SitePrivacyScore
Free lightweight tool, no login required

Free GDPR Quick Check

Get a lightweight technical estimate of your website's baseline GDPR compliance readiness. We check for secure connections, privacy policies, consent banners, and more.

Disclaimer: This is a lightweight automated technical estimate searching for common compliance markers (like keywords in HTML). It is NOT legal advice and does not guarantee GDPR compliance.

What Does GDPR Require for Websites?

The General Data Protection Regulation (GDPR) sets strict rules for how websites must handle the personal data of users in the European Union.

At a technical level, this means your site must encrypt data in transit (HTTPS), provide a clear and accessible Privacy Policy, and most importantly, obtain explicit, opt-in consent before loading any non-essential cookies or tracking scripts. Many websites fail this test by loading Google Analytics or Meta Pixels before the user even interacts with the cookie banner.

Related Tools and Guides

Cookie Scanner, Identify Non-Essential CookiesPrivacy Policy Generator, Create Your PolicyRead Guide: Cookie Consent & Banners

Verify actual consent banner functionality

Checking for a banner is easy. Knowing if it actually blocks cookies before consent is hard. Run a full SitePrivacyScore audit to simulate a user session and test your banner's true technical compliance.

Run Full Privacy AuditBrowse All Free Tools

For deeper runtime checks, run the full privacy audit →

Frequently Asked Questions

What does this free GDPR check actually do?+
It performs a lightweight scan of your site's initial HTTP server response and HTML source code. It looks for four critical baseline markers: a secure HTTPS connection, links to a Privacy Policy, the presence of a cookie consent mechanism, and the immediate loading of known trackers.
If I pass this check, am I fully GDPR compliant?+
No. This tool only provides a superficial technical estimate. True GDPR compliance involves adhering to data minimization principles, honoring data subject access requests (DSARs), and ensuring your cookie banner actually blocks scripts prior to explicit user consent. A full technical audit is required to verify the latter.
My site has a cookie banner, why did it fail the tracker check?+
A common mistake is installing a cookie banner that only informs the user (a 'Notice' banner) or loads trackers simultaneously with the banner. Under GDPR, you must use a 'Consent' banner that blocks all non-essential scripts (like Google Analytics) until the user actively clicks 'Accept'. If this tool found trackers on initial load, your banner is likely implemented incorrectly.
Does GDPR apply to my website if I'm not in Europe?+
Yes, the GDPR operates on the principle of 'extraterritoriality'. If your website targets, offers goods/services to, or monitors the behavior of individuals located within the European Union, you must comply with the GDPR, regardless of where your business is headquartered.
Is this tool providing legal advice?+
Absolutely not. This is an automated technical scanner designed to highlight potential areas of concern for developers and site owners. You should always consult with a qualified legal professional regarding your organization's specific compliance obligations.