Is the module compliant with the latest data protection authority recommendations?

The module follows the recommendations of the French CNIL and EU GDPR: refusal as easy as acceptance, granular consent per category, no third-party cookies dropped before choice, choice memorisation, ability to come back on it. Compliant with the latest 2024-2025 enforcement.

Is Google Consent Mode v2 handled?

Yes, mandatory since March 2024 in EEA. The module automatically sends granted / denied signals to GA4, Google Ads and GTM via gtag('consent'). Default state configuration directly in the back-office (denied recommended for EEA). Compatible with Google's conversion modelling mode.

How does the audit log work?

Each acceptance, refusal and personalised preference is logged in the database with an anonymous identifier and a hashed IP. In case of DPA inspection, you have the historical proof of every consent. Configurable retention and exports.

Which services does the scanner work with?

The scanner analyses your front-office in one click and automatically identifies: Google Analytics 4, Google Tag Manager, Google Ads, Meta Pixel (Facebook), Hotjar, LinkedIn Insight, TikTok Pixel, Microsoft Clarity, YouTube embeds, Intercom, Stripe and more. One-click activation of detected services.

Visual customisation?

Yes: colors, texts, buttons, privacy policy link — everything is configurable from the back-office. The render uses a modern floating card (Axeptio style) far from the intrusive 2010s banners. On mobile, the card adapts automatically.

Multistore compatible?

Yes. Each sub-store has its own configuration: enabled services, texts, colors, separate audit log. Independent configuration per shop context.

What are the technical requirements?

The module works on PrestaShop 8.0+ and 9.x with PHP 8.0+. Compatible with Symfony and Smarty Security Policy. No Smarty front-end dependency (avoids |nofilter blocks). The tarteaucitron.js engine is loaded from jsDelivr CDN (always up to date).

Cookie Manager Tarteaucitron PrestaShop — Turnkey GDPR compliance

Cookie Manager Tarteaucitron — Turnkey GDPR compliance for PrestaShop

The GDPR-compliant cookie banner without giving up measurement.

Data protection authorities have multiplied sanctions on non-compliant cookie banners. Cookie Manager Tarteaucitron brings your PrestaShop store up to date with the latest requirements: modern Axeptio-style banner, Google Consent Mode v2 pre-integrated, consent audit log, automatic third-party service scanner, and 11 major services (GA4, GTM, Meta Pixel, TikTok, Hotjar, Microsoft Clarity, etc.) ready to use. The module uses the open-source tarteaucitron.js engine with a modern UX layer and a complete audit system for DPA inspections.

PrestaShop 8 + 9 Consent Mode v2 Audit logs Multistore Auto scanner AES-256

30-day refund

12 months updates

24h support

The long version

Everything you'd want to know before you install.

A detailed look at how Cookie Manager Tarteaucitron — Turnkey GDPR compliance for PrestaShop works, why we built it the way we did, and the thinking behind the features above.

§ 01

Why a specialised GDPR module

European data protection authorities have actively been auditing cookie banners since 2022. Sanctions have hit Google (€60M), Amazon (€35M) but also European e-commerce SMEs (up to €1M fine). The most-audited non-compliances: refusal less accessible than acceptance, third-party cookies dropped before consent, lack of audit log. Cookie Manager Tarteaucitron solves these three points with a modern approach.

§ 02

Tarteaucitron + modern UX

The tarteaucitron.js engine is one of the most respected open-source consent management tools in Europe (used by gouv.fr sites). It is technically irreproachable but its UX is dated. Our module keeps the tarteaucitron engine (a guarantee of reliability and technical compliance) and enriches it with a modern Axeptio-style UX: floating card, iOS toggles, smooth animations. The best of both worlds.

§ 03

Google Consent Mode v2: don't lose measurement

Many merchants think GDPR compliance = losing 50% of analytics data. With Consent Mode v2 (introduced by Google in 2024), this is no longer true: even without full consent, your tags can send anonymised data that feeds modelled conversions. The module implements it automatically with default state configuration (denied recommended for EEA).

§ 04

Automatic third-party service scanner

Manually configuring each service (GA4, GTM, Meta Pixel, TikTok, Hotjar, etc.) takes hours. The built-in scanner analyses your front-office in one click and automatically identifies the third-party services present. One-click activation of detected services with default configuration. For custom or exotic services, the dedicated tab allows adding unlimited services with custom JS.

§ 05

Audit log for DPA inspections

Every acceptance, refusal and personalised preference is logged in database with an anonymous identifier and a hashed IP (to respect GDPR while keeping traceability). In case of DPA or data protection authority inspection, you have the historical proof of every consent with timestamp, hashed IP, detailed choice. CSV export of logs available.

§ 06

Stripe: essential cookie by default

Interesting special case: Stripe drops cookies necessary for payment, which are legally considered "essential cookies" to the service — not requiring consent. The module treats them this way: active without consent request, but displayed in the "Always active" category of the preferences panel for transparency. Avoids payments failing when a customer refuses cookies.

Cookie Manager Tarteaucitron — Turnkey GDPR compliance for PrestaShop

The short version.

Compliant GDPR with no effort

Axeptio-style interface

Google Consent Mode v2

Automatic service detection

Everything you'd want to know before you install.

Why a specialised GDPR module

Tarteaucitron + modern UX

Google Consent Mode v2: don't lose measurement

Automatic third-party service scanner

Audit log for DPA inspections

Stripe: essential cookie by default

The long list.

What's shipped.

The fine print.

License & delivery

Compatibility

What actual users say.

Reviews

Anything still unclear?