Thanks for the suggestion, it definitely seems like this should be the case, as previously consented users don't see the privacy page popping up. I will investigate this route, but I am confused as to how I would include this in the dashboard itself, if not using a non-expiring evar?