Region Rule Engine
Change a region's rules without shipping code.
Most banners hardcode one jurisdiction's rules and apply them everywhere, or need an engineering sprint each time a new law lands. The Region Rule Engine stores per-jurisdiction policy in the database, so legal basis, banner behavior, expiry and language are editable per region and go live without a redeploy.
Each visitor is routed to the correct jurisdiction's rule set; edits propagate live with no deploy.
The problem
Most banners hardcode one jurisdiction's rules and apply them everywhere, or need an engineering sprint every time a new law lands. Opt-out where opt-in was required is a common, expensive mistake.
With ConsentX
Edit a region's legal basis, behavior or expiry in the admin and it goes live, no deploy. Every visitor sees the correct banner for their jurisdiction, automatically.
How it works
Map visitor to region
ConsentX resolves location from Cloudflare geo with a GeoIP fallback.
Serve the right policy
The engine picks the legal basis, banner behavior and copy for that jurisdiction.
Edit and propagate
Change a region rule in the admin and it applies live, no code deploy.
A closer look
Policy as data, not as code
Twelve-plus jurisdiction rule sets ship out of the box. Each region carries its own legal basis (opt-in, opt-out, notice-only), banner behavior (blocking, non-blocking), consent expiry and copy. Because this lives in the database, your privacy team edits it in the admin, not in a code repository.
When a new law lands or guidance changes, you add or edit a region rule and it applies to matching visitors immediately. No engineering sprint, no release train, no opt-out-where-opt-in-was-required mistakes.
Accurate visitor-to-region routing
ConsentX resolves a visitor's region from Cloudflare geo headers with a MaxMind GeoIP fallback, so routing works even without the Cloudflare country header. The right banner, basis and behavior are selected per request.
A global brand can serve strict opt-in to the EU, opt-out to US states, and a DPDPA-correct flow to India, with per-region language, all from one configuration and one script tag.
Capabilities
What you get
- Per-jurisdiction rules in the database
- 12+ jurisdiction rule sets included
- Opt-in vs opt-out applied correctly per region
- Update legal basis or expiry in minutes
Built for enterprise
Add a new jurisdiction without an engineering release
Correct opt-in vs opt-out per region, automatically
Per-region copy and language for global brands
Audit-friendly: rule changes are versioned and dated
Try Region Rule Engine free
Install in minutes. Free plan, no credit card.
Frequently asked questions
What happens when a new law lands?+
You add or edit a region rule in the admin. No engineering sprint, no redeploy.
How is a visitor's region determined?+
From Cloudflare geo headers with a MaxMind GeoIP fallback, so it works even without the CF country header.
Can behavior differ per region?+
Yes. Each region can be blocking, non-blocking or notice-only with its own legal basis and expiry.