A static, technical audit of your website's GDPR and privacy posture,
TLS and security headers, third-party trackers, cookie consent,
hosting jurisdiction, and US data-transfer exposure, delivered as a
scored, client-ready report.
HTTP security headers: CSP, HSTS, and the rest, missing or weak configuration is a real Article 32 exposure.
TLS and certificate: protocol version, cipher suite, certificate validity and hostname coverage.
Third-party resources: trackers and embedded scripts loaded on your pages, and where they send data.
Cookies: what gets set before a visitor has consented to anything.
DNS and hosting location: where your site and mail are actually hosted, EU/EEA, adequacy country, or the US.
US data transfers: which of your third-party vendors rely on a US legal basis, and how solid it currently is.
Legal pages: whether a privacy policy and the usual legal notices are actually reachable.
What you get
A plain-language report with an overall grade, a short verdict, and one
finding table per topic above with a concrete recommended fix for each
issue, plus a technical evidence appendix for your developer or hosting
provider.
ABCDF
A single critical issue is enough to cap the grade; the report will never call a site "good" while a serious problem is still open.
Get in touch
Send the domain you want audited to
info@ilion.info, and you'll get a
quote and a delivery timeline back.