This guide covers the essential steps for conducting periodic reviews and maintaining a high website scanner score over time. As new services are added to your website, ensuring they are detected and classified correctly is crucial from both a compliance and marketing standpoint.
To-Do Checklist:(1) website scan
(2) classification tab
(3) Google Consent Mode settings
(4) cookie banner / preference center language
(5) Data Subject Access Request (DSAR) form
Areas to check:
- a "website scan" report is your main starting point -
Work with your team and/or our support to increase the score if needed - you may want to start using the guide here - [CMP v1] How do I increase my compliance score (overall rating)? and/or - [CMP v1] How do I block a cookie in my scan report in Secure Privacy? Take a note of the services listed -
and the list of cookies - 
these should correspond as closely as possible to the services that are known to be deployed.In the example above, we can see that one service is not categorized properly, we'll address this below:
- (2) the "classification" tab is the next area -
Identify any gaps and address them -- categories are not correct or not present ("unclassified") -> provide the correct category
- services are not correctly assigned to cookies -> assign the correct service to each cookie
a bit more on the topic covered in the guide here- - [CMP v1] How to classify and edit your cookies and services
In case you know that there are missing services and/or cookies -> you can add a new service via the "Custom Cookies" tab using this guide - [CMP v1] How do I add a custom service/cookie?
Please perform a website rescan once you are satisfied with the state of the classification tab.
Below are less frequently changed settings to be aware of and/or adjust if needed.
Considering that most of the websites are using Google Tag Manager and/or Google Analytics/Google Ads - - (3) check the Google Consent mode (GCM) tab here -
make sure to consult with your Marketing and Legal teams if you have any doubts on using GCM Advanced mode, you can also refer to our shortened checklist hereEnsuring Compliance with Google's EU User Consent Policy
OR the GCM documentation - "About consent mode" - https://support.google.com/google-ads/answer/10000067 and the "Comply with EU user consent policy" document here - https://support.google.com/adsense/answer/7670013
- (4) in the ever-evolving world - confirm that the language on boththe cookie banner and the privacy preference center is aligned with your Legal team -
any "standard" working can be adjusted from the UI for each translation.(5) most likely, your DPO would be happy to receive email notifications from your visitors that are trying to exercise their rights with regard to their personal data - confirm the email address such requests should be sent via UI tab here -
(6) ask your Legal team for any updates they know that need to be added to the privacy and cookie policy - keep this area up-to-date
Need help / have more questions - do not hesitate to ask our support via mailto:support@secureprivacy.ai