Skip to content
Free Tool - No Account Required

Free GDPR Compliance Scanner

Audit any website for GDPR compliance. Check cookie consent, privacy policy, tracking scripts, and more.

3 of 3 free scans remaining today

Checks consent banner, cookies, trackers, HTTPS, privacy policy, and Google Consent Mode.

Comprehensive GDPR Audit

What Our GDPR Compliance Scanner Checks

Six critical compliance areas analysed in seconds - from cookie consent banners to privacy policy coverage.

Cookie Consent Banner

Detects your cookie banner, checks for Accept and Reject buttons, verifies no pre-ticked checkboxes, and identifies your CMP provider. Scored out of 25 points.

Pre-Consent Cookies

Identifies cookies set before user interaction. Separates essential from non-essential cookies to flag potential GDPR violations. Scored out of 25 points.

Third-Party Trackers

Detects analytics and marketing scripts (Google Analytics, Meta Pixel, etc.) loading before consent. Uses a database of 60+ known tracking services. Scored out of 20 points.

HTTPS & Security Headers

Verifies HTTPS is enabled, checks for HSTS, Content-Security-Policy, X-Content-Type-Options, and Referrer-Policy headers. Scored out of 10 points.

Privacy Policy Analysis

Finds your privacy policy page and analyses it for 10 GDPR-required topics: data controller, legal basis, subject rights, retention, DPO contact, and more. Scored out of 10 points.

Google Consent Mode

Checks for Google Consent Mode v2 defaults, deny-by-default configuration, and consent update commands. Scored out of 10 points.

How the GDPR Scanner Works

Three simple steps to audit any website for GDPR compliance.

1

Enter Your URL

Type or paste any website URL. We support all websites regardless of CMS or hosting platform.

2

We Audit 6 Categories

A headless browser loads your page and checks cookie consent, pre-consent cookies, trackers, HTTPS, privacy policy, and Consent Mode.

3

Get Your Compliance Score

Receive a 0-100 score with an A-F grade, category breakdowns, and actionable recommendations to fix issues.

Compliance Essentials

GDPR Website Compliance Checklist

The key requirements every website must meet to comply with GDPR and the ePrivacy Directive.

Cookie consent banner with Accept and Reject options

Required by CJEU ruling - rejecting must be as easy as accepting

No tracking cookies before consent

Analytics and marketing cookies must wait for explicit opt-in

Block third-party scripts until consent

Google Analytics, Meta Pixel, and similar must not fire pre-consent

HTTPS with security headers

HSTS, Content-Security-Policy, and secure cookie flags

Comprehensive privacy policy

Must cover data controller, legal basis, subject rights, retention, and DPO

Google Consent Mode v2 (if using Google tags)

Required since March 2024 for Google Ads audience building in the EEA

Fix These Issues Automatically

Kukie.io provides a complete cookie consent solution that handles GDPR compliance for you.

  • Customisable consent banner with Accept and Reject buttons
  • Automatic cookie scanning and categorisation
  • Google Consent Mode v2 integration
  • Consent logging for compliance audits
  • Privacy Policy and Cookie Policy generators
Start Free - No Credit Card Required → View Pricing

Why Kukie

Go Beyond Scanning

The free scanner is just the start. Kukie.io gives you everything to stay compliant.

Cookie Scanner

Automatic cookie detection and categorisation for your entire site. Schedule weekly or monthly scans to keep your cookie inventory up to date.

Consent Banner

Customisable banner with Accept/Reject and Google Consent Mode v2 built-in. Adapts to your visitor's location and applicable laws.

Compliance Tools

Privacy Policy and Cookie Policy generators, consent logging, and more. Everything you need to demonstrate GDPR compliance.

GDPR Compliance FAQ

What does this GDPR scanner check?
This scanner performs a comprehensive audit across six categories: cookie consent banner quality (checking for accept and reject buttons), pre-consent cookies (non-essential cookies set before user interaction), third-party trackers loading before consent, HTTPS and security headers, privacy policy presence and keyword coverage, and Google Consent Mode implementation. Each category is scored and combined into an overall compliance rating.
Is this GDPR compliance scanner free?
Yes, completely free. You can scan any website up to 3 times per day. No account or credit card required. For ongoing compliance monitoring with scheduled scans, automatic cookie categorisation, and a customisable consent banner, create a free Kukie.io account.
What is a good GDPR compliance score?
An A grade (90-100 points) indicates strong compliance. A B grade (75-89) means mostly compliant with minor issues. C grade (50-74) signals significant gaps that should be addressed. D and F grades indicate serious compliance risks. Most issues can be fixed by implementing a proper consent management platform.
Why do cookies before consent matter?
Under GDPR and the ePrivacy Directive, non-essential cookies (analytics, marketing, advertising) must not be set until the user gives explicit consent. Setting tracking cookies before the visitor interacts with your consent banner is one of the most common GDPR violations and can result in fines.
What is a cookie consent banner?
A cookie consent banner is a notice displayed to website visitors that informs them about cookies and tracking technologies used on the site and asks for their consent. Under GDPR, the banner must provide clear options to accept or reject non-essential cookies before any tracking begins.
Why do I need a "Reject All" button?
The Court of Justice of the EU (CJEU) ruled that rejecting cookies must be as easy as accepting them. If your banner has a prominent "Accept All" button, it must also have an equally accessible "Reject All" or "Only Necessary" option. Many data protection authorities actively enforce this requirement.
What should a GDPR privacy policy include?
A GDPR-compliant privacy policy should identify the data controller, state the legal basis for processing, explain data subject rights (access, erasure, portability), describe data retention periods, list third-party data sharing, address international data transfers, provide DPO contact details, explain cookie usage, and inform users of their right to complain to a supervisory authority.
How can I improve my GDPR compliance score?
Start by implementing a consent management platform like Kukie.io to handle cookie consent properly. Ensure your consent banner has both accept and reject options. Block all analytics and marketing scripts until consent is given. Update your privacy policy to cover all required GDPR topics. Enable HTTPS with HSTS. If you use Google Analytics or Google Ads, implement Google Consent Mode v2.

GDPR Compliance Guides and Resources

Helpful articles and tools to understand your scan results and improve your website's privacy compliance.

GDPR Beginner's Guide for Website Owners

Everything you need to know about GDPR

Common Cookie Compliance Mistakes

Avoid the most frequent GDPR pitfalls

Essential vs Non-Essential Cookies

How to classify cookies correctly

What Happens When You Reject All Cookies

Why the Reject button matters

Cookie Consent Laws by Country

Global overview of privacy regulations

Set Up Cookie Consent for the First Time

Step-by-step implementation guide

Free Cookie Scanner

Scan cookies on any website →

Consent Mode v2 Checker

Test your GCM v2 setup →

Third-Party Script Audit

Audit external scripts →

Privacy Policy Generator

Create a GDPR-compliant policy →

Listed On