Skip to main content
KVKK & GDPR

See which trackers fire before your visitors say "Accept".

PrivaScan loads your site in a real browser and records every tracker, pixel and cross-border data transfer that runs — before consent. The #1 cause of KVKK & GDPR fines, made visible.

Free, no sign-up. We scan one public page and report the trackers it loads.

See how it works No sign-up to run a scan
Pre-consent
trackers
Cross-border
transfers
Cookies
& storage
KVKK · GDPR
mapped

Built for the regulations that carry the biggest fines

KVKK GDPR ePrivacy EN 301 549

Loading your site in a real browser…

Recording every network request, cookie and storage write. This takes 15–30 seconds.

Real-browser evidence
We load your page in a real headless browser and record every request — not a static HTML guess.
Pre-consent detection
We flag trackers that fire before your visitor clicks "Accept" — the #1 cause of privacy fines.
Cross-border mapping
See where data flows — US, RU, CN — the KVKK Art. 9 / GDPR Chapter V transfer risk.
Legal, not just technical
Every finding maps to the KVKK / GDPR obligation it touches, in plain language — a bridge between IT and Legal.
How it works

From a URL to a defensible privacy record

No setup, no sign-up. Paste an address and see the data flows in seconds.

01

Paste a URL

Enter any public page — your homepage, a landing page, a checkout.

02

We load it for real

The page runs in a real browser while we record every request, cookie and storage write.

03

We classify the risk

Trackers are matched to vendors and categories; pre-consent and cross-border flows are flagged.

04

You get the evidence

A prioritized list with fix steps and a verifiable report — proof you can hand to auditors.

Pre-consent tracking

  • Analytics fired on load
  • Ad & social pixels
  • Tag managers
  • Before any consent

Cross-border transfers

  • Data sent to the US
  • Russia / China endpoints
  • KVKK Art. 9 risk
  • GDPR Chapter V risk

Session recording

  • Hotjar / Clarity
  • Yandex Webvisor
  • FullStory / Mouseflow
  • Screen replay of users

Storage & Shadow IT

  • Cookies (incl. HttpOnly)
  • localStorage / IndexedDB
  • Unexpected 3rd parties
  • Leftover plugins & CDNs

Evidence and risk indicators — not legal advice

PrivaScan surfaces the technical signals behind KVKK/GDPR risk and maps them to the relevant articles. It is an evidence and monitoring tool, not a law firm or a guarantee of compliance.

Why PrivaScan

The bridge between your Legal and IT teams

Your lawyer can't see the technical leaks; your developer can't read the legal risk. PrivaScan translates one into the other.

Prioritized findings

Trackers sorted critical-first, each tied to the vendor, category and the article it touches.

Data mapping inventory

A ready GDPR Art. 30 processing table: what data, by whom, for what, to where.

Developer fix steps

Concrete remediation — e.g. block Google Tag Manager until consent — not vague warnings.

Verifiable evidence

A dated, SHA-256-sealed report you can show a regulator: "we audit regularly".

Packages

Start free, prove compliance when you need to

Run single-page scans for free. Move to monitoring and full-site evidence when you are ready.

Scan

On-demand

€0 /month
  • Single-page scans, unlimited
  • Pre-consent tracker detection
  • Cross-border transfer flags
  • Cookies & web-storage inspection
  • No sign-up required
Most popular

Monitor

Continuous

€29 /month
  • Everything in Scan
  • Daily scheduled re-scans
  • Email alerts on new trackers
  • Full-site crawl (up to 25 pages)
  • Privacy findings report (PDF)

Compliance

Full-site + KVKK/GDPR

€99 /month
  • Everything in Monitor
  • Full-site crawl (up to 250 pages)
  • Up to 10 sites
  • GDPR Art. 30 data inventory (PDF)
  • Priority support

Compare plans in detail →

FAQ

Questions, answered

Isn't a cookie banner enough to be compliant?
No. Most fines come from trackers that fire BEFORE the banner is clicked, and from data sent abroad without a legal basis. A banner alone does not fix either — PrivaScan shows you what actually runs.
Which laws does this cover?
Turkey's KVKK and the EU's GDPR / ePrivacy. Findings reference the specific articles (e.g. KVKK Art. 9 cross-border transfer, GDPR Art. 30 records of processing).
How does the scan work?
We load your page in a real headless browser (via the Chrome DevTools Protocol) and record every network request, cookie and storage write — then classify each against our tracker database.
Is this legal advice?
No. PrivaScan is a technical evidence and monitoring tool. It surfaces risk indicators and maps them to the relevant articles, but it is not a substitute for a lawyer or a guarantee of compliance.
Do you store the pages I scan?
The free scanner analyses the page and returns results. Monitoring plans keep findings over time so you can track and prove progress.

What is your site leaking right now?

Run a free scan and see the trackers that fire before consent. No account, no credit card.