Consent Hub
|
Sign InGet Started

Built for Compliance, Designed for Developers

A complete consent management platform with enterprise-grade compliance, developer-friendly APIs, and real-time audit capabilities.

Core Capabilities

Everything you need to manage consent at scale.

Consent Templates

Create reusable templates with purposes, data categories, and retention policies. Support for regulatory metadata including legal basis references, compliance requirements, and jurisdiction-specific rules.

Consent Lifecycle

Full lifecycle management: grant, revoke, expire, renew. Automatic expiration tracking with configurable notifications. Every state transition is recorded with timestamps and actor identity.

Audit Trail

Every consent event is immutably recorded with full context. Query by user, template, date range, or event type. Export comprehensive audit logs for regulatory inspections and internal reviews.

End User Management

Complete end-user profiles with KYC levels, verification status, and consent history. Store external IDs for seamless integration with your core banking or CRM system.

Multi-Tenant

Isolate consent data per tenant with strict boundary enforcement. Support for parent-child tenant hierarchies, enabling group-level consent policies with individual tenant overrides.

REST API

Comprehensive REST API with OpenAPI specification. Official TypeScript SDK with full type safety. Consistent error responses, pagination, and filtering across all endpoints.

Regulatory Compliance

Stay compliant across jurisdictions with built-in regulatory support.

GDPR

European Union

Full support for data subject rights: access, rectification, erasure, portability, and objection. Configurable legal basis per consent template with Article 6 and Article 9 references.

PSD2

Open Banking

Purpose-driven consent for account information and payment initiation. Automatic 90-day consent expiration with renewal workflows aligned to Strong Customer Authentication requirements.

CCPA

California

Track opt-out preferences and data sale restrictions. Maintain verifiable records of consumer consent with full audit trail for California Attorney General compliance requests.

Developer Experience

Integrate consent management in minutes, not weeks.

Grant a consent in one API call

curl -X POST https://gateway.oberon.services/api/v1/consents \
  -H "x-api-key: YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "endUserId": "user-123",
    "templateKey": "data-sharing",
    "scopes": ["ACCOUNT_INFORMATION"],
    "expiresInDays": 90
  }'
// Response
{
  "id": "cns_8f3a2b1c",
  "status": "GRANTED",
  "endUserId": "user-123",
  "templateKey": "data-sharing",
  "grantedAt": "2026-02-20T10:30:00Z",
  "expiresAt": "2026-05-21T10:30:00Z"
}
  • Type-safe API with Zod-validated request and response schemas
  • Webhook events for real-time consent lifecycle notifications
  • Detailed error messages with machine-readable error codes
  • Rate limit headers on every response (X-RateLimit-Limit, X-RateLimit-Remaining)

SDK & OpenAPI

Official TypeScript SDK with full type safety and IDE autocomplete. OpenAPI specification available for generating clients in any language.

JavaScriptPythonGoOpenAPI