GDPR
General Data Protection Regulation
European Union
In force since 2018
Europe & UK
Scan your site for GDPR compliance
See what fires before consent and get a scored GDPR checklist in seconds.
Who must comply
Any organization that offers goods or services to people in the EU or monitors their behavior, wherever the organization is based.
Penalties
Up to โฌ20 million or 4% of global annual turnover, whichever is higher.
Key obligations
- Obtain prior, opt-in consent before non-essential cookies
- Make refusing as easy as accepting
- Keep records that prove consent
- Honor withdrawal at any time
- Respect data subject rights (access, erasure, portability)
How ConsentX helps
Prior-script blocking for true opt-in
Equal-weight Allow and Reject controls
Tamper-evident consent receipts and evidence
One-click withdrawal trigger
Built-in DSAR workflow with 30-day SLA
Get GDPR ready with ConsentX
This page is a plain-English summary for general information and is not legal advice. Confirm your obligations with qualified local counsel.
How to comply with GDPR using ConsentX
- 1
Scan your website
Run a free scan to find every cookie and tracker on your site, so you know exactly what needs consent under GDPR.
- 2
Show a geo-aware consent banner
Add the ConsentX banner. It detects each visitor region and shows the consent experience that GDPR requires, automatically.
- 3
Block trackers until consent
Keep non-essential cookies and trackers blocked until the visitor agrees, so nothing fires before consent.
- 4
Record tamper-evident proof
Every choice is stored as a tamper-evident consent receipt you can produce in a GDPR audit.
- 5
Handle data requests on time
Use the built-in DSAR workflow with SLA timers to answer access, deletion and opt-out requests within the legal deadline.
Frequently asked questions
Do I need consent before setting cookies under GDPR?+
Yes. Non-essential cookies and trackers need freely given, specific, informed prior consent before they run.
Is an Accept-only cookie banner GDPR compliant?+
No. Refusing must be as easy as accepting, and non-essential categories must not be pre-selected.
How do I prove consent in a GDPR audit?+
ConsentX stores a tamper-evident receipt with the policy version and hash for each consent, exportable on demand.