Check whether any website has a privacy policy, where it is linked, and whether it covers key GDPR, CCPA, cookie and data retention signals. Instant, no login required.
Detects privacy policy presence, cookie notices, and key GDPR / CCPA compliance signals
Paste the full URL of the website you want to audit. The tool fetches the homepage and scans both the page source and footer for privacy policy links and inline privacy disclosures.
The report shows whether a privacy policy page exists, where it is linked, and a checklist of key clauses — data collection disclosure, third-party sharing, cookie notice, user rights, contact details and last-updated date.
Each compliance signal is marked Pass, Warn or Missing. Use the detailed findings to strengthen your own policy, or to vet a third-party site before sharing data with them.
Privacy laws in most jurisdictions — including GDPR (EU), CCPA (California), PIPEDA (Canada), LGPD (Brazil) and the Australian Privacy Act — legally require websites that collect personal data to publish a privacy policy. Collecting even a single email address or using Google Analytics constitutes personal data collection.
The tool scans the entered website for the presence and location of a privacy policy link, whether the policy page is accessible, and key compliance signals including disclosures about data collection, third-party sharing, cookie usage, user rights, data retention periods, and a contact address for privacy queries.
The General Data Protection Regulation (GDPR) is an EU law that applies to any website that processes personal data of EU residents regardless of where the website is hosted. If any of your visitors are in the EU or UK, you must comply. Key requirements include a lawful basis for processing, privacy notice, cookie consent, and a documented way for users to exercise their rights.
The California Consumer Privacy Act (CCPA) applies to for-profit businesses meeting certain thresholds that do business with California residents. It requires a privacy policy disclosing data categories collected, purposes, and a Do Not Sell My Personal Information link.
A comprehensive privacy policy should cover: what personal data is collected, how it is collected, why it is collected, who it is shared with, how long it is retained, user rights (access, rectification, deletion), how to contact the data controller, and when the policy was last updated.
Yes — the tool works on any publicly accessible website. Checking competitors is useful to benchmark your own policy completeness, identify compliance gaps, or understand what data practices industry peers disclose.
A cookie consent banner informs visitors which cookies your site sets and asks for consent before non-essential cookies are activated. GDPR requires active opt-in consent for non-essential cookies before they fire. CCPA requires disclosure and opt-out.
Yes — your privacy policy should be reviewed and updated whenever you add a new third-party service, change how you use or store data, or when privacy laws in key markets are updated. Policies with a visible Last Updated date signal to users and regulators that the document is actively maintained.
Regulatory consequences include fines (GDPR fines can reach 20 million euros or 4 percent of global annual turnover for serious violations), enforcement actions, and reputational damage. Major advertising platforms like Google Ads and Meta Ads require a valid privacy policy before approving campaigns.
No — this tool provides automated compliance signals based on publicly accessible page content. It identifies the presence or absence of common privacy policy elements, but it cannot assess the legal sufficiency of policy language. For definitive legal advice, consult a qualified privacy lawyer or data protection officer.
