Global Privacy Control

LiteConsent automatically detects and respects the Global Privacy Control (GPC) browser signal when CCPA jurisdiction is enabled, helping you comply with California's opt-out requirements.

What is GPC?

Global Privacy Control is a browser-level signal (navigator.globalPrivacyControl) that communicates a visitor's intent to opt out of the sale or sharing of their personal data. It is supported by Firefox, Brave, and DuckDuckGo, among others.

Under the CCPA, businesses are legally required to treat the GPC signal as a valid opt-out request. Several other US state privacy laws also recognize GPC.

How LiteConsent handles GPC

GPC auto-reject only activates for the CCPA jurisdiction specifically. When LiteConsent detects a CCPA visitor whose browser has GPC enabled:

• Consent is immediately saved with only the non-sale categories (those where ccpa_sale=false). Sale-flagged categories are excluded entirely.
• The consent banner is skipped. The visitor does not see a banner at all.
• The GPC signal is recorded in the consent log for your compliance records.

No additional configuration is needed beyond enabling the CCPA jurisdiction in your site settings. GPC detection is automatic for all CCPA visitors. Visitors under other jurisdictions (GDPR, LGPD, PIPEDA) are not affected by the GPC signal.