GPC Auditor · v1.3

Ship privacy proof before regulators or partners ask for it.

Paste a URL, swipe the Stripe card, and receive dual-run evidence showing how your site behaves when a browser broadcasts Sec-GPC: 1.

Dual-run evidence

Baseline + Sec-GPC headless Chromium passes for diffable proof.

Tracker intelligence

Heuristics flag GA, Meta, Segment, Hotjar, and other trackers instantly.

Regulator-ready pack

Full-page PNGs, tracker diffs, and a signed PDF download per checkout.

Normalized:

You’ll be redirected to Stripe Checkout. After payment, we bring you back here with instant results.

Demo snapshot
Baseline trackers
142

Normal run without Sec-GPC.

With Sec-GPC
38

Requests that still fired.

doubleclick.net
connect.facebook.net
hotjar.com

Sample data for illustration. Actual counts depend on your site.

Why teams upgrade
Network request diff

We store up to 3,000 request URLs per run, highlight tracker domains, and surface what vanished once Sec-GPC is respected.

Screenshots that matter

Before/after captures with the GPC header prove what consent banners or pixel placements actually render.

Automation-friendly API

`/api/audit/:url` mirrors the paid run so you can gate releases or monitor vendors inside CI.

Pricing

Simple, transparent pricing

Start with a single audit. Scale to agency white-label. Cancel anytime.

Starter
€49/mo

Perfect for a single e-commerce site.

  • 1 site audit per month
  • Dual-run Chromium evidence
  • Tracker diff report
  • PDF compliance certificate
  • Email support
Most Popular
Professional
€99/mo

For teams managing multiple properties.

  • 5 site audits per month
  • Everything in Starter
  • CI/CD API access
  • Scheduled monthly re-scans
  • Priority support
  • Team member invites
Agency
€199/mo

White-label audits for your clients.

  • Unlimited site audits
  • Everything in Professional
  • White-label PDF reports
  • Custom branding on reports
  • Bulk CSV export
  • Dedicated account manager
View a sample audit report →

How it works

Evidence in three steps

Designed with privacy and legal teams in mind — no engineering backlog, no custom scripts.

1
Submit a production URL

We normalize inputs, add https:// if needed, and reject private networks, localhost, or credentialed URLs.

2
We run two isolated browsers

Headless Chromium launches with hardened flags, waits for network-idle, and records request logs plus screenshots.

3
Share the compliance proof

Stripe checkout drops a short-lived access cookie (2h) so only you can fetch the PDF + diff.

Privacy-first build
Strict URL allowlist

`validatePublicHttpUrl` blocks localhost, private IPs, custom ports, and DNS that resolve internally — no SSRF surprises.

Short-lived access

Result cookies pair your Stripe session ID with a UUID and expire after two hours by design.

Data minimization

We keep only the request URLs, tracker matches, and screenshots needed to assemble the PDF report.

Questions

FAQ

Need something custom? Use the live walkthrough prompt below to brief us before checkout.

What if a site blocks headless browsers?

Each run retries up to three times with different Chromium args and gracefully reports failures so you can escalate with real logs.

Do we need to deploy a snippet?

No code embeds. You paste a URL, pay via Stripe, and receive the evidence — ideal for privacy, product, or legal teams.

Can I invite teammates?

Every checkout issues a unique access token. Share the results URL (valid for two hours) or download the PDF and drop it in your tracker of choice.

Ready when you are

Prove your Sec-GPC posture today.

Each subscription covers unlimited reruns for a single site. Need bulk auditing across properties? Book a live walkthrough and we’ll scope it together.

Stripe handles billing. Cancel anytime.

Normalized:

You’ll be redirected to Stripe Checkout. After payment, we bring you back here with instant results.