A complete set of solutions to make your website GDPR compliant

Non-compliant organizations risk fines of up to €20 million, or 4% of the organization’s global yearly turnover, whichever is higher. Discover the GDPR compliant cookie and privacy solutions we offer across multiple languages.

Cookie policy with consent mgmt.

249€ Setup, one time fee
+ 9€ /month consent management for 1 domain with < 500 subpages
Automated cookie scan and declaration; cookie consent banner; cookie control API; cookie repository; encrypted security; policy in multiple languages.

Buy policy

Privacy policy

99€ Setup, one time fee
24€ /year management fee for one domain
Automatically updated if the law changes; unlimited services (contact form, analytics); Policy in multiple languages; 600 third-party integrations and clauses.

Buy policy

Why is this best product for website cookie management? Very few solutions include all of the GDPR required features like:
1) Enabled prior consent.
2) Clear and specific information about data types and purpose of the cookies.
3) Full documentation of all given consents.
4) The possibility to reject superfluous cookies and still use the site.
5) The possibility that users can withdraw their consent whenever they want. Cookie solutions that don’t have those features are not GDPR compliant.

Implied consent and consent given simply by visiting a site is not GDPR compliant. The same goes for pop-ups and banners stating ‘By using this site, you accept cookies’. A simple “I agree” button for accepting cookies is also not sufficient.

EU citizens have grown accustomed – albeit probably slightly annoyed – to the banners on all websites, stating the use of cookies, sometimes asking you to check the ok button, but giving no true choice. With the regulation, this is not sufficient. The consent has to be given as an affirmative, positive action, and rejecting cookies must be an actual option.

not compliant GDPR cookie

Web Boutique’s cookie banner complies with the regulations, because of the following:

First and foremost, albeit invisible to the naked eye, all loaded scripts but the strictly necessary ones are paused until the consent to the cookies has been given. This feature is called ‘prior consent’ and is a requirement of both the GDPR and the ePrivacy Directive. Under the GDPR, you must have consent to setting cookies that track personal data, whereas under the ePrivacy Directive, you need user consent before setting any kind of cookies other than the strictly necessary.

The information about the cookies is accurate and specific, and is presented in a clear and plain language, all requirements of the GDPR.

If the user chooses to have the details shown, the notice folds out into a complete overview of all active cookies and online tracking in use on the website. The list is based on a monthly scan of all of the pages of the website, that detects and identifies all of the cookies and known tracking technologies in use on the site. The cookies are listed complete with origin, duration and purpose descriptions.

The cookies are grouped into four intelligible categories, that the user may check or uncheck. Necessary cookies cannot be unchecked, because they are whitelisted and are necessary for the website to function properly. Cookie categories that don’t handle personal data may be pre-checked, whereas those that do, must be actively opted into by the user to be compliant.

Preferences and statistics cookies on the site don’t handle personal data and may therefore be pre-checked. Marketing cookies do track personal data and are therefore by default unchecked.

The user has access to their state of consent on the website and can at any time change their mind about the consent and choose to withdraw it.

All given consents are securely stored as documentation that the consent has been given, also a GDPR requirement.

Every 12 months, upon the user’s first visit to the site, the consent pops up again asking for a renewal of the consent.