Consumer Revocation Portal

What is the Consumer Revocation Portal?

eConsent provides a self-service revocation page where consumers can withdraw their consent at any time. The portal is available at:

https://app.econsent.org/opt-out

This page allows consumers to revoke consent without needing to contact your support team, ensuring compliance with consumer rights requirements.

How Consumers Revoke Consent

1. The consumer visits app.econsent.org/opt-out
2. They enter their email address, phone number, or certificate ID
3. eConsent looks up matching certificates
4. The consumer confirms the revocation
5. All matching certificates are immediately marked as revoked

No account or login is required. The consumer only needs the information they used when providing consent.

What Happens After Revocation

Once a certificate is revoked:

• The opt_out.revoke flag is set to true on the certificate
• All verification API calls for that certificate return a 403 status with the message “This session has opted out”
• An audit log entry is created recording the revocation, including the timestamp and method
• The revocation is immediate — there is no delay or propagation window

The original certificate and session recording are preserved for your records, but the certificate is no longer valid for verification purposes.

Revocation for Businesses

In addition to the consumer self-service portal, businesses can revoke certificates through:

Dashboard

1. Navigate to Certificates in your dashboard
2. Find the certificate and click to open its detail view
3. Click Revoke and confirm

Bulk Revocation

1. Select multiple certificates using checkboxes in the Certificates view
2. Click Bulk Revoke from the actions menu
3. Confirm the bulk action

CSV Upload

For large-scale revocations, upload a CSV file with email, mobile, or certificate_id columns from the revocation section of your dashboard.

API

Use the opt-out API endpoint to revoke programmatically:

POST https://api.econsent.org/opt-out

Provide email, mobile, or certificate_id along with your company_id.

Important Notes

• Revocations are permanent. Once revoked, a certificate cannot be un-revoked.
• Revocations are audited. Every revocation is logged with the timestamp, method (consumer portal, dashboard, API, CSV), and the certificates affected.
• Verification responses change immediately. Any system calling the verification API for a revoked certificate will receive a 403 response.

Linking to the Opt-Out Page

You can link directly to the consumer opt-out portal from your website, emails, or communications:

<a href="https://app.econsent.org/opt-out">Revoke your consent</a>

This helps demonstrate your commitment to consumer rights and regulatory compliance.

Learn More

• See the full Revocation & Opt-Out documentation for API details and code examples
• Contact support@econsent.org for questions