CyroloCyrolo
Features
Platform capabilities & tools
Pricing
$299/mo security subscription
Security Scanning
150+ automated vulnerability checks
Penetration Testing
Elite red team services
Free Tools
Free security scanners
About
Our mission & team
Contact
Get in touch
Sign InGet Started
Cyber Security
All systems operational
Do Not SellGPC supportPenalty estimate
Full Report

What's in the Full CCPA Audit?

12 automated checks covering every CCPA requirement.

Do Not Sell Link

Detects presence, visibility, and functionality of the required "Do Not Sell or Share My Personal Information" link.

Privacy Policy Analysis

AI-powered review of your privacy policy for all CCPA-required disclosures including categories, purposes, and rights.

Consumer Rights

Tests data access request, deletion request, and opt-out mechanisms for compliance with CCPA consumer rights.

GPC Support

Verifies Global Privacy Control signal support and proper response to browser-level opt-out preferences.

Tracker Audit

Identifies third-party trackers, advertising SDKs, and data sharing that may constitute "selling" under CCPA.

Penalty Calculator

Estimates potential fines based on violation type: up to $7,500 per intentional violation of consumer rights.

Enforcement growing

CCPA enforcement is ramping up

The California AG and the new California Privacy Protection Agency (CPPA) are actively investigating companies. The CPRA amendments expanded enforcement powers and penalties. Non-compliance risk is growing rapidly.

$1.2M
Sephora fine
$7,500
Per violation
$2,500
Per unintentional
40M+
CA consumers

Also scan for compliance with

GDPR ScannerCookie BannerCNIL ScannerLGPD Scanner

Frequently Asked Questions

Everything about CCPA compliance scanning.

Who does the CCPA apply to?+
The CCPA applies to for-profit businesses that collect California residents' personal information and meet one of these thresholds: annual gross revenue over $25M, buy/sell/share personal information of 100,000+ consumers, or derive 50%+ of annual revenue from selling personal information. But even smaller companies can be affected if they handle California consumer data.
What are the maximum CCPA penalties?+
The California AG can impose $2,500 per unintentional violation and $7,500 per intentional violation. Under the CPRA amendments, the California Privacy Protection Agency can also bring enforcement actions. With thousands of affected consumers, fines can escalate to millions quickly.
What is the "Do Not Sell" requirement?+
Businesses that sell or share personal information must provide a clear, conspicuous "Do Not Sell or Share My Personal Information" link on their homepage. This link must lead to a functional opt-out mechanism that processes requests without requiring account creation.
What is the Global Privacy Control (GPC)?+
GPC is a browser-level signal that communicates a consumer's opt-out preference. Under CCPA/CPRA, businesses must honor GPC signals as valid opt-out requests. Our scanner tests whether your site properly detects and responds to GPC headers.
What do I get with the full report?+
The full CCPA report includes 12 compliance checks: Do Not Sell discovery, privacy policy depth analysis, consumer rights audit, GPC signal test, cookie disclosure audit, financial incentive audit, minor protection audit, opt-out mechanism test, third-party tracker audit, data collection disclosure check, penalty calculation, and an AI-generated remediation plan. Price: €129.

Don't wait for enforcement

Every day without a scan
is a day the AG has the advantage

Discover compliance gaps across 12 CCPA checks. Get a comprehensive compliance grade with expert remediation guidance — before it's too late.

1,847 violations detected this hour
your-website.com
Live Compliance Feed
Start Scanning NowTalk to Sales

No registration required · Preview scan included · Full report from €129

More free tools

No account required. Scan any website instantly.

SSL Checker16 modulesFREE

Certificate chain, forward secrecy, OCSP stapling, CT logs, mixed content, and cipher analysis.

DNS Lookup18 modulesFREE

SPF, DKIM, DMARC, DNSSEC, MTA-STS, BIMI, reverse DNS, SMTP STARTTLS, and more.

Speed Test16 modulesFREE

Waterfall timing, resource hints, image optimization, HTML weight, and third-party detection.

Cookie Scanner12 modulesFREE

Full cookie inventory, pre-consent detection, GDPR compliance, and tracker mapping.

Security Headers8 headersFREE

CSP, HSTS, X-Frame-Options, Referrer-Policy, Permissions-Policy, COOP, CORP, X-Content-Type-Options.

Tech & Tracker DetectorFREE

CMS, analytics (GA, Hotjar), trackers, CDN, and framework detection.

Blacklist CheckFREE

Domain/IP on Spamhaus, SpamCop, Barracuda, SORBS DNSBLs.

Page Meta & SEOFREE

Open Graph, Twitter cards, canonical, robots meta, sitemap discovery.

Link & Redirect HealthFREE

Redirect chain and broken links on a single page.

Whois & AgeFREE

Domain WHOIS, registrar, creation, expiration, and domain age.

Subdomain DiscoveryFREE

Subdomains via crt.sh Certificate Transparency.

Squatting RiskFREE

Typosquatting patterns, homoglyphs, and heuristic risk score.

Trademark SimilarityFREE

4-layer brand detection: substring, fuzzy, phonetic & n-gram analysis across 200+ brands.

Domain Trust ScoreFREE

Composite from age, WHOIS privacy, blacklist, HTTPS.

Report a FakeFREE

Public counterfeit reporting portal with blockchain verification and anonymous submissions.

Verify PortalFREE

Verify brand ownership, authority grants, documents, and company identity on blockchain.

What's My IP24 modulesFREE

IP intelligence with geolocation, WebRTC leak test, timezone analysis, VPN & proxy detection, 12-database blacklist, browser privacy audit, abuse scoring, and privacy grading.

Email Verifier40 modulesFREE

40-module deep scan — name enrichment, toxic detection, SMTP multi-pass greylisting, 121k+ disposable DB, inbox prediction, quality scoring.

Email Finder90 patternsFREE

Analyze multiple pages & test 90 brand protection + security patterns (abuse@, legal@, dmca@, security@). Delivery verified.

View all free tools

Deep compliance scanners

Full regulatory audits with remediation roadmaps, penalty estimates, and court-ready reports. Free preview with every scan.

Security Scanner37 security suitesPRO

150+ checks across 6 inspection layers with full vulnerability assessment and PDF reports.

GDPR Scanner23 articlesPRO

23-article GDPR compliance audit with remediation guidance and penalty estimates.

Cookie Banner ScannerPRO

Consent mechanism audit with dark pattern detection per EDPB guidelines.

CCPA ScannerPRO

"Do Not Sell" link, GPC signal, and privacy policy audit for California compliance.

LGPD ScannerPRO

Brazilian data protection law compliance audit with Portuguese notice validation.

CNIL ScannerPRO

French CNIL regulatory compliance analysis and cookie consent validation.

Try free preview