Skip to main content

GDPR Cookie Consent Compliance Checker

Check cookie consent compliance against GDPR, ePrivacy, and ICO requirements. Enter values for instant results with step-by-step formulas.

Worked Examples

Example 1: E-commerce Site Audit

Problem:A site shows Accept All button, tiny Manage Preferences link, pre-sets analytics, fires GA before consent.

Solution:Critical violations: cookies before consent, pre-ticked boxes, unequal buttons. Fix: block GA until consent, remove pre-ticked, add prominent Reject All.

Result:Non-Compliant | 3 critical failures | HIGH fine risk

Example 2: B2B SaaS Assessment

Problem:B2B platform uses only auth cookies plus one analytics cookie. No consent banner, arguing B2B exemption.

Solution:There is NO B2B exemption. Analytics cookie requires consent. Options: remove analytics or implement minimal consent banner.

Result:Non-Compliant | Need consent for analytics | Consider server-side

Example 3: Media Publisher Compliance

Problem:News site uses 47 third-party cookies. Banner shows only Accept and buried More Options.

Solution:Add first-layer Reject All, implement TCF 2.0, block cookies until consent. Expect 45-55% consent rate vs 95% with dark patterns.

Result:Major gaps | Add Reject All | ~20% initial revenue impact

Frequently Asked Questions

What cookies require consent under GDPR?

All non-essential cookies require consent: analytics, marketing, advertising, and social media plugins. Essential cookies for session, authentication, and security are exempt but should still be disclosed.

What makes cookie consent valid under GDPR?

Valid consent must be: freely given, specific, informed, unambiguous, and withdrawable. Pre-ticked boxes and implied consent are not valid.

Do I need a cookie consent banner?

If you use any non-essential cookies and have EU/UK visitors, yes. If your site only uses strictly necessary cookies, you don't need a consent banner but should have a cookie policy.

How long does cookie consent last?

GDPR doesn't specify duration, but regulators suggest 6-12 months maximum. After this period, re-obtain consent.

References