All-in-one GDPR complete package for your website and web shop

Cookie Popup, Consent Management, Privacy Policy and Legal Notice

legally compliant

cookie popup

Compliant with GDPR and E-Privacy.
Withdrawal Management.
Correct control of services & embeddings.

complete

privacy policy

Understandable legal texts from data protection lawyers.
Fulfillment of the requirements of courts and authorities.

correct

imprint

Incidentally, we also generate a legally compliant imprint for you.

Test now for 14 days free of charge

Make your website legally secure today!

subscribe now!

25

Years
Experience

40000

satisfied
customers

42

recommend agencies
our solution

Translations for legal texts by sworn & certified court interpreters
Control of services & embeddings
Individual privacy policy
Legally checked
Consent & revocation management
Based on the latest authority and court decisions
Barrier-free according to WCAG 2.1 AA
Various designs: popup, sidebar, bottom bar, …
Color adaptable to your CI
Legal basis of the countries: AT, DE, CH, IT, FR, SE, NL
Languages: DE, EN, FR, IT, ES, HU, SE, NL
Can be easily and flexibly integrated using JavaScript and CSS via CDN

That is why legalweb is one of the TOP GDPR solutions

Legal certainty is our top priority. These points distinguish our product from other providers:

“There is no ruling by the ECJ on this” is the most common excuse for websites that violate data protection. Yes, maybe. The data protection authorities punish anyway. Do you want to finance a legal dispute up to the ECJ? No. None of our customers want that .
No lame excuses our priority is legal certainty
“Why don’t you have this feature? It’s my risk anyway!” – we are often asked this question. Our customers are not data protection rock stars. We do.
No illegal options Illegal options are not an option for us.
We take local legislation into account.
The EU E-Privacy Directive is implemented in a different law in each EU country. Therefore, data protection information from a German company must name a different legal basis than information from an Austrian company. The GDPR is uniform throughout the EU, but allows some adaptations by individual states. Depending on the country, this can also lead to deviations in the data protection information. The location of the company is decisive, not the language of the website.
Local Legislationall the same but…
There are very detailed regulations and explanations in the GDPR, pages of brilliant white papers and well-founded decisions from the data protection authorities as well as numerous judgments by courts on data protection in Germany and Austria. We make it easy for ourselves.
judgments and decisionsWe strictly adhere to the specifications.
All legal texts must be in the language of the website. The operator of a five-language website therefore needs legal texts in five languages. We do not use community translations . Any translation error can render the data protection information illegal. The risk would be too high. Our legal texts are translated exclusively by court interpreters, i.e. generally sworn, court-certified interpreters who specialize in legal texts.
Languages Legal texts translated by court interpreters
“Nudging” is the technical term for the subtle influencing of people. Have you never heard of this? The data protection authorities do. Many privacy popups have a giant bright green “Agree” button and a tiny light gray “Disagree” link. In this way, the user is pushed in the direction of approval . This is illegal . We do not use nudging techniques in our popup.
No psycho tricksNudging is illegal
Many tools only revolve around “Cookie Consent”. That is clearly not enough. We take into account all processes that require approval. The E-Privacy Directive regulates any storage on the user’s end device and any reading from the user’s end device. Examples are: Cookies, Local Storage, Session Storage, IndexedDB, Web SQL, Scripts, Tracking Pixels, Browser Fingerprinting . The GDPR also recognizes options that require consent. Examples are: processing of special data categories, profiling, unnecessary data transfer to third parties, data export to third countries .
E-privacy + data protectionCookies are only half the battle
Mere expressions of respect such as “We take your data protection seriously” or pseudo-witty slogans such as “Do you want cookies” do not lead to legally valid consent . Before giving consent, the user must recognize without a doubt that consent to the processing of personal data is involved.
No sayingswe create facts
The user’s consent must be given actively. Individual services must not be preselected. Our tool therefore offers no possibility for pre-selection .
No preselectionthe pre-selection of voluntary content is illegal
The GDPR stipulates that different processing operations must not be coupled . It must therefore be possible to select each service individually. IMPORTANT: it is not enough if the individual selection is hidden behind a “More settings” link. We have therefore implemented the selection on the first level of the popup .
Individually selectable servicesreal transparency
Refusing to give must be as easy as giving consent. We offer the user three options: Click on the “Reject” button, click on the X in the upper right corner of the popup, click in the overlay next to the popup.
Simple rejectionOnly voluntary consent is legally valid
The user must be able to revoke their consent. The possibility of revocation must be just as easy as the possibility of consent. On request, we load the popup again so that the user can change his settings at any time .
Possibility to withdrawDecisions can be changed at any time
The GDPR requires informed consent. The user must therefore be informed of the scope of the data processing before consent is given. Does “Marketing” inform that data is sent to Google Analytics, processed by Google for its own purposes and ultimately exported to the USA? no Therefore, the approach of letting users consent to analysis or marketing is unlawful.
No “Statistics Marketing”informed consent only
Anyone who obtains consent for necessary services has not understood e-privacy and data protection. Necessary services do not require the consent of the user. If the user were allowed to consent, the user would also have to be able to revoke the consent. So what? turn off site? Necessary services have therefore not lost anything in the data protection pop-up . The data protection information must of course provide information about these services. Generator also makes us automatic.
no “essential” servicesthese do not require consent
Before consent is given, the user must be informed who is processing their data. This requires the following minimum information on the first level : service, company, country of headquarters . The mere name of the service is not enough.
Full Minimum Disclosuresas little as possible, as much as necessary
The user must be informed of the scope of the data processing before consent is given. For this purpose, we have a second level for each individual service, on which the user can find out about the purpose , the processing operations . the storage period , any joint controllers and processors , the legal basis , possible export to third countries and the possibility of revocation are informed in understandable sentences.
more detailsfully informed
The user must be informed in clear and simple language . With cookie lists like “ _ga_< container-id> – 2 years – Used to persist session state ” this requirement of the GDPR is not met . We explain the scope of data processing in easy-to-understand sentences .
Simple languageno cryptic cookie lists
Many websites have conflicting information in the privacy pop-up and on the privacy page. These websites are therefore not legally compliant . Cause: Most of the pop-up and data protection information comes from different providers. Our tool generates pop-up and data protection information from a single source .
Privacy Informationno deception

Test now for 14 days free of charge

Make your website legally secure today! The GDPR complete package for your website and webshop.

subscribe now!

Our expertise – your advantage

Benefit from our expert knowledge and sit back.
Website data protection has never been easier with our complete GDPR package for your website and web shop.

Uncompromising

International

Translated by court interpreters.
Multilingual: DE, EN, FR, IT, ES, HU, … more in development.

Simple

integration

CMS Plugin: WordPress, Typo3, Drupal, Magento.
CDN with 2 lines of javascript for all websites.
API for individual systems.

flexible

design

4 basic designs.
Style configurator.
Individual CSS possible.

more competent

Technical & legal support.
Automatic updates.

What are you waiting for?

Make your website legally secure today! The GDPR complete package for your website and webshop.

subscribe now!

Preconfigured Services.

Individually expandable.

analysis

Clicky, Etracker, Google Analytics, Hotjar, Matomo, Piwik, WP Statistics, etc.

remarketing

Google Double Click, Facebook Pixel, Criteo, Linkedin Pixel, Bing Ads, etc.

Newsletter

AWeber, ActiveCampaign, CleverReach, Klick-tipp, MailChimp, Mailjet, Mailpoet, Rapidmail, Sendinblue, etc.

Tag Manager

Google Tag Manager, Matomo Tag Manager

forms

Contact form, application form, registration form, sweepstakes form, comment form, etc.

embedding

Google Maps, Open Street Map, YouTube, Vimeo, SoundCloud, Facebook, Instagram, Twitter , Spotify, …

Captcha services

local security query, Google reCAPTCHA

writings

Google Fonts, Adobe Fonts, Font Awesome, Fonts.com

web shops

Illustration of any web shop in the data protection declaration

CDN

Akamai CDN, AWS Cloudfront CDN, Azure CDN, Bunny CDN, CacheFly, CDN.NET, CDN 77, Cloudflare CDN, Fastly CDN, Google Cloud CDN, G-Core Labs CDN, Key CDN, Medianova, OVH CDN, StackPath, Other Server

hosting providers

1&1 IONOS SE, 1blu, Amazon AWS, Alfahosting, All-inkl.com, Awardspace, Bluehost, Contabo, Dogado, domainfactory GmbH, DWZI GmbH, GoDaddy, Hetzner Online GmbH, Host Europe GmbH, HostProfis ISP Telekom GmbH, Kinsta, Lima City , Magenta-/ T-Mobile Austria GmbH, Mittwald CM Service GmbH & Co. KG, Microsoft Azure, Netcup, OVH, platformSH, Rackspace, Raidboxes, Schlundtech, SiteGround, Strato, Telekom Austria AG, UnitedDomains, Vautron Rechenzentrum AG, webgo, World4You Internet Services GmbH, ZAP hosting

payment services

Cash, cash on delivery, bank transfer, 1 & 1 ipayment, Amazon Pay, Apple Pay, Arvato Infoscore, B+S Card Services, Commdoo, Concardis, Deutsche Card Services, Docdata Payments, Easycash, Easypay, Ecardon, EOS, Google Pay, Heidelpay, Klarna, Girosolution, Micropayment, mPay24, Novalnet, Paymorrow, PAYONE, PayPal, Secupay, Stripe, Telecash, VR-Pay Virtual, Wirecard, other freely configurable payment services

Make your website completely legal today

The all-in-one GDPR complete package for your website and web shop. You can test our service for 14 days free of charge.

  • Logo Datenschutzpaket
    from €10,00 excl. Vat
    from €12,00 incl. Vat
    Plus 20% MwSt.
    Select options

legalweb

.io

Bayerhamerstraße 14, 5020 Salzburg - Austria

[email protected]

Support | Imprint | Terms | Data protection

Privacy
Imprint | Privacy
The controller (legal web GmbH, Austria) would like to use the following services in order to process your personal data. Technologies such as cookies, localStorage, etc. can be used for personalization. This is not necessary for the use of the website, but allows us to interact with you more closely. If you wish, you can adjust or revoke your consent at any time via our privacy policy.
Targeting / Profiling / Advertising (1 Service)
Personalized advertising outside our website
Google GTag (Analytics/Ads)
Google Ireland Limited, Ireland
All Detailsto Google GTag (Analytics/Ads)
All Detailsto Google GTag (Analytics/Ads)