{# Pre-built Tailwind bundle + project custom styles. Replaces the old cdn.tailwindcss.com script so we can drop 'unsafe-inline' from the CSP. Rebuild with `.venv/bin/tailwindcss -i tailwind_src/input.css -o static/css/app.css --minify`. #}
C

Toolkit

Free helpers, on tap.

Stateless tools that complement the compliance check — every page below runs in your browser tab. Nothing you fill in is sent to or stored on our servers, except where explicitly noted.

📚 5 templates

Policy templates

Privacy notice, retention schedule, DSR procedure, breach response, and a Records of Processing Activities (ROPA) starter. Personalise with your org name + contact and copy or print to PDF.

📜 Privacy Notice (data su… ⏳ Data Retention Schedule 🪪 Data Subject Rights Pro… 🗂 Record of Processing Ac… 🚨 Personal Data Breach Re…

Browse the library

🛡️

DPIA wizard

Walk through 8 elevated-risk factors. Get a banded verdict and concrete mitigations.

Run a DPIA

🌍

Compare jurisdictions

Side-by-side matrix of every covered law. Spot the overlap so one control satisfies multiple regimes.

See the matrix

🍪

Cookie banner snippet

Generate a copy-pasteable cookie-consent banner with category toggles. Fully client-side — no third-party trackers, no callback to us.

Build a snippet

opt-in · separate consent
📨

Law-update subscription

Email me when something material changes in a covered law. Stores your email until you unsubscribe — re-confirmed every 12 months.

Subscribe to a jurisdiction

🔒

Stateless by default

Every tool above runs in your browser. Forms post-and-render — nothing about what you typed is stored on our servers, with two clearly-flagged exceptions: saving a DPIA (90-day token, no email) and the law-update subscription (separate consent, one-click unsubscribe).