GDPR Compliance Checklist
Privacy and data protection compliance checks
Version 1.0.0Updated Dec 29, 2025
Checks
Cookie consent banner present
Must display before setting non-essential cookies
Required by GDPR
Privacy policy linked
Must be easily accessible
Required by GDPR/CCPA
Unsubscribe link present
Required in all marketing emails
Required by CAN-SPAM
Physical mailing address
Must include valid physical address
Required by CAN-SPAM
Data retention policy stated
Must specify how long data is kept
Required by GDPR
Right to deletion mentioned
Users can request data deletion
Required by GDPR/CCPA
Third-party data sharing disclosed
Must disclose data sharing practices
Required by GDPR/CCPA
Age verification for minors
Required if collecting data from children <13
Required by COPPA