Privacy Policy

Last updated: June 2026 · gdprgard.eu

1. Data Controller

GDPRGard.eu is operated as a freelance GDPR consultancy service based in Croatia, EU. For data-related enquiries contact: info@gdprgard.eu

2. What Data We Collect

3. Legal Basis for Processing (Art. 6 GDPR)

4. Third-Party Recipients

5. Data Retention

6. Your Rights (Art. 15–22 GDPR)

You have the right to: access your data, correct inaccuracies, request deletion, restrict processing, data portability, and object to processing. To exercise any right, email info@gdprgard.eu. We will respond within 30 days.

7. Complaints

You may lodge a complaint with the Croatian Personal Data Protection Agency (AZOP): azop.hr

8. Contact

Data controller contact for privacy matters: info@gdprgard.eu · gdprgard.eu

EU
GDPRGard.eu — Free GDPR Audit Tool For European Businesses

Is your website
GDPR
compliant?

Find out in 30 seconds. Our AI-powered checker audits your website across 10 critical GDPR requirements — before the regulators do.

Run Free Audit Why this matters
€5.88B
Total GDPR fines since 2018
€20M
Maximum fine per violation
10
Compliance checks, 30 seconds
Free
No signup, no credit card
Cookie Consent · Privacy Policy · Data Processing Transparency · Third-Party Trackers · User Rights (Art. 17) · DPO Contact · Consent Basis · SSL Security · Pre-Ticked Boxes · Cookie Categories · Cookie Consent · Privacy Policy · Data Processing Transparency · Third-Party Trackers · User Rights (Art. 17) · DPO Contact · Consent Basis · SSL Security · Pre-Ticked Boxes · Cookie Categories ·
Data Processing & Legal Basis (Art. 6 GDPR)
Purpose Data Legal Basis Retention
Contact enquiries Name, email, message Consent — Art. 6(1)(a) 90 days
GDPR audit tool URL submitted Legit. Interest — Art. 6(1)(f) Not stored
Necessary cookies Session data Legit. Interest — Art. 6(1)(f) Session
Analytics cookies Page views (anon.) Consent — Art. 6(1)(a) 365 days
Third-Party Sub-Processors (Art. 13(1)(e) GDPR)
Formspree (formspree.io)
Contact form processing · US · Standard Contractual Clauses
Form data
Anthropic (anthropic.com)
AI audit processing · US · Standard Contractual Clauses
URL only
Netlify (netlify.com)
Website hosting · US · DPA signed · GDPR-compliant
Hosting
Cookie Categories (ePrivacy Directive)
Strictly Necessary Session, consent preference
Always on
Analytics Anonymous page analytics
Consent req.
Marketing Currently none used
Not active
Your Rights Under GDPR (Art. 15–22)
✓ Right of Access (Art. 15) ✓ Right to Rectification (Art. 16) ✓ Right to Erasure (Art. 17) ✓ Right to Portability (Art. 20) ✓ Right to Object (Art. 21) ✓ Right to Restrict Processing (Art. 18)
To exercise any right: info@gdprgard.eu · Response within 30 days · Complaints: AZOP (Croatian DPA)
The Risk

Non-compliance is an expensive gamble

GDPR enforcement is accelerating across Europe. Real data, real fines — click each topic to see the full picture.

01
€1.2B fined in 2024 alone
Regulators across Europe issued €1.2 billion in fines — bringing the all-time total to €6.1 billion since 2018.
Annual GDPR Fines (€ billions) — Source: DLA Piper 2025
2018
€72M
2019
€253M
2020
€307M
2021
€972M
2022
€1.0B
2023
€2.9B
2024
€1.2B
🏆 Largest ever fine: €1.2B vs Meta (2023)
📍 Ireland leads: €3.5B total fines issued
📈 363 data breaches reported daily in 2024
⚠️ Top 2024 fine: €310M vs LinkedIn
Source: DLA Piper GDPR Fines Survey 2025 →
02
SMBs are the new target
Regulators increasingly target small businesses — size is not a shield. Spain alone issued 107 fines in a single year, most against SMBs.
Fines by Volume — Top Countries 2024 (Source: GDPR Enforcement Tracker)
Spain
107 fines
Romania
61 fines
Italy
41 fines
Germany
30 fines
Hungary
19 fines
Croatia
~8 fines
⚖️ GDPR applies to ANY company processing EU data
💶 Even small fines hurt SMBs with thin margins
👔 Executives face personal liability (Netherlands precedent)
🏦 Finance & energy sectors now firmly in scope
Source: CMS GDPR Enforcement Tracker Report 2026 →
03
New EU AI Act adds obligations
The EU AI Act adds a new compliance layer on top of GDPR. If your website uses chatbots, analytics, or recommendation tools — you're already in scope.
EU AI Act — Key Deadlines & Penalties
Feb 2025 ✓
Prohibited AI practices banned
AI systems that manipulate users or exploit vulnerabilities are now illegal across the EU.
Aug 2025 ✓
GPAI transparency rules apply
General-purpose AI models (like ChatGPT integrations) must meet new transparency obligations.
Aug 2026 ⚠️ Upcoming
High-risk AI full compliance
AI used in HR, credit, or education must be registered and audited. Fines up to €35M or 7% of global revenue.
🤖 Chatbots on your site = AI Act scope
💰 Fines up to €35M or 7% of global revenue
🔗 GDPR + AI Act must be managed together
📋 SMBs get simplified documentation rules
Source: GDPR Local — EU AI Act Summary →
04
Most websites fail basic checks
The majority of European SMB websites fail at least 3 out of 10 GDPR checks — most gaps are simple to fix but expensive to ignore.
Most Common GDPR Failures on SMB Websites
78%
Missing proper cookie consent
65%
No legal basis stated for data processing
58%
Third-party trackers fire before consent
45%
No DPO or data contact listed
✅ Most issues fixable in under a week
🔍 2026 EDPB focus: transparency obligations
📬 443 breach notifications/day in EU (2025)
🛠️ Cookie banners are the #1 fix needed
Source: GDPR Enforcement Tracker + EDPB 2026 →
Free Tool

Audit your website
right now

No signup. No credit card. Just your URL and 30 seconds.

gdprgard.eu/checker
Enter your website URL
Initialising...
GDPR Compliance Audit
Found compliance gaps?
I fix GDPR issues for European SMBs — fast, affordable, no legal jargon.
Book a free 20-min consultation to discuss your results.
Book Free Consultation
🔒
You've used your free audit
You've already run a free audit in this session. To protect fair access for all users, each visitor gets one free check.

Want your full compliance report and a fix plan? Book a free consultation — I'll audit your site manually and send you the full PDF report.
Book Free Consultation →
10 Checks

What the audit covers

Every check maps to a specific GDPR article or requirement under EU law.

🍪
Cookie Consent Banner
Checks for a compliant consent banner with clear accept/reject options. Required under GDPR Art. 6 and ePrivacy Directive.
📄
Privacy Policy Page
Verifies you have an accessible, up-to-date privacy policy disclosing how data is collected and used (Art. 13/14).
👁
Data Processing Transparency
Checks that your policy clearly explains what data is collected, why, and how long it's retained (Art. 5).
🔍
Third-Party Tracker Disclosure
Identifies whether analytics, ads, or social media trackers are disclosed and consented to before activation.
👤
User Rights (Access, Deletion)
Checks that users can exercise their rights: access their data, request deletion, and data portability (Art. 15–20).
📬
DPO / Data Contact
Verifies a contact email or Data Protection Officer is listed for privacy-related requests (Art. 37–39).
⚖️
Legal Basis for Processing
Checks that a lawful basis (consent, legitimate interest, etc.) is stated for each type of data processing (Art. 6).
🔒
SSL / Secure Connection
Confirms your site uses HTTPS to protect data in transit. Required for any site handling personal data (Art. 32).
☑️
No Pre-Ticked Consent Boxes
Validates that consent is freely given and not pre-selected by default. Pre-ticked boxes are explicitly illegal under GDPR.
🗂️
Cookie Categories
Checks that cookies are categorised (necessary vs. analytics vs. marketing) with granular opt-in per category.
Pricing

Fix your compliance.
Flat fees, no surprises.

All services include a detailed report, implementation, and a 30-day follow-up check.

Starter
199
One-time audit + report
  • Full 10-point GDPR audit
  • Detailed written report
  • Prioritised fix list
  • 30-min consultation call
  • DIY guidance included
Get Started
Most Popular
Professional
799
Full implementation
  • Everything in Starter
  • We implement all fixes for you
  • Cookie banner setup & config
  • Privacy policy rewrite
  • 30-day compliance guarantee
  • Certificate of completion
Get Started
Retainer
299
per month
  • Monthly compliance monitoring
  • Law change alerts (EU AI Act etc.)
  • Ongoing fix implementation
  • Priority support
  • Quarterly audit reports
Get Started
Trusted by European businesses in
Free Consultation

Let's fix your
compliance together.

Tell me about your website and I'll come back with a free initial assessment within 24 hours.

✓ Message received!
I'll get back to you within 24 hours with a free initial assessment.