Frequently Asked Questions

Everything you need to know about Cookie Trace by EZERATECH — the enterprise-grade CMP for GDPR, KVKK, ePrivacy and CCPA compliance.

General

What is Cookietrace?

Cookietrace is an enterprise-grade Consent Management Platform (CMP) that keeps websites compliant with GDPR, KVKK, ePrivacy and CCPA. Built by EZERATECH.

Who uses Cookietrace?

E-commerce sites, fintech, SaaS, agencies, telecom and SMBs. Suitable for any size of website that needs KVKK in Türkiye, GDPR in the EU, CCPA in the US.

How long does setup take?

3 minutes with a single-line script. No code changes or developer help required. Can also be added through a tag manager.

How many languages does Cookietrace support?

The banner UI ships in 8 languages: Turkish, English, German, French, Spanish, Italian, Dutch and Polish. Custom language additions are available from the Pro plan.

Which countries are covered?

Geo-targeting works worldwide. The banner shows the right regulation per country: KVKK for TR, GDPR for the EU, CCPA/CPRA for US states, LGPD for Brazil.

KVKK & GDPR

Is Cookietrace compliant with the KVKK Authority's 2022 Cookie Guide?

Yes, 100%. Disclosure for essential cookies, plain-language requirement, equal-prominence Accept/Reject buttons, separate consent for cross-border transfer — all articles are applied by default.

Is GDPR compliance not enough?

If you operate in Türkiye, GDPR alone is not enough. KVKK Art. 9 (cross-border transfer), the explicit consent definition and VERBİS obligations differ. Cookietrace is designed KVKK-native.

Does it comply with the ePrivacy Directive?

Yes. Per the EU ePrivacy Directive (Cookie Law), all non-essential cookies are blocked before consent. No pre-ticked checkboxes, no dark patterns.

Does it support California (CCPA/CPRA)?

Yes. For US users, the 'Do Not Sell My Personal Information' link, opt-out management and Global Privacy Control (GPC) signal are automatically supported.

How are consent logs stored?

Each consent event is stored immutably with timestamp, IP hash, banner version and cryptographic hash. In an audit you can prove 'this user made this choice at this time'. Default retention is 3 years, extendable per plan.

Does it help with VERBİS registration?

Cookietrace automatically lists your cookie inventory and data processing activities — you can use this as a reference in your VERBİS registration. Cookietrace is a software solution and does not provide legal advisory services. For the legal aspects of VERBİS registration, please consult your own legal counsel.

Who is the data controller?

As the website owner, you are the data controller. Cookietrace acts as the data processor. A KVKK-compliant standard Data Processing Agreement (DPA) is included in all plans.

Technical

What is the script weight?

Under 15 KB (gzip). With edge-cached delivery and async-defer loading the impact on Core Web Vitals is negligible. Test sites show no measurable change in LCP/CLS.

Will it slow down my site?

No. The banner script, written with a modern stack, is non-blocking and loads async. There is no visible drop in your Lighthouse scores.

What is automated cookie discovery?

The Deep Scan engine crawls your site weekly, automatically finds and categorizes newly added cookies and trackers. No manual updates needed.

How does auto-blocking work?

No third-party scripts (Google Analytics, Meta Pixel, GTM tags etc.) execute before consent. The banner script loads first, others are unblocked based on the user's choice.

Does it support Single Page Applications (SPA)?

Yes. Fully compatible with React, Vue, Angular, Next.js and other SPA frameworks. Banner state persists across page transitions.

Does it work on AMP pages?

Yes, we offer an AMP-compatible banner version. Included from the Pro plan and above.

Pricing & Plans

Is there a free plan?

Yes. The Free plan is free up to 25,000 monthly pageviews, no credit card required. All core compliance features are included.

What is the contract length?

Cancel monthly. We offer 20% off for annual billing but there is no long-term lock-in.

What happens if I exceed the pageview limit?

The banner keeps working, service is not interrupted. For the overage month we send an upgrade recommendation. No surprise bills.

Is there an extra fee for multiple domains?

Free plan: single domain. Pro plan: 5 domains included. Business plan: 25 domains included. Enterprise: unlimited domains. Additional domains can be purchased modularly.

Security

How is my data secured?

All traffic runs over HTTPS, consent data is stored encrypted. Stored consent records are immutable — cannot be modified. Regular backups and access logs are maintained.

Where is my data stored?

By default in an EU (Frankfurt) data center. Türkiye-based data residency is available on request — eliminating the KVKK Art. 9 cross-border transfer obligation.

What happens in case of a data breach?

Our DPA includes a reasonable-time notification obligation. We notify the data controller per KVKK Art. 12 and GDPR Art. 33. All security events are automatically logged.

Integrations

Does it work with Google Tag Manager?

Yes, native GTM integration. Tags are automatically triggered or blocked based on consent state.

Does it support Google Consent Mode v2?

Yes, out-of-the-box. The Consent Mode v2 signals required for Google Ads and GA4 to function properly in the EU and TR are sent automatically.

Are there Shopify, WooCommerce, Wix integrations?

Yes, official one-click plugins/apps are available for all of them. There is also a universal script option that works with any CMS.

Does it work with the programmatic ad ecosystem?

Yes. The banner is compatible with Google Ads, Meta Ads and other major ad-tech platforms. Ad scripts are automatically triggered or blocked based on consent state.

Is there API and webhook access?

Yes, REST API and webhook access are included on all plans. You can stream consent events to your own data warehouse.

Go to interactive FAQ →