in banner to EU visitors, silently opt out others. Geo is resolved server-side via Cloudflare — no client-side IP lookup.
Define consent categories (analytics, marketing, functional) and map scripts to each one. Users pick exactly what they allow.
Scan any URL on your site to detect uncovered third-party scripts. Add rules for new ones in one click from the Admin UI.
Every grant and withdrawal is recorded with a timestamp and decisions snapshot. Satisfy Art. 7(1) accountability requirements out of the box.
Config is served from the edge with a 5-minute CDN TTL. Saves are invalidated immediately — no stale banners for your users.
Register your domains to prevent snippet theft. Unregistered origins are silently rejected at both the SDK and server layers.
Set your brand colour, font, and banner position. The banner renders in Shadow DOM — your styles and Pactorio's never conflict.
Hard-delete any user's consent record and audit history with a single API call. GDPR Art. 17 compliance built in.
No build step. No npm package. Paste two script tags and you're done.
Create an account in the Pactorio Admin. Your Customer ID is generated automatically — it's the only identifier you'll need.
Copy the ready-to-use install snippet from the Admin's Install tab. Paste both tags at the very top of your <head>, before any other scripts.
Set banner copy, your brand colour, cookie categories, and geo rules. Click Save — changes propagate to your site in seconds.
Add your site's hostname to the domain allowlist to lock down your Customer ID. Localhost is always exempt so local dev is never blocked.
Paste a URL from your site into the Script Scanner tab. Pactorio detects all third-party scripts and highlights any that lack a consent rule.
Open a private browser window and visit your site. The banner appears, scripts are held, and consent is recorded — you're compliant.
Pactorio implements the technical requirements of GDPR directly — not as an afterthought. No pre-ticked boxes. No deceptive UI. No consent by scrolling.
Set up Pactorio in under 5 minutes. No credit card, no vendor lock-in.