Builder.io

Builder.io

Delivers page and section content from Builder.io's headless CMS via URL-targeted rules and loads visual editing interfaces for authenticated content editors. Supports A/B testing and personalization experiments; analytics and tracking integrations depend on components configured in Builder's visual editor.

Back to Vendor Library

Overview

Builder.io is a headless visual CMS and page building platform used by development teams to manage content and run A/B tests without code deployments. Its scripts appear on websites when teams use Builder to control page sections, landing page content, or personalization experiments via URL-targeted rules. The platform bridges the gap between marketing teams and engineering by enabling visual content editing that publishes directly to production.

What This Script Does

Builder.io loads its SDK from cdn.builder.io — typically the file builder.js or a framework-specific variant (e.g., @builder.io/react, @builder.io/sdk-svelte). For authenticated editors, an additional editing interface script loads from builder.io to power the visual drag-and-drop editor.

In production (visitor-facing) mode, the SDK makes API calls to cdn.builder.io/api/v1/qwik or equivalent endpoints to fetch content matching the current URL. The script evaluates targeting rules (device type, URL, query parameters, custom attributes) client-side to determine which content variation to render.

For A/B testing, Builder sets a persistent cookie (typically builder.tests.* or similar) to maintain variant assignment across sessions — expiry depends on test configuration but is commonly 30–90 days. Conversion events (clicks, form submissions, purchases) are fired back to Builder's analytics endpoints to measure experiment performance.

Personalization features — where content varies based on visitor attributes — require additional data inputs. The sensitivity of these inputs depends entirely on what the site operator passes to Builder's targeting context: this can range from anonymous URL parameters to authenticated user attributes.

Domains contacted: cdn.builder.io, builder.io. No advertising demand partners are contacted by default.

Consent & Compliance

Builder.io's base content delivery (fetching and rendering CMS content) does not require consent — it is equivalent to loading website content and does not set tracking cookies in standard configuration. However, A/B testing introduces variant assignment cookies that persist across sessions, which under GDPR and the ePrivacy Directive require either consent or a compelling legitimate interest argument. The better practice is to treat A/B test cookies as requiring consent.

Personalization that processes personal data (e.g., targeting based on location, authenticated user properties, or behavioral signals) requires a lawful basis under GDPR Article 6. Where personalization relies on behavioral tracking, consent under Article 6(1)(a) is required.

Under CCPA/CPRA, Builder.io does not sell personal data in its standard configuration. US-based processing is covered under Builder.io's standard DPA.

The consent category is mixed (functional for content delivery, marketing/analytics for A/B testing and personalization).

Should You Block This Without Consent?

Conditional. The CMS content delivery component can load without consent. A/B test variant cookies and any personalization that processes personal data should be gated on consent. Sites using Builder purely for content management with no testing or personalization features can load the SDK without a consent gate.

Visit website

Consent Categories

Functional
Marketing

Also Known As

builder iobuilder.iobuilder io cmsvisual cmsheadless page builderbuilder io ab testing

Industries

Computers Electronics and TechnologyProgramming and Developer SoftwareBusiness and Consumer ServicesMarketing and Advertising

Tracked Domains (1)

builder.ioFunctional

Frequently Asked Questions

Does Builder.io require consent for content delivery?

It depends on usage. Basic CMS content delivery is functional and consent-free. However, A/B testing sets persistent variant cookies (30-90 days), and behavioral personalization requires consent under GDPR. Sites using Builder purely for content management without testing or personalization can load the SDK without a consent gate.

What cookies and tracking does Builder.io use?

For standard content delivery, Builder.io fetches pages from cdn.builder.io without tracking cookies. A/B testing adds persistent cookies (builder.tests.*) for variant assignment. Conversion events are sent to Builder's analytics. Personalization may process visitor attributes depending on the site operator's targeting configuration.

How does ConsentStack categorize Builder.io scripts?

ConsentStack assigns Builder.io a mixed functional/marketing category. Base content delivery loads without a consent gate as standard CMS infrastructure. A/B test cookies and personalization features processing behavioral data are gated behind consent, letting ConsentStack avoid breaking content while respecting privacy.

Related Vendors

Google Maps
Google Maps
Google Maps is the dominant web mapping service used for embedded maps and location features on websites. Scripts load interactive map tiles, geocoding, and Places API functionality through the Maps JavaScript API. May set cookies to remember map preferences and manage API quota.
Google Search
Google Search
Google Search appears on websites through the Programmable Search Engine, enabling custom site-specific search functionality. Scripts load the search widget from Google's servers to render search bars and display results within the host website. Sends search queries to Google's index and may set cookies for search personalization and query history.
Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Microsoft Teams
Microsoft Teams
Microsoft Teams is a workplace communication and collaboration platform that can be embedded on websites for chat, meetings, and document sharing. Embedded widgets load from Microsoft's servers to enable real-time messaging, video calls, and file collaboration. Sets authentication and session cookies to verify participant identity and maintain connection state.
Apple Maps JS
Apple Maps JS
Apple Maps JS is Apple's JavaScript mapping framework for embedding interactive maps on websites. Scripts load map tiles, location pins, and routing data from Apple's MapKit servers to render navigable maps within web pages. Requires a MapKit JS token for authentication but does not set tracking cookies or collect behavioral analytics data.
Apple Business Chat
Apple Business Chat
Apple Business Chat enables direct customer messaging between websites and Apple's Messages app. Scripts load chat buttons and conversation interfaces that connect visitors to business support agents through iMessage. Sets minimal session cookies to maintain conversation context but does not track browsing behavior or collect analytics data.

Manage consent for Builder.io

ConsentStack automatically detects and manages Builder.io trackers so your site stays compliant with global privacy regulations.

Get started free