CyroloCyrolo
Features
Platform capabilities & tools
Pricing
$299/mo security subscription
Security Scanning
150+ automated vulnerability checks
Penetration Testing
Elite red team services
Free Tools
Free security scanners
About
Our mission & team
Contact
Get in touch
Sign InGet Started
Cyber Security
All systems operational
12 checksDark patternsPenalty estimate
Full Report

What's in the Full Cookie Banner Audit?

12 automated checks covering every aspect of cookie consent compliance.

Banner Detection

Automatic detection and analysis of cookie consent banners across your entire site.

Reject Button Audit

Verifies that "Reject All" is as prominent and accessible as "Accept All" per CNIL guidelines.

Pre-Consent Testing

Detects cookies and trackers that fire before users give explicit consent.

Dark Pattern Detection

Identifies deceptive UI patterns: pre-checked boxes, color manipulation, confusing language.

Third-Party Gating

Tests whether third-party scripts properly wait for user consent before loading.

Compliance Scoring

Weighted compliance score based on CNIL, ICO, and EDPB cookie banner guidelines.

Enforcement accelerating

Cookie banner fines are surging

CNIL alone has issued over €300M in cookie-related fines. Google, Facebook, Amazon, and TikTok have all been fined. Small and mid-size companies are increasingly targeted.

€150M
Google (CNIL)
€60M
Facebook (CNIL)
€32M
Amazon (CNIL)
€5M
TikTok (CNIL)

Also scan for compliance with

GDPR ScannerCCPA ScannerCNIL ScannerLGPD Scanner

Frequently Asked Questions

Everything about cookie banner compliance scanning.

What cookie banner rules does this check?+
We check against CNIL, ICO, and EDPB guidelines — including banner presence, reject button parity, pre-consent cookie drops, consent withdrawal, dark patterns, granular category controls, and third-party script gating. A total of 12 compliance checks across all major regulatory frameworks.
Why was CNIL fining for cookie banners?+
CNIL issued major fines including €150M to Google and €60M to Facebook specifically for cookie consent violations — missing reject buttons, pre-consent trackers, and deceptive banner designs. They've been the most active EU DPA on cookie enforcement.
What counts as a dark pattern in cookie consent?+
Dark patterns include: pre-checked consent boxes, making "Accept" visually dominant over "Reject", confusing toggle designs, hiding rejection behind multiple clicks, misleading language, and cookie walls that block content without consent.
Do I need a "Reject All" button?+
Yes. CNIL, ICO, and most EU DPAs now require that rejecting cookies must be as easy as accepting them. This means a clearly labeled "Reject All" button must be on the first layer of your cookie banner — not hidden behind "Settings" or "Manage Preferences".
What do I get with the full report?+
The full report includes a complete 12-module audit: banner detection, reject button audit, pre-consent cookie test, dark pattern analysis, consent persistence test, withdrawal mechanism check, geo-targeting test, granular categories audit, mobile responsiveness check, third-party consent gating, compliance scoring, and an AI-generated remediation plan. Price: €99.

Don't risk non-compliance

Every banner without an audit
is a CNIL fine waiting to happen

Discover compliance gaps across 12 cookie banner checks with expert remediation guidance — before enforcement catches up.

2,341 banner violations detected this hour
your-website.com
Live Compliance Feed
Start Scanning NowTalk to Sales

No registration required · Preview scan included · Full report €99

More free tools

No account required. Scan any website instantly.

SSL Checker16 modulesFREE

Certificate chain, forward secrecy, OCSP stapling, CT logs, mixed content, and cipher analysis.

DNS Lookup18 modulesFREE

SPF, DKIM, DMARC, DNSSEC, MTA-STS, BIMI, reverse DNS, SMTP STARTTLS, and more.

Speed Test16 modulesFREE

Waterfall timing, resource hints, image optimization, HTML weight, and third-party detection.

Cookie Scanner12 modulesFREE

Full cookie inventory, pre-consent detection, GDPR compliance, and tracker mapping.

Security Headers8 headersFREE

CSP, HSTS, X-Frame-Options, Referrer-Policy, Permissions-Policy, COOP, CORP, X-Content-Type-Options.

Tech & Tracker DetectorFREE

CMS, analytics (GA, Hotjar), trackers, CDN, and framework detection.

Blacklist CheckFREE

Domain/IP on Spamhaus, SpamCop, Barracuda, SORBS DNSBLs.

Page Meta & SEOFREE

Open Graph, Twitter cards, canonical, robots meta, sitemap discovery.

Link & Redirect HealthFREE

Redirect chain and broken links on a single page.

Whois & AgeFREE

Domain WHOIS, registrar, creation, expiration, and domain age.

Subdomain DiscoveryFREE

Subdomains via crt.sh Certificate Transparency.

Squatting RiskFREE

Typosquatting patterns, homoglyphs, and heuristic risk score.

Trademark SimilarityFREE

4-layer brand detection: substring, fuzzy, phonetic & n-gram analysis across 200+ brands.

Domain Trust ScoreFREE

Composite from age, WHOIS privacy, blacklist, HTTPS.

Report a FakeFREE

Public counterfeit reporting portal with blockchain verification and anonymous submissions.

Verify PortalFREE

Verify brand ownership, authority grants, documents, and company identity on blockchain.

What's My IP24 modulesFREE

IP intelligence with geolocation, WebRTC leak test, timezone analysis, VPN & proxy detection, 12-database blacklist, browser privacy audit, abuse scoring, and privacy grading.

Email Verifier40 modulesFREE

40-module deep scan — name enrichment, toxic detection, SMTP multi-pass greylisting, 121k+ disposable DB, inbox prediction, quality scoring.

Email Finder90 patternsFREE

Analyze multiple pages & test 90 brand protection + security patterns (abuse@, legal@, dmca@, security@). Delivery verified.

View all free tools

Deep compliance scanners

Full regulatory audits with remediation roadmaps, penalty estimates, and court-ready reports. Free preview with every scan.

Security Scanner37 security suitesPRO

150+ checks across 6 inspection layers with full vulnerability assessment and PDF reports.

GDPR Scanner23 articlesPRO

23-article GDPR compliance audit with remediation guidance and penalty estimates.

Cookie Banner ScannerPRO

Consent mechanism audit with dark pattern detection per EDPB guidelines.

CCPA ScannerPRO

"Do Not Sell" link, GPC signal, and privacy policy audit for California compliance.

LGPD ScannerPRO

Brazilian data protection law compliance audit with Portuguese notice validation.

CNIL ScannerPRO

French CNIL regulatory compliance analysis and cookie consent validation.

Try free preview