WeChat

WeChat

WeChat widgets embedded on websites targeting Chinese audiences display QR codes for following official accounts and social sharing buttons for WeChat Moments. Scripts load Tencent's JS SDK, which may collect browser environment data and transmit it to Tencent servers.

Back to Vendor Library

Overview

WeChat is a Chinese super-app developed by Tencent, combining messaging, social media, mobile payments, and mini-programs into a single platform with over a billion active users. For websites targeting Chinese audiences, WeChat integration typically involves embedding QR codes for following official accounts, social sharing buttons for WeChat Moments, and login via WeChat's OAuth system. These features rely on Tencent's JavaScript SDK loaded directly into the visitor's browser.

WeChat widgets are particularly common on websites serving Chinese-speaking markets, where WeChat functions as essential digital infrastructure — comparable to combining WhatsApp, Facebook, Apple Pay, and app stores into one platform.

What This Script Does

When WeChat widgets are embedded on your website, Tencent's JS SDK executes the following:

  • QR code rendering: Generates dynamic QR codes that visitors scan with their WeChat app to follow official accounts or access mini-programs.
  • Social sharing: Provides sharing buttons that let visitors post pages to WeChat Moments or send them to contacts, with customized titles, descriptions, and thumbnail images.
  • Browser fingerprinting: The SDK collects browser environment data including user agent, screen resolution, language settings, and device information, transmitting this to Tencent's servers.
  • Authentication: If WeChat Login is implemented, the SDK handles OAuth flows, redirecting visitors through Tencent's authentication servers and returning user profile information.
  • Network requests: All widget interactions generate requests to Tencent domains (e.g., res.wx.qq.com, open.weixin.qq.com), exposing visitor IP addresses to Tencent infrastructure.

The SDK may set cookies or local storage entries to maintain state across sessions, particularly when authentication features are active.

Consent & Compliance

WeChat integration raises significant data protection considerations, particularly for sites subject to GDPR. Tencent is a Chinese company, and data transmitted to its servers may be processed and stored in China, which the EU does not recognize as providing an adequate level of data protection. This makes Standard Contractual Clauses or other transfer mechanisms necessary.

The browser environment data collected by the SDK goes beyond what is strictly necessary for displaying QR codes or sharing buttons, making it difficult to justify under a legitimate interest basis alone. Under the ePrivacy Directive, reading device information constitutes accessing the user's terminal equipment, which requires consent unless the access is strictly necessary for a service explicitly requested by the user.

For sites that must comply with both GDPR and Chinese data protection laws (PIPL), the compliance landscape is complex and may require separate legal analysis for each jurisdiction.

Should You Block This Without Consent?

Yes. The SDK collects browser environment data and transmits it to Tencent's servers in China, which constitutes cross-border data transfer to a jurisdiction without EU adequacy status. This should be gated behind consent.

Visit website

Consent Categories

Functional
Marketing

Also Known As

WeChat Official AccountWeChat QR codeWeChat MomentsTencent WeChatWeChat JS SDK

Industries

Computers Electronics and TechnologyBusiness and Consumer ServicesTelecommunicationsMarketing and Advertising

Tracked Domains (1)

wechat.comFunctional

Frequently Asked Questions

Is consent required to load WeChat widgets on a website targeting EU visitors?

Yes. Tencent's JS SDK collects browser environment data including user agent, screen resolution, and device characteristics, transmitting it to servers in China — a jurisdiction without EU adequacy status. This constitutes cross-border data transfer requiring prior opt-in consent.

What does the WeChat JS SDK actually do when embedded on a website?

The SDK renders QR codes for following official accounts, provides WeChat Moments sharing buttons, and handles OAuth authentication flows. Beyond UI rendering, it fingerprints the browser environment and generates network requests to Tencent domains, exposing visitor IP addresses.

How does ConsentStack manage WeChat widget consent?

ConsentStack blocks Tencent's JS SDK from loading until marketing consent is obtained. Once consent is given, the SDK loads and widgets render normally. This prevents unauthorized data transmission to Tencent's servers in China while preserving full widget functionality for consenting users.

Related Vendors

Google Maps
Google Maps
Google Maps is the dominant web mapping service used for embedded maps and location features on websites. Scripts load interactive map tiles, geocoding, and Places API functionality through the Maps JavaScript API. May set cookies to remember map preferences and manage API quota.
Google Search
Google Search
Google Search appears on websites through the Programmable Search Engine, enabling custom site-specific search functionality. Scripts load the search widget from Google's servers to render search bars and display results within the host website. Sends search queries to Google's index and may set cookies for search personalization and query history.
Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Microsoft Teams
Microsoft Teams
Microsoft Teams is a workplace communication and collaboration platform that can be embedded on websites for chat, meetings, and document sharing. Embedded widgets load from Microsoft's servers to enable real-time messaging, video calls, and file collaboration. Sets authentication and session cookies to verify participant identity and maintain connection state.
Apple Maps JS
Apple Maps JS
Apple Maps JS is Apple's JavaScript mapping framework for embedding interactive maps on websites. Scripts load map tiles, location pins, and routing data from Apple's MapKit servers to render navigable maps within web pages. Requires a MapKit JS token for authentication but does not set tracking cookies or collect behavioral analytics data.
Apple Business Chat
Apple Business Chat
Apple Business Chat enables direct customer messaging between websites and Apple's Messages app. Scripts load chat buttons and conversation interfaces that connect visitors to business support agents through iMessage. Sets minimal session cookies to maintain conversation context but does not track browsing behavior or collect analytics data.

Manage consent for WeChat

ConsentStack automatically detects and manages WeChat trackers so your site stays compliant with global privacy regulations.

Get started free