Automated auditing that scans your site like a regulator would – testing every consent state, detecting violations, and scoring compliance across 43 checks.
ConsentScore launches a headless browser, interacts with your CMP exactly as a visitor would, and captures everything that happens – starting with the core consent states and expanding into individual category testing.
Tests pre-consent, accept all, reject all, and return visit behaviour. Individual consent category testing (e.g. analytics only, marketing only) is coming next.
Records every cookie, tracker, and network request across each consent state. Captures banner screenshots and CMP signal changes as evidence.
Findings are interpreted by AI to produce plain-language explanations, risk assessments, and prioritised remediation guidance – not just raw data.
43 checks across 5 weighted dimensions produce a score out of 100 with a detailed, evidence-backed report you can share with stakeholders.
Not another cookie scanner. ConsentScore tests what actually happens when real visitors interact with your consent mechanism.
Separate browser sessions test each consent state independently. Run on-demand or on a schedule – every scan is compared to the last.
Identifies OneTrust, Cookiebot, Usercentrics, CookieYes, and 10 more platforms – then interacts with the banner natively.
Catches trackers and cookies that fire before any consent is given – the single biggest compliance risk for most sites.
Measures button prominence, colour contrast, dismiss behaviour, and dark-pattern indicators in your consent UI.
Every finding includes screenshots, network logs, and cookie snapshots. Built for sharing with legal, dev teams, and stakeholders.
Raw scan data is analysed by AI to produce plain-language findings, risk prioritisation, and specific remediation steps – not just pass/fail flags.
CMP configurations change. New tags get deployed. Vendor scripts update silently. ConsentScore runs periodic scans so you catch regressions before a regulator does.
Set a daily, weekly, or monthly cadence. Each scan runs the full audit automatically and stores the results.
Every scan is diffed against the previous run. See exactly what changed – new trackers, score movements, regressions – with AI-generated explanations of why.
Get notified when your score drops, a new pre-consent tracker appears, or a previously-passing check starts failing.
Each audit produces a weighted score out of 100, reflecting how your implementation performs across the areas that matter most to regulators.
Do trackers and cookies actually respect the visitor’s choice? Tests behaviour after accept, reject, and on return visits.
What fires before any consent is given? Catches the violations regulators look for first.
Is the banner present, functional, and technically correct? Checks detection, rendering, and signal propagation.
Button sizing, colour contrast, dismiss behaviour, and dark-pattern indicators in the consent UI.
TCF/GPP signal correctness, consent propagation speed, and consistency across page loads.
Scores are weighted by dimension importance. 43 checks across 34 scored and 9 advisory items, with AI-powered analysis providing actionable remediation guidance.
Full interaction support for major platforms, with detection-only coverage for 10 more. Unknown CMPs get a best-effort fallback scan.
Cookie scanners list what’s on a page. ConsentScore tests what happens when visitors interact with your consent banner – accept, reject, ignore – and whether your implementation actually respects those choices.
Just a URL. ConsentScore handles everything – CMP detection, banner interaction, scanning, and report generation. No tags, scripts, or code changes required on your site.
A typical single-page audit completes in under 3 minutes. The scanner runs four separate browser passes, captures evidence, and generates a scored report with remediation guidance.
Full interaction support for OneTrust, Cookiebot, Usercentrics, and CookieYes today, with detection-only coverage for 10 more. We’re actively developing support for additional platforms. For unknown CMPs, a fallback adapter performs a best-effort scan of banner and consent behaviour.
The checks are aligned with GDPR, ePrivacy, and ICO guidance. The scoring dimensions reflect the areas UK and EU regulators prioritise in enforcement actions.
Privacy teams, digital agencies, compliance officers, and marketing teams who need to verify – not assume – that their consent implementation is working correctly.
After scanning, the raw data is sent to an AI model that interprets findings in context, explains what each issue means for compliance, prioritises risks, and suggests specific fixes. Scan comparisons also use AI to explain what changed and why it matters.
The core audit tests accept-all and reject-all states today. Individual category testing (e.g. accepting only analytics, rejecting marketing) is on the roadmap and will be available in a future release.
Be among the first to audit your site when the beta launches. No spam, just a heads-up when it’s ready.
No spam. Unsubscribe any time.