WordPress CCPA Plugins to Add Cookie Notices to a Website
Last Updated July 3, 2023
This post is brought to you by White Label for WordPress. Customize the WordPress admin and make life easier for you and your clients.
The California Consumer Privacy Act (CCPA) is a comprehensive privacy law that gives California consumers control over their personal data. It applies to all businesses that have annual revenues of more than $25 million, handle the personal data of more than 50,000 users, or derive 50% or more of their annual revenue from selling personal data. The CCPA has a significant impact on websites in the areas of data collection, data use, and data security. For WordPress sites, you can handle this law with a WordPress CCPA plugin.
Websites must now be more transparent about what personal data is collected, how it is used, and how it is secured. Website operators must also provide users with the ability to access, delete, and opt out of the sale of their personal data. Additionally, website operators are required to implement technical safeguards to protect personal data from unauthorized access, alteration, and destruction.
Popular WordPress CCPA Plugins
Each of the WordPress CCPA plugins on our list today can be found at WordPress.org. Simply download the plugin’s file from the site and upload it to your WordPress installation. Alternatively, you can install and activate these plugins from the Plugins screen of the WordPress admin.
We have summarized each of these plugins’ features to give you an idea of their functionality and capability. While these plugins are free, some do offer additional features through paid or premium versions. In those instances, we’ve also summarized what you get in the paid version. This way you have a complete view of what the plugins have to offer.
So let’s get started and check out some of the most popular WordPress CCPA plugins.
Cookie Notice is a simple WordPress CCPA and GDPR plugin that adds a minimal and customizable banner to your WordPress site. It is specifically for helping comply with cookie consent requirements. This plugin is seamlessly integrated with Cookie Compliance, which is a web application that automates compliance features.
The banner contains a customizable message and offers consent on either click, scroll, or close. There a multiple cookie expiry options to choose from. You can also add a link to your privacy policy page. This synchronizes with the WordPress Privacy Policy page. The plugin is WPML and Polylang compatible.
With Cookie Compliance, you can choose consent duration, show consent metrics, and configure privacy and contact details. Intentional consent is included to provide visitors the option to accept none, some, or all cookies. On the web application, there is a consent analytics dashboard, automatic script blocking, and consent record storage. It comes with multilingual support, multidomain management, and targets dark patterns to help push visitors to be more proactive and make decisions.
Plugin Details
This plugin was originally published by its owner in July of 2013. It is now on version 2.5.5 and last had a revision on January 3rd, 2025. The most recent version works on WordPress 6.7.2 and requires at least PHP 7.4 to function on your server. This plugin is now functioning on over 1,000,000 WordPress websites. It has had over 31,714,760 downloads. There have been 7 help requests with a 0% response rate. Cookie Notice & Compliance for GDPR / CCPA has below average support from its developer. Reviews for this plugin are very positive. Many of the customers who left a review found this plugin to be excellent.
Security Issues and Vulnerabilities
There has been one recorded security or vulnerability issue with Cookie Notice. The security problem was fixed and here are the details.
| Date | Description | Fixed? |
|---|---|---|
| 8/30/21 | Authenticated (Admin+) Stored Cross-Site Scripting This was a medium concern issue that was fixed in version 2.1.2. | Yes |
CookieYes takes care of WordPress CCPA, GDPR, RGPD, and DSVGO compliance when creating and managing your site. It does this by adding a simple cookie consent banner that visitors may accept or reject. The plugin has a free connection with the CookieYes web app to access features like cookie scan and consent log. You can manage settings from your account there as well.
This plugin offers single-click automatic scanning and categorization of cookies and an avenue to display the list of cookies on your policy page via shortcode. You can customize your banner by changing the colors, font, styles, and position to better fit your site. Unnecessary cookies may be scanned and auto-blocked and a preference center exists so that visitors may choose to consent to some or all cookie categories.
You can choose if you want your banner permanently dismissed or accessible through a revisit button. Cookies can be added manually, edited, and deleted. The name and description of cookie categories may be edited. Finally, the consent data of every user can be logged and exported into a CSV as well.
Plugin Details
This plugin was originally released by its creator in May of 2012. It is now on version 3.2.9 and last had a revision on March 25th, 2025. The most recent edition operates on WordPress 6.7.2 and requires at least PHP 5.6 to run on your server. This plugin is currently operating on over 1,000,000 WordPress sites. It has had over 34,874,830 downloads. There have been 23 assistance requests with a 78% response rate. CookieYes – Cookie Banner for Cookie Consent (Easy to setup GDPR/CCPA Compliant Cookie Notice) has ok support from its developer. Reviews for this plugin are very positive. Many of the customers who left an evaluation found this plugin to be useful.
Security Issues and Vulnerabilities
There has been one recorded security or vulnerability issue with CookieYes. The security problem was fixed and here are the details.
| Date | Description | Fixed? |
|---|---|---|
| 2/11/20 | Authenticated Stored Cross-Site Scripting and Authorization Bypass This was a medium concern issue that was fixed in version 1.8.2. | Yes |
CookieYes Premium is the paid version of the plugin and comes with more features on top of what’s already available. It comes in three plans with prices renewed per month and per domain. There are increasing permissions and limits depending on how demanding your site is.
You get advanced banner customization to further suit your needs. A popup banner layout with an overlay is included,and you may add brand logos to your banner. CookieYes Premium has location-based targeting of cookie banners. So the plugin will automatically adjust to the appropriate banner based on the country. Banner languages are auto-detected as well.
If the given customization options are not enough, you can add your own custom CSS, and disable the “Powered by” branding if it bothers you. There is automatic cookie blocking, per-category consent, and the option to revisit the policy and withdraw your consent.
Complianz
Complianz is a WordPress CCPA plugin that provides cookie consent with additional support for GDPR, ePrivacy, DSGVO, TTDSG, and more. It comes with a conditional cookie notice and customized policy depending on what comes up after using the built-in Cookie Scan.
You may configure the notice based on your specific region and configure the consent per subregion as well. Alter the appearance of your notice either through custom CSS or customizable templates. These banner templates contain things like a GDPR-friendly cookie wall, accept or dismiss buttons, dismiss on scroll, time on page, and consent per category, as well as per service.
The plugin can configure your site based on wizard questions, scans, and integrations. It blocks any third-party cookies for you. It also blocks iFrames and shows placeholders for them as stills. This plugin can control scripts, provide proof of consent, and automatically detects if you need a cookie notice.
Plugin Details
This product was first released by its developer in June of 2018. It is currently on version 7.3.1 and last saw an update on March 12th, 2025. The latest release runs on WordPress 6.7.2 and requires at least PHP 7.4 to operate on your server. This plugin is actively operating on over 1,000,000 WordPress sites. It has had over 20,469,420 downloads. There have been 84 support requests with a 83% response rate. Complianz – GDPR/CCPA Cookie Consent is well supported by its owner. Reviews for Complianz – GDPR/CCPA Cookie Consent are very positive. Many of the customers who left a review found this plugin to be great.
Security Issues and Vulnerabilities
There has been one recorded security or vulnerability issue with Complianz. The security problem was fixed and here are the details.
| Date | Description | Fixed? |
|---|---|---|
| 1/17/22 | Reflected Cross-Site Scripting via s parameter This was a medium concern issue that was fixed in version 6.0.0. | Yes |
Complianz Premium is the paid version of the plugin that offers even more features on top of its free edition. Premium gives you records of consent, respects Do Not Track settings, and scans show the correct notice based on your IP location. It has Google Consent Mode which incorporates Google Tag Manager or Google Analytics without any setup needed.
This version of the plugin also has integration with TCF v2.0 and comes with data request forms and registrations. You can simultaneously select different regions as targeted regions along with conditional consent and dedicated cookie banners for each. There is more support for other privacy acts and legal documents. Finally, going premium gives you direct support and updates from the team.
GDPR Cookie Compliance is a plugin that prepares your website for cookie consent requirements. It is marketed for GDPR but it is also a WordPress CCPA solution as well.
Some of its key features include using local data storage and giving your users control over cookies that are stored on their devices. The plugin even allows them to revoke their consent if they wish. It is simple to install and set up but is still fully customizable and editable.
You can upload your own logo, colors, and fonts, as well as change all text. There are accept, reject, close, and setting buttons. The plugin includes ways to adjust consent expiration. For design, you may choose between two unique layouts, and utilize its sleek animations to enhance user experience. The plugin is responsive and suitable for all devices, is SEO friendly, and is available in 17 languages.
Plugin Details
This product was initially published by its developer in April of 2018. It is presently on version 4.16.1 and last had a change on March 24th, 2025. The most recent version operates on WordPress 6.7.2 and requires at least PHP 5.6 to run on your server. This plugin is presently functioning on over 300,000 WordPress sites. It has had over 10,634,170 downloads. There have been 11 support requests with a 91% response rate. GDPR Cookie Compliance – Cookie Banner, Cookie Consent, Cookie Notice – CCPA, DSGVO, RGPD is well supported by its owner. Reviews for this plugin are very positive. Many of the customers who left a piece of feedback found GDPR Cookie Compliance – Cookie Banner, Cookie Consent, Cookie Notice – CCPA, DSGVO, RGPD to be wonderful.
Security Issues and Vulnerabilities
There has been one recorded security or vulnerability issue with GDPR Cookie Compliance. The security problem was fixed and here are the details.
| Date | Description | Fixed? |
|---|---|---|
| 12/27/19 | Missing Authorization This was a medium concern issue that was fixed in version 4.0.2. | Yes |
GDPR Cookie Compliance Premium is the paid version of the plugin with more features for you to utilize for your site. There is Google Site Kit integration and you can enable the cookie consent banner to be displayed in full screen. If you wish to transfer your settings between sites, there is an option to export and import them. Users can accept on scroll and apply a hide timer. Or ask users to renew consent if ever the privacy or policy changes at any point. It has geolocation enabled so the cookie consent banner can be shown to selected countries only.
There is an iFrame Blocker, language-specific scripts, and even premium shortcodes to be added. You can declare the exact cookies your site uses, hide the notice banner on certain pages, and track your user information with the consent log. It shows analytics to see how many have accepted cookies and comes with fast support and exclusive updates as long as the premium is active.
Cookiebot is a reliable plugin that provides a cookie consent solution for your site that helps you with complying to GDPR/ePR, CCPA/CPRA, and IAB TCF. The cookie consent banner is highly customizable and allows your users to opt in or out of certain cookie categories. It comes with scanning technology that detects all cookies and other trackers and automatically generates cookie declaration.
There is full integration with Google Consent Mode and an automatic cookie-blocking feature that blocks all cookies and trackers is included. The blocker works until consent has been given by the user. The widget allows users to update their consent at any time. Consents are securely stored in the cloud. User consent information is downloadable, and the banner and declaration are available in over 40 languages.
Plugin Details
This product was originally released by its creator in January of 2018. It is now on version 4.4.2 and last underwent an update on March 5th, 2025. The most recent edition operates on WordPress 6.7.2 and requires at least PHP 5.6 to work on your server. This plugin is currently functioning on over 100,000 WordPress websites. It has had over 4,925,330 downloads. There have been 4 help requests with a 100% response rate. Cookie banner plugin for WordPress – Cookiebot CMP by Usercentrics is well supported by its owner. Reviews for this plugin are very positive. Many of the users who left an evaluation found this plugin to be wonderful.
Security Issues and Vulnerabilities
There has been one recorded security or vulnerability issue with Cookiebot. The security problem was fixed and here are the details.
| Date | Description | Fixed? |
|---|---|---|
| 9/8/20 | Reflected Cross-Site Scripting This was a medium concern issue that was fixed in version 3.6.1. | Yes |
Find the Best WordPress CCPA Plugin
That’s the end of our look at WordPress CCPA plugins. As you can tell from reading the list, a lot of these plugins do double-duty and help you handle other privacy laws as well. We think that each of these plugins will help you get your site as compliant as possible. Having said that, we strongly recommend you do your own research and choose your solution carefully.
Finally, as a word of advice, for premium plugins. Please download and test the free versions before paying for a pro plugin or signing up for a third-party service. Most free plugins can give you enough of a first impression to tell whether or not paying for more will be worth it.
Looking for More Ways to Improve WordPress?
Are you a WordPress developer or staff member at an agency with a lot of WordPress projects? If so, before you go, you might want to learn a bit about our White Label WordPress plugin.
White Label was built to make it easy for developers and site owners to customize the WordPress admin experience. You can use our plugin to redesign the WordPress login page, change admin colors, replace logos, rename and remove menus, and so much more.
Check out the complete feature list to see all of the ways White Label can help your business. Remove client confusion and make support easier for your team with our plugin.
Related Posts from Our WordPress Blog
Did you know you can integrate WhatsApp into your WordPress site? Check out our post detailing the best WhatsApp plugin for WordPress.
Combining the power of Shopify and WordPress or converting to WooCommerce is a common task. Find the best WordPress Shopify plugins to help.