Free · GDPR

How GDPR-ready
is your company?

Answer 24 questions across 6 compliance areas. Get an instant AI-powered gap analysis with your top priorities — delivered to your inbox.

24 questions
~5 minutes
AI gap analysis
Free report by email

Based on: Regulation (EU) 2016/679 — GDPR ↗

🔐
Free to try

GDPR Quick Check

Answer 24 questions across 6 GDPR compliance areas. Get an AI-powered gap analysis with your top priorities — delivered to your inbox, free account required.

Free account required · Results by email

Company profile Step 1 of 5
Step 1 of 5

Your company profile

We use this to personalise your GDPR analysis for your sector and data processing context.

Step 2 of 5 — Legal Basis & Consent

Do you have a lawful basis for your data processing?

GDPR requires every processing activity to have a documented legal basis. Answer Yes, Partial, or No for each.

Step 3 of 5 — Privacy Notices & Data Subject Rights

Are people informed and in control of their data?

GDPR gives individuals strong rights over their data. Transparency and rights fulfilment are among the most inspected areas by regulators.

Do you have a clear, up-to-date Privacy Notice (Art. 13/14) visible at all points of data collection?
Do you have a documented process to respond to Subject Access Requests (SARs) within 30 days?
Can individuals request deletion of their data ("right to be forgotten") and do you have a process to fulfil this?
Do you have a Cookie Policy and a functioning cookie consent mechanism on your website?
Step 4 of 5 — Processors, Security & Transfers

How do you manage third parties and protect data?

GDPR requires you to govern every third party that processes data on your behalf, and to apply appropriate technical and organisational security measures.

Do you have signed Data Processing Agreements (DPAs) with all third-party processors (Art. 28)?
Do you have a documented data breach response procedure, including notifying the DPA within 72 hours (Art. 33)?
Have you implemented appropriate technical security measures (encryption, access controls, regular audits)?
If you transfer personal data outside the EEA, do you have appropriate safeguards in place (SCCs, adequacy decision)?
Answer N/A as "Yes" if you do not transfer data outside the EEA.
Do you have a documented data retention policy and actually delete data when it is no longer needed?
Have your staff received GDPR awareness training in the last 12 months?
Step 5 of 5 — Get your results

Where should we send your report?

Your AI-powered GDPR gap analysis will be emailed to you instantly. Free, no commitment.

Analysing your GDPR posture…

Our AI is reviewing your answers across all 6 compliance areas.

Mapping answers to GDPR Articles
Calculating area scores
Identifying gaps and quick wins
Preparing your report
Developing
0
GDPR Readiness Score

🎯 Top Priorities

⚠️ GDPR Articles at Risk

This report was generated by AI (Claude by Anthropic). It is provided for informational purposes only and does not constitute legal or regulatory advice. See our Privacy Policy for details on data handling.

Need a full GDPR compliance roadmap?

Get a complete gap analysis, draft Record of Processing Activities (RoPA), and Article-by-Article remediation plan tailored to your company.

Explore Full Assessment →

Informational use only. This tool is provided for awareness purposes to help businesses understand their current situation regarding EU regulations. It does not constitute legal, regulatory, or professional advice. Results are indicative only and should not be relied upon as a substitute for qualified legal counsel. Verdaio accepts no liability for decisions made based on this tool’s output. Your inputs are processed ephemerally and are not stored or used for model training.