Skip to content

consent-engine v0.6.6

Choose a tag to compare

View all tags
@github-actions github-actions released this 29 May 21:00
· 12 commits to main since this release
v0.6.6
716a1a3

feat: v0.6.6 — jurisdiction-aware report/deck prose

Non-US reports no longer carry US (CCPA/CIPA/plaintiff/"Do Not Sell") framing.
Findings render in the audited site's own regime, regardless of scan origin.

  • RAG wiki retrieval gated by jurisdiction: ccpa.md / cipa-vppa.md /
    us-class-actions.md load only for US sites; EU/UK get GDPR, CA gets Law 25/PIPEDA.
  • New jurisdiction_copy() centralises regime phrasing (GPC legal status, statute,
    regulator, vantage, pixel-evidence framing) for US/EU/UK/CA. Wired through the
    report, the deck, the exec-summary builder, and the open-gaps action items.
  • "Under CCPA/CPRA, GPC is a legally binding opt-out signal" now renders only for
    US; EU/UK/CA state consent is opt-in and GPC is not itself binding.
  • LLM exec-summary prompt no longer instructs the model to cite CCPA for non-US.

Validated on bbc.com (EU): deck fully GDPR-framed, zero CCPA/CIPA/plaintiff
strings; report pulls GDPR wiki. 150 passed, 1 skipped; ruff + mypy strict clean.

Co-Authored-By: Claude Opus 4.8 (1M context) noreply@anthropic.com

Assets 4
Loading