Use this API to create consent receipts from a Collection Point. This API is used by all Collection Points and allows external applications to submit requests to store data subject consent transactions.
Things to Know
Each Collection Point must first be set up in the OneTrust application to generate a valid JWT, which must be present in the request payload. The JWT can be found on the Integrations tab of the Collection Point Details screen within the application or can be retrieved by calling the Get Collection Point Token API.
Once the
testparameter is set totrue, reverting it tofalseis not possible. However, transitioning fromtest=falsetotest=trueis supported. For more information on how to remove the test flag on the OneTrust application, see Managing Data Subject Records.In most cases, further authorization is not required. However, additional information for setting up authenticated consent can be found here when needed.
Please avoid passing privacy notices for regular Custom API Collection Points. We strongly recommend using
privacyNoticesonly for those enabled with dynamic configuration as they allow you to gather information about all purposes.When passing the
purposesparameter, the version forPrivacyNoticeswill be used based on the consent date.