Pricing

$1.00 / 1,000 site scanneds

Go to Apify Store

GDPR & Privacy Cookie Scanner

Try for free

Scan websites to identify tracking cookies and third-party scripts. Automate privacy compliance and GDPR audits.

Pricing

$1.00 / 1,000 site scanneds

Rating

0.0

(0)

Developer

Andok

Actor stats

Bookmarked

Total users

Monthly active users

17 days ago

Last modified

Features

Pre-consent cookie detection — identifies analytics, marketing, and tracking cookies set before user consent
Cookie categorization — classifies every cookie as necessary, analytics, marketing, functional, or unknown
Consent banner detection — recognizes major CMPs including OneTrust, Cookiebot, and Cookie Notice
Compliance grading — assigns Pass, Warning, or Fail based on GDPR best practices
Third-party cookie analysis — flags cookies from external domains (Facebook, Google, HubSpot, Hotjar, etc.)
Post-consent comparison — captures cookies before and after accepting consent to show what changes
Bulk scanning — process hundreds of URLs in a single run for agency-scale audits

Input

Field	Type	Required	Default	Description
`urls`	`array`	Yes	—	Website URLs to scan for cookie compliance. Each URL is loaded in a real browser to capture all cookies, including those set by JavaScript.
`waitForBanner`	`boolean`	No	`true`	When enabled, the scanner waits for a cookie consent banner to appear and attempts to click "Accept" to compare pre- and post-consent cookies. Disable if you only want the pre-consent snapshot.
`timeout`	`integer`	No	`30000`	Maximum time in milliseconds to wait for page load and banner detection. Increase for slow-loading sites or complex single-page applications. Range: 5,000–120,000 ms.

Input Example

{
  "urls": [
    { "url": "https://crawlee.dev" },
    { "url": "https://example.com" }
  ],
  "waitForBanner": true,
  "timeout": 30000
}

Output

Each scanned URL produces a detailed compliance report with cookie inventories, categorization, consent banner status, and a compliance grade.

Key output fields:

url — the scanned page URL
complianceGrade — Pass, Warning, or Fail
issues — list of specific compliance problems found
preConsentCookies — cookies present before any user interaction
postConsentCookies — cookies added after accepting the consent banner
cookiesSetWithoutConsent — non-necessary cookies loaded before consent (the main GDPR risk)
consentBannerDetected — whether a cookie consent banner was found
consentManagementPlatform — detected CMP (OneTrust, Cookiebot, etc.)
totalCookies — total cookie count across the session
trackingCookies — number of identified tracking cookies
thirdPartyCookies — cookies from external domains

Output Example

{
  "url": "https://example.com",
  "timestamp": "2025-01-15T10:30:00.000Z",
  "complianceGrade": "Fail",
  "issues": [
    "3 non-necessary cookies set before consent",
    "2 tracking cookies set before consent"
  ],
  "consentBannerDetected": true,
  "consentManagementPlatform": "OneTrust",
  "totalCookies": 12,
  "trackingCookies": 5,
  "preConsentCookies": [
    {
      "cookie": { "name": "_ga", "domain": ".example.com", "path": "/", "expires": 1737000000 },
      "category": "analytics",
      "isTracker": true,
      "trackerType": "Google Analytics"
    }
  ],
  "thirdPartyCookies": [
    {
      "cookie": { "name": "_fbp", "domain": ".facebook.com", "path": "/", "expires": 1737000000 },
      "category": "marketing",
      "isTracker": true,
      "trackerType": "Facebook Pixel"
    }
  ]
}

Pricing

Event	Cost
Site Scanned	$0.01 per URL

Free tier available — pay only for Apify platform usage beyond free limits.

Use Cases

Privacy compliance audits — scan client websites before GDPR audits and generate evidence-ready reports showing cookie violations
Agency client reporting — run bulk scans across all client domains on a schedule and flag new compliance issues automatically
Vendor due diligence — verify that third-party SaaS tools and marketing platforms are not setting tracking cookies without consent
Pre-launch QA — check new websites or redesigns for cookie compliance before going live
Competitive benchmarking — compare cookie practices across competitors to identify industry-standard consent implementations

Actor	What it adds
Security Headers Analyzer	Audit HTTP security headers alongside cookie compliance for a full privacy and security review
Tech Stack Analyzer	Identify the CMS, frameworks, and third-party scripts that may be setting the cookies you found
Broken Links Checker	Combine cookie compliance with broken-link detection for a comprehensive site health audit

Notes

The scanner uses a real Chromium browser via Playwright, so it captures JavaScript-set cookies that HTTP-only scanners miss.
Consent banner detection relies on common CMP selectors (OneTrust, Cookiebot, generic patterns). Custom or uncommon banners may not be detected.
Compliance grading is advisory — it highlights common GDPR issues but does not constitute legal advice.

Gdpr Compliance API

vivid_astronaut/gdpr-compliance

Fabio Suizu

Privacy Compliance Analyzer V.1

actor_researcher.48/privacy-compliance-analyzer-v-1

Scan websites for privacy compliance issues. Detects trackers, checks GDPR/CCPA rights, finds privacy policies, and generates DSAR templates. Get actionable compliance scores and recommendations in an easy-to-read HTML report. Perfect for privacy audits and regulatory assessments.

ANIRBAN ROY

Cookie Scanner

automation-lab/cookie-scanner

This actor scans cookies set by websites via HTTP response headers. It identifies first-party vs third-party cookies, checks for Secure and HttpOnly flags, validates SameSite attributes, and categorizes cookies (analytics, advertising, functional, consent). Essential for GDPR and privacy...

Stas Persiianenko

Privacy Stack

bikram786/privacy-stack

Privacy researcher & developer building production Apify actors for arXiv privacy research. Privacy Stack brings 1 5,00+ real arXiv privacy papers into one place ..carefully verified with no fake URLs & no duplicates. Categories : Internet Privacy Data Privacy Crypto Privacy Post-Quantum Privacy

Bikram Biswas

Privacy Policy Detector

automation-lab/privacy-policy-detector

This actor scans websites for legal and compliance pages — privacy policy, terms of service, cookie policy, disclaimer, and accessibility statements. It also detects cookie consent banners, GDPR mentions, and CCPA references. Useful for compliance audits and vendor assessments.

Stas Persiianenko

The Privacy Policy Generator

anointment/the-privacy-policy-generator

Save $500 on legal fees. Generates a professional, GDPR & CCPA compliant Privacy Policy for your website or app in seconds. Returns clean Markdown/HTML ready to copy-paste.

Anointment

RGPD_PRO - GDPR Compliance Scanner with Fine Estimates

julien.escrouzailles/rgpd-pro---gdpr-compliance-scanner-with-fine-estimates

Forensic GDPR scanner. Detects violations, estimates fines from 2,091 real EU sanctions, provides ROI-driven remediation plans in less than 2 minutes.

Julien Escrouzailles

Cookie Consent Checker

pillowy_travel/cookie-consent-checker

Checks whether a website displays a cookie consent banner and basic GDPR compliance signals.

SAHIL KUMAR

Website Tags & Pixels Detector

smart-digital/website-tags-pixels-detector

Detects 380+ third-party tools on websites including analytics, marketing pixels, CRM platforms, chat widgets, payment processors, cookie consent managers, scheduling tools, and lead generation tools. Analyzes scripts, cookies, JavaScript variables, and network requests.

My Smart Digital

Tor Project Scraper Api

fresh_cliff/tor-project-scraper-api

Extract Tor Project data, privacy tools, security research, onion services. Real-time privacy intelligence with mirror fallbacks. Export to JSON/CSV. Monitor Tor updates, track security tools, analyze privacy networks. Fast requests + BeautifulSoup scraper. Tor Project Scraper API - Extract Privacy.