Privacy Scan (GDPR)
The Privacy Scan checks which external connections your website makes – and whether they are relevant for data privacy. Ideal for GDPR audits and consent management.
What You See
After a scan, you get an overview with:
- Total connections – How many external services are loaded?
- Risk distribution – Critical, Warning, Info, OK
- Unique domains – How many different external domains?
- Consent required – How many connections need user consent?
- Third-country transfers – Data transfers outside the EU
Connection Details
External connections are grouped by domain. For each domain you see:
- Risk level – Critical (red), Warning (yellow), Info (blue), OK (green)
- Service name & category – e.g. "Google Analytics – Tracking"
- Requirements – What do you need to consider for privacy compliance?
- Recommendation – What arkmetis suggests
- Resource types – Scripts, stylesheets, fonts, APIs
Starting a Scan
- Open the Privacy Scan in the sidebar
- Optionally select a specific page from the dropdown (default: homepage)
- Click "Start Scan"
- Wait for the analysis to complete (a few seconds)
Tip: Scan different pages separately. Some external scripts are only loaded on certain pages (e.g. YouTube embeds on the blog page).
Typical Findings
| Risk | Example | Action |
|---|---|---|
| Critical | Google Analytics without consent | Set up a cookie consent banner |
| Warning | Google Fonts (third-country transfer) | Host locally or obtain consent |
| Info | jQuery from CDN | Mention in privacy policy |
| OK | Own server | No action needed |
Cost
The Privacy Scan costs 1 credit per run.