Skip to main content
Syrcha
Get started
Public beta50% off first 3 months

Privacy compliance, verifiable on every deploy.

Syrcha continuously audits your sites for GDPR, CCPA and AI Act violations. Real browser checks, signed reports, no marketing theatre.

Start free scanHow it works
Frameworks
GDPR · CCPA · AI Act
Checks
190+
Hosting
EU
syrchascanacme.example.com
47.2s

Overall

86/100

GDPR

91/100

CCPA

74/100

  • TLS 1.3, HSTS preloadpass
  • Consent banner — reject equal weightpass
  • No pre-checked consent boxespass
  • Privacy policy reachable in 1 clickpass
  • Cookies set before consentwarn
  • "Do Not Sell" link missing (CCPA)fail
  • DSAR contact disclosedpass
  • AI chatbot disclosurewarn
signed · sha256:9c4a…d712last run · 14m ago

/ capabilities

What a privacy scan should look like.

Real Chrome, real DOM, real network. We don't grep your HTML — we interact with consent banners, follow requests, and verify behaviour the way an auditor would.

01 — interact

Browser-driven, not regex-driven

A real Chrome instance loads the site, clicks the banner, accepts and rejects, and watches what gets stored, sent, or set. Static crawlers can't see this. Auditors do.

02 — sign

Signed, hash-stamped reports

Every report carries a SHA-256 of the page state and rule set. Replayable, attributable, audit-ready.

03 — diff

Diff between scans

See exactly what changed between Tuesday's deploy and today's. Regressions surface before legal does.

04 — fix

Findings include the fix, not just the problem

Each violation links to the offending request, the responsible script, and a worked example of remediation. Engineers fix in minutes, not meetings.

/ coverage

Three regimes. One audit trail.

We ship rules in the open. Each framework lists what we check, what we don't, and where we're heading next quarter. No black-box scores.

  • GDPR

    EU · EEA · UK

    Live

    General Data Protection Regulation

    Full ruleset live. Consent, lawful basis, DSAR routes, transfer notices.

    • Privacy policy reachable in one click
    • Cookie banner — reject equal weight to accept
    • No cookies set before consent
    • Pre-checked consent boxes flagged
    • DSAR contact disclosed
    • HTTPS + HSTS enforced
    • Unsubscribe present in marketing email
    • International transfer notices verified

  • CCPA

    California · USA

    Beta

    California Consumer Privacy Act / CPRA

    Core ruleset in beta. "Do Not Sell" detection, consumer rights, sale disclosures.

    • "Do Not Sell or Share" link present
    • California-specific rights disclosure
    • Sensitive data category notices
    • Consumer request flow accessible

  • AI Act

    EU · phased through 2026

    Q3 2026

    EU Artificial Intelligence Act

    Transparency checks shipping Q3 2026. Chatbot disclosure, system docs, risk tier.

    • AI chatbot identifies itself
    • Generated-content disclosure
    • Risk-tier documentation reachable
    • Affected-user notice present

/ how it works

Three steps. The middle one does the work.

  1. Point at a domain

    Add a URL, verify DNS ownership, set a cadence. Free plan covers your first domain — no card needed.

  2. We run real Chrome

    Headless Chromium loads, interacts, accepts and rejects consent, captures every request and storage write — typically under a minute on a normal page.

  3. You get a signed report

    Findings, suggested fixes, diffs against the last run, and a SHA-256 of the rule set used. PDF, HTML, or webhook.

/ reportacme.example.com
14m ago

Overall

86 /100

GDPR

91 /100

CCPA

74 /100

WCAG

88 /100

  • TLS 1.3 · HSTS preloadgdpr
  • Consent banner — reject equal weightgdpr
  • Cookies set before consentgdpr
  • "Do Not Sell" link missingccpa
  • DSAR contact reachablegdpr
signed · sha256:9c4a…d71233,529 checks
Run your first scan

no card · 1 domain · 5 scans / week

/ pricing

Honest pricing. Beta keeps it half-off.

50% off your first three months while we finish the AI Act ruleset. Cancel any time. No "contact sales" tier hiding the real price.

Starter

Solo sites & freelancers

$14.50/ month

$29 · first 3 months

  • 1 domain
  • Weekly scans
  • GDPR + CCPA rules
  • HTML & PDF reports
  • Email support
Start for free

Growth

recommended

Product teams shipping weekly

$49.50/ month

$99 · first 3 months

  • 5 domains
  • Daily scans
  • AI Act ruleset included
  • Slack & email alerts
  • Scan-to-scan diff
  • Branded reports
  • Priority support
Start for free

Agency

Agencies & consultancies

$124.50/ month

$249 · first 3 months

  • 20 domains
  • Unlimited scans
  • White-label reports
  • API + webhook access
  • Historical trends
  • Dedicated channel
Start for free

Beta discount holds for three months from sign-up. After that, list price. Cancel from settings without sending an email.

/ ready

Stop hoping you're compliant. Know.

First scan in under a minute. No card. No call. You'll know what's broken before you finish your coffee.

Run a free scanHow it works
  • no card required
  • cancel from settings
  • hosted in EU