Skip to main content
2,643+ sites scanned

GDPR compliance,without the complexity.

Scan your site for violations, get copy-paste fixes, and stay compliant automatically — without hiring a lawyer or learning EU law.

Covers GDPR, CCPA, LGPD & WCAG 2.1 AA · 21 GDPR + 17 accessibility checks · Free to start

$
Scan in 30s Copy-paste fixes Monitor weekly

No account required · Free · Not a substitute for legal advice

🇮🇪 Meta€1.2B·🇱🇺 Amazon€746M·🇮🇪 TikTok€530M·🇮🇪 Instagram (Meta)€405M·🇮🇪 TikTok€345M·🇫🇷 Google€325M·🇮🇪 LinkedIn€310M·🇳🇱 Uber€290M·🇮🇪 Meta€1.2B·🇱🇺 Amazon€746M·🇮🇪 TikTok€530M·🇮🇪 Instagram (Meta)€405M·🇮🇪 TikTok€345M·🇫🇷 Google€325M·🇮🇪 LinkedIn€310M·🇳🇱 Uber€290M·

Real fines · Real companies

Recent GDPR Enforcement

0Mand counting

total GDPR fines issued to date

🇮🇪 Meta (Facebook)

Irish DPC · 2023

€1.2B

Unlawfully transferred EU user data to US servers without adequate safeguards after Schrems II invalidated Privacy Shield.

🇱🇺 Amazon

Luxembourg CNPD · 2021

€746M

Processing personal data for behavioural advertising without a valid legal basis. Fine upheld on appeal in March 2025.

🇮🇪 TikTok

Irish DPC · 2025

€530M

Unlawfully transferred EEA user data to China without adequate safeguards, and failed to be transparent with users about those transfers.

🇮🇪 Instagram (Meta)

Irish DPC · 2022

€405M

Exposed children's contact details publicly and set minor accounts to public by default — violating GDPR's privacy by design obligations.

🇮🇪 LinkedIn

Irish DPC · 2024

€310M

Processing EU members' data for behavioural advertising without a valid lawful basis — unlawfully using legitimate interests and contractual necessity.

🇳🇱 Uber

Dutch AP · 2024

€290M

Transferring European taxi drivers' sensitive personal data — including identity documents and criminal records — to US servers without safeguards.

What founders say

Trusted by founders worldwide

I thought we were compliant until fixGDPR found pre-consent tracking firing on every page load. Took 2 hours to fix with the exact code snippets. Could have been a nasty DPA situation.

S

Sara K. 🇩🇪

SaaS founder

We now offer GDPR audits as a paid add-on service. fixGDPR does the scan in under a minute — I used to charge €800 for a manual audit that took me half a day.

M

Marco B. 🇮🇹

Agency owner

Ran it on 12 client sites before a contract renewal. 9 had broken or missing cookie banners. That one batch of fixes paid for the Pro plan many times over.

L

Lena V. 🇳🇱

Web developer

My Shopify contact form was collecting emails with no consent checkbox — never would have caught it manually. The fix snippet worked first try. Took maybe 10 minutes total.

T

Tom H. 🇬🇧

E-commerce founder

Score went from 42 to 91 in a weekend. We dropped the compliance report PDF into our Series A deck. One investor specifically mentioned it during due diligence calls.

A

Ana R. 🇪🇸

Startup CEO

Every other GDPR tool gives you a checklist. fixGDPR gives you the actual WordPress code to paste. That difference alone is worth the subscription.

P

Pierre M. 🇫🇷

Freelance dev

We received a formal inquiry from a DPA about our cookie practices. fixGDPR helped us pull a timestamped compliance report within hours. Felt much more prepared going into the response.

J

Julia W. 🇵🇱

Product manager

Running a SaaS with EU users, I kept deferring GDPR. fixGDPR made it concrete — 4 issues, here's each fix. Done in a Saturday afternoon. No lawyer needed.

D

David C. 🇺🇸

Indie hacker

We manage 5 brand sites on different CMSes. Finally one tool that tells us exactly what's broken on each one instead of the same generic compliance advice repeated five times.

M

Marta L. 🇸🇪

Marketing director

I thought we were compliant until fixGDPR found pre-consent tracking firing on every page load. Took 2 hours to fix with the exact code snippets. Could have been a nasty DPA situation.

S

Sara K. 🇩🇪

SaaS founder

We now offer GDPR audits as a paid add-on service. fixGDPR does the scan in under a minute — I used to charge €800 for a manual audit that took me half a day.

M

Marco B. 🇮🇹

Agency owner

Ran it on 12 client sites before a contract renewal. 9 had broken or missing cookie banners. That one batch of fixes paid for the Pro plan many times over.

L

Lena V. 🇳🇱

Web developer

My Shopify contact form was collecting emails with no consent checkbox — never would have caught it manually. The fix snippet worked first try. Took maybe 10 minutes total.

T

Tom H. 🇬🇧

E-commerce founder

Score went from 42 to 91 in a weekend. We dropped the compliance report PDF into our Series A deck. One investor specifically mentioned it during due diligence calls.

A

Ana R. 🇪🇸

Startup CEO

Every other GDPR tool gives you a checklist. fixGDPR gives you the actual WordPress code to paste. That difference alone is worth the subscription.

P

Pierre M. 🇫🇷

Freelance dev

We received a formal inquiry from a DPA about our cookie practices. fixGDPR helped us pull a timestamped compliance report within hours. Felt much more prepared going into the response.

J

Julia W. 🇵🇱

Product manager

Running a SaaS with EU users, I kept deferring GDPR. fixGDPR made it concrete — 4 issues, here's each fix. Done in a Saturday afternoon. No lawyer needed.

D

David C. 🇺🇸

Indie hacker

We manage 5 brand sites on different CMSes. Finally one tool that tells us exactly what's broken on each one instead of the same generic compliance advice repeated five times.

M

Marta L. 🇸🇪

Marketing director

Security audit workflow

Three steps to compliance

01

Paste your URL

Get a compliance score and full list of violations in 30 seconds — no login required.

02

Follow the fixes

Every issue comes with copy-paste code tailored for your platform — WordPress, Shopify, Webflow, and more.

03

Stay compliant

fixGDPR monitors your site and alerts you if anything regresses — set it and forget it.

Coverage

21 GDPR + 17 WCAG checks · 30 seconds

CRITICAL

SSL / HTTPS

Encrypted data transmission required under GDPR Art. 32

CRITICAL

Privacy Policy

Required under GDPR Art. 13 — €20M fine risk

CRITICAL

Cookie Consent Banner

ePrivacy Directive requires prior consent for tracking cookies

CRITICAL

Pre-Consent Tracking

Trackers must not fire before visitor consent is obtained

HIGH

Storage Before Consent

No tracking IDs may be stored on devices without permission

HIGH

Browser Fingerprinting

Device fingerprinting without consent violates GDPR

HIGH

Form Consent Checkboxes

Forms collecting personal data need explicit consent

HIGH

Third-Party Tracking Scripts

Identifies GA, Meta Pixel, Hotjar and 13 other trackers

MEDIUM

Terms of Service

Protects your business and defines user obligations

MEDIUM

Data Subject Rights

Users must be able to request or delete their data

MEDIUM

Contact Information

GDPR Art. 13 requires data controller contact details

MEDIUM

Security Headers

Missing headers expose your site to common web attacks

INFO

Remote Google Services

Google Fonts shares visitor IP addresses with Google

Why fixGDPR

The fastest path to compliance

Compare your options before spending thousands on lawyers.

Option← YOU ARE HEREfixGDPRLaw FirmManual AuditCookiebot
Time to results30 seconds2–4 weeksDays of workSetup required
CostFree / $19/mo€500–€5,000+Your time€9+/mo
Platform-specific fixesMaybe
Code snippets included
No technical knowledge needed
Checks all 13 GDPR areasVaries
Instant re-scan

Everything included

The full GDPR toolkit

Not a single feature — a complete compliance stack for startups. Built for founders, not legal departments.

Compliance Scanner

21 GDPR checks + 17 WCAG 2.1 AA accessibility checks across GDPR, CCPA, LGPD & EAA. Results in 30 seconds, scored by severity.

Copy-Paste Fixes

Every issue comes with platform-specific code snippets — WordPress, Shopify, Webflow, custom HTML, and more.

Hosted Consent Banner

Customizable cookie consent banner with a self-hosted script tag. One line of code to embed.

Site Monitoring

Weekly or daily re-scans with email alerts when your compliance score drops. Set it and forget it.

DSAR Management

Public-facing data subject request form with a tracked inbox. Never miss a request deadline.

Reports & Badges

PDF compliance reports and shareable score badges — useful for clients, investors, and your own peace of mind.

EU Visitor Mode

Scan as a Frankfurt-based EU visitor. Triggers geo-IP consent flows that US-based scanners never see.

Pricing

Simple pricing

Most founders fix everything in a weekend.

Free

$0forever
  • Unlimited scans
  • Compliance score
  • 21 GDPR + 17 WCAG checks
  • EU Visitor Mode
  • Fixes locked
Scan your site

Starter

$9/month

or $84/year (save 20%)

  • 1 site
  • Hosted consent banner
  • 25K pv/mo
  • Weekly monitoring
  • 30-day consent logs
POPULAR

Pro

$19/month

or $190/year (save ~17%)

  • 3 sites
  • Hosted banner (100K pv/mo)
  • AI-powered fixes
  • Daily monitoring
  • 1-year consent logs
  • DSAR form

Agency

$49/month

or $470/year (save ~20%)

  • 25 sites
  • Everything in Pro
  • White-label banner
  • Sub-accounts
  • API access
  • Priority support
Coming soon

Browser extension — GDPR checks in one click

Check any site for compliance without leaving your browser. Instant score, 7 checks, live tracker monitoring — free for Chrome & Firefox.

  • Score 0–100 + letter grade A–F in toolbar badge
  • All 7 GDPR checks with severity levels
  • Live tracker monitoring tab
  • Copy-paste fixes for WordPress, Shopify & more (Pro)
Learn more & get notifiedRead announcement

FAQ

Common questions

Is this legal advice?

No. fixGDPR detects common patterns on your website. It is not legal advice. Consult a qualified GDPR lawyer for your specific situation.

Who is fixGDPR NOT for?

fixGDPR is not designed for large enterprises, healthcare providers, or companies processing sensitive personal data at scale. For those use cases, work with a Data Protection Officer and an enterprise-grade CMP like OneTrust.

Which regulations do you check?

We check for GDPR (EU General Data Protection Regulation), ePrivacy Directive, CCPA (California Consumer Privacy Act), UK GDPR, LGPD (Brazil), and WCAG 2.1 AA web accessibility (required by the European Accessibility Act from June 2025). Our 21 GDPR + 17 WCAG checks cover all major privacy and accessibility regulations.

How long does a scan take?

Most scans complete in 10–30 seconds. We run a static analysis of your site's HTML, scripts, and links.

Is my website data stored?

We store the scan results and your URL to power your dashboard. We don't store your site's content.

What if my site blocks automated scanners?

We respect robots.txt. Whitelist our User-Agent: fixGDPR/1.0 Compliance Scanner to allow scanning.

Weekly GDPR digest

Stay ahead of regulators

Get weekly GDPR fine summaries, compliance tips, and alerts when new trackers are found on your site.

Weekly digest · No spam · Unsubscribe anytime

Check your site for free

No account required. Results in 30 seconds.

$
See pricing