Cookie law, by region.
Plain-language explainers of the privacy laws CookieGap scans for. What each law requires, who it applies to, and the consent patterns that get sites in trouble.
GDPR
What the EU's General Data Protection Regulation requires for cookies and trackers.
ePrivacy
The EU's cookie-specific rule that sits alongside GDPR — often the harder bar to clear.
CCPA / CPRA
California's consumer privacy law: opt-out signals, Do Not Sell links, and what counts as a sale.
US State Laws
Virginia, Colorado, Connecticut, Utah, Texas and the growing patchwork of US state privacy laws.
LGPD
Brazil's Lei Geral de Proteção de Dados — GDPR-style consent rules for the Brazilian market.
PIPEDA
Canada's federal privacy law and what it means for cookie consent on Canadian websites.
What CookieGap does and doesn't test
Every violation CookieGap grades, supported CMPs, covered regions, and exactly what requires human review — derived directly from the live scanner.
Read scope & limitationsThese guides are informational only and are not legal advice. Privacy laws change — always confirm current obligations with qualified counsel.