Passer au contenu principal
PolicyTracker
 Free GDPR Scan
GDPR Audit
Full Report May 25, 2026 Report ID: sample...

GDPR Compliance Audit Report

https://example-ecommerce.com

65%

Compliance Score

1

Critical Issues

6

Warnings

2

Passed Checks

Executive Summary

Our automated scan of https://example-ecommerce.com identified 7 issues that require attention to achieve GDPR compliance.

Risk Level: HIGH

1 Critical 2 High 4 Medium 0 Low

Priority Action Plan

Priority Issue Effort Est. Cost
CRITICAL Marketing cookies pre-enabled in consent manager1 hour €0 (configuration only)
HIGH Google Analytics loaded before consent4-8 hours €200-400
HIGH Cookie banner uses dark patterns2-4 hours €100-200
MEDIUM Privacy policy missing data retention periods2-3 hours €150-250 (legal review)
MEDIUM Contact form lacks privacy notice1-2 hours €50-100
MEDIUM Data transfers to US without SCCs disclosed2-4 hours €100-200
MEDIUM No data subject rights mechanism8-16 hours €400-800

Detailed Findings

HIGH

Google Analytics loaded before consent

The website loads Google Analytics tracking script immediately on page load, before any user consent is obtained. This violates GDPR Article 7 which requires prior consent for non-essential cookies.

CRITICAL

Marketing cookies pre-enabled in consent manager

The consent management platform shows marketing/advertising cookies as pre-enabled in the settings panel, requiring users to manually disable them.

HIGH

Cookie banner uses dark patterns

The cookie consent banner presents an "Accept All" button prominently while hiding the "Reject" or "Manage Preferences" option behind multiple clicks. This is considered a "dark pattern" under recent GDPR enforcement guidance.

MEDIUM

No data subject rights mechanism

The website provides no visible mechanism for users to exercise GDPR rights (access, deletion, portability). Contact email is buried in privacy policy.

Next Steps

  1. 1

    Address Critical Issues First

    Focus on the 1 critical issues that pose the highest compliance risk.

  2. 2

    Implement Cookie Consent Properly

    Ensure no tracking scripts load before explicit user consent is given.

  3. 3

    Update Privacy Documentation

    Review and update your privacy policy to reflect actual data processing activities.

  4. 4

    Schedule a Follow-up Scan

    After implementing fixes, run another audit to verify compliance.

← Back to Home

Nous valorisons votre confidentialité

Nous utilisons des cookies pour améliorer votre expérience de navigation, diffuser du contenu personnalisé et analyser notre trafic. Vous pouvez choisir quels cookies vous autorisez.

Lisez notrePolitique de confidentialitéetPolitique des cookiespour plus de détails.