Privacy
GDPR
If a single EU resident can see your site, GDPR can apply. Cookie consent, a real privacy policy, and not silently tracking by default are the visible signs of compliance.
What it is
The General Data Protection Regulation, in force since May 2018. Governs how organisations process personal data of EU residents — lawful basis, consent, data subject rights, breach notification. Extraterritorial: EU residency of the data subject is what matters, not where the company is.
Why it matters
Maximum fines reach 4% of global annual revenue. Beyond fines, GDPR shapes user expectations everywhere — clear consent and a real privacy policy are now baseline trust signals globally.
Who it applies to
Applies wherever EU residents' personal data is processed — effectively any site with EU traffic that uses analytics or tracking.
How WQI scores it
Web Quality Index considers this standard satisfied when all of the 3 supporting factors pass.
| # | Factor | Status |
|---|---|---|
| 46 | Cookie banner presence + CMP detection | planned |
| 47 | Privacy policy page presence | planned |
| 51 | Cookie scan — actual cookies set on first load | planned |
0 of 3 supporting factors are currently collected. Sites where the remaining 3 haven't been measured will show as partial or unknown on this standard until the data lands.
Related standards
- See also
- CCPA , Cookie consent , LGPD , PIPEDA , POPIA , Privacy Act (AU) , Law 25
Standards that share factors with this one
Auto-computed from overlapping factor tickets in satisfiedBy, excluding standards already listed under "See also" above. Strong overlap suggests these standards rise and fall together when sites are scored.