Normio logo normio
Sign in v0.1 / early-access

GDPR readiness tool

Normio checks whether your privacy text is GDPR-ready.

Upload or scan your legal pages, review GDPR findings separately from third-party disclosures, and fix weak policy language before it turns into audit debt.

Start GDPR scan Read the guides Normio overview
gdpr-check.json

{

"controller": "needs review",

"legalBases": "missing Article 6 mapping",

"rights": "present",

"retention": "too vague",

"processors": "3 disclosures missing"

}

Article 5 and 6

Purpose and legal basis mapping

Find vague processing descriptions and missing legal bases before a reviewer has to ask for them.

Transparency

Rights, retention, and contacts

Check whether the policy explains user rights, complaint routes, controller contact details, and retention logic.

Processors

Vendor disclosure gaps

Compare detected third parties against policy text so missing processors are visible as their own workstream.

Separate signals

GDPR readiness and third-party drift are different reviews.

GDPR readiness looks at the substance of the legal text: controller details, purposes, legal bases, rights, retention, transfers, cookies, and authority notices.

Third-party analysis looks at the operational stack: processors, analytics, payments, support tools, embeds, and whether those vendors are disclosed in the right documents.

FAQ

Practical questions before you point Normio at a domain.

What does Normio monitor?

Normio checks public policy pages, scripts, embeds, cookies, vendors, processors, consent categories, and the places where those signals should be disclosed.

Is this legal advice?

No. Normio surfaces operational compliance drift and review evidence. Legal decisions should stay with your counsel, DPO, or privacy lead.

Can Normio check GDPR readiness?

Yes. It can flag common GDPR readiness gaps around controller details, legal bases, rights, retention, processors, transfers, cookies, and authority notices.

What happens when drift is detected?

You get a focused alert with the changed source, the suspected mismatch, the affected document, and enough context to decide the next fix.

Do I need to install a script?

Not for the first public-site scan. Normio can start from public pages, detected scripts, cookies, and policy URLs. Deeper checks can be added later.

Who is Normio for?

SaaS teams, founders, privacy leads, agencies, and compliance operators who need to know when website reality drifts away from legal text.