Question 1

Is this a cookie consent banner?

Accepted Answer

No. We're an independent scanner that audits your existing consent setup. We work alongside CMPs like CookieYes, Cookiebot, and OneTrust — we verify they're doing their job correctly.

Question 2

I already use a free GDPR scanner. Why pay for this?

Accepted Answer

Free scanners tell you what broke. We tell you when it broke, what changed, and give you evidence you can forward straight to your client. A snapshot is fine for a one-off audit — but agencies get burned by the 2am plugin update that quietly pushes Meta Pixel before consent. GDPR Privacy Monitor runs daily, diffs every scan against the last, and alerts you the moment something drifts. You get the full evidence pack — HAR log, screenshots, cookie inventory CSV, before/after diff, fix guides — white-labeled and ready to send. If you manage one site and need a spot-check, a free scanner is fine. If you manage 10+ client sites and your reputation depends on them, you need monitoring, not scanning.

Question 3

How is the Risk Score calculated?

Accepted Answer

The Risk Score (0–100) is a weighted sum of risk factors: pre-consent cookies and trackers, missing reject buttons, dark patterns, and cookie walls. Higher score = more issues found. We show exactly which factors contribute to the score.

Question 4

Can I send reports to my clients?

Accepted Answer

Yes — that's exactly what they're designed for. Every scan generates a professional PDF: specific findings with severity, risk score, evidence (HAR logs, screenshots), cookie inventory, and CMP-specific fix guides. No editing needed — download and send.

Question 5

What CMPs do you support?

Accepted Answer

We recognize 45 CMP signatures. CookieYes and Cookiebot have verified deep interaction flows (accept, reject, preference center). OneTrust, iubenda, Complianz, Sourcepoint, TrustArc, Didomi, Usercentrics, and 36 others have best-effort detection and interaction support.

Question 6

Is this legal advice?

Accepted Answer

No. GDPR Privacy Monitor provides technical risk indicators based on observable browser behavior — cookies set before consent, missing reject buttons, active trackers, etc. This data informs risk, but does not replace legal assessment. For formal compliance decisions, consult your DPO or legal counsel.

Question 7

Where is my data stored?

Accepted Answer

All infrastructure runs on Hetzner Cloud in the EU (Germany). We don't use AWS, Google Cloud, or any US-based hosting. Scan results are stored in PostgreSQL with automatic expiry.

Question 8

What happens if the scanner can't determine something?

Accepted Answer

We tell you transparently. If bot protection blocks our scanner, geo-restrictions hide content, or SPA loading interferes with banner detection, the result shows 'Cannot Determine' with an explanation of what failed. We never guess — we'd rather show a limitation than a false result.

Question 9

Do you offer annual billing?

Accepted Answer

Yes. Annual plans save ~20% compared to monthly.

Question 10

What if a website blocks the scanner?

Accepted Answer

We only scan websites that allow automated access. We never attempt to bypass bot protection, CAPTCHAs, WAF rules, or any other access restrictions. If a site blocks our scanner, we report it transparently and stop — we don't retry with evasion techniques. We fully respect every website's right to control automated access to their content.

Question 11

How long are scan results kept?

Accepted Answer

Free scans are kept for 7 days. Starter plans retain results for 30 days, and Pro/Agency plans for 90 days. When a scan expires, all artifacts (PDFs, HAR files, screenshots) are permanently deleted.

Question 12

What is cookie consent compliance monitoring?

Accepted Answer

Continuous monitoring checks your site on a schedule and alerts you when a plugin update, GTM change, or CMP misconfiguration re-introduces pre-consent tracking. A one-time scan is a snapshot — monitoring catches regressions as they happen.

Question 13

How do I run a cookie compliance check on my website?

Accepted Answer

Paste your URL in the hero form and get a free scan in around 60 seconds. You'll see pre-consent cookies, active trackers, the detected CMP, and a risk score from 0 to 100. No signup is required for the free tier.

Question 14

How often should I monitor cookie compliance?

Accepted Answer

For static sites, weekly monitoring is usually enough. For sites with frequent releases, GTM changes, or third-party plugin updates, daily monitoring is recommended. Pro and Agency Pro plans include scheduled monitoring with regression alerts.

Question 15

Can I monitor multiple websites from one dashboard?

Accepted Answer

Yes. Agency Pro tracks up to 50 domains with a shared inbox, portfolio view, and per-site monitors — so you can run scheduled scans across your entire client portfolio from one place.

Question 16

What's the difference between a scan and monitoring?

Accepted Answer

A scan is one-time — you submit a URL and get a report. Monitoring is recurring — we re-scan on your schedule, compare against the last result, and alert on new, changed, or persistent issues. Both produce the same evidence pack.

Your CMP can fail silently. You'll be the last to know.

Run a free cookie compliance check

How it works

Enter URL

60-Second Analysis

Get Your Report

What we detect

Pre-Consent Cookies

Missing Reject Button

Dark Patterns

Pre-Consent Trackers

Cookie Walls

CMP Detection

Client-ready evidence packs

example-shop.com

Continuous monitoring — not a one-off scan

Scheduled recurring scans

Regression alerts

Scan-to-scan diff

Shared team inbox

Built for web agencies

Save 10+ hours/month

Send reports without editing

Independent verification

Catch regressions before clients do

Simple, transparent pricing

Free

Freelancer

Pro

Agency Pro

Enterprise

Frequently asked questions

Responsible scanning

Start protecting your clients today