What is GDPR?
GDPR (General Data Protection Regulation) is an EU regulation governing the processing of personal data of individuals. It has been in effect since May 25, 2018, in all EU/EEA countries. It applies to every organization that processes personal data of EU citizens, regardless of where the company is headquartered.
Legal basisRegulation (EU) 2016/679Art. 1-3 (Scope of application)
Cookie consent
Cookies that are not essential for website functionality (e.g., analytics, marketing) require obtaining voluntary, informed, specific, and unambiguous consent from the user BEFORE activation. Consent cannot be pre-checked β the user must take an active action.
Legal basisDirective 2002/58/EC (ePrivacy) + GDPRArt. 5(3) ePrivacy Directive, Art. 7 GDPR
Cookie categories
Necessary β required for website operation (e.g., login session), no consent needed. Functional β remember user preferences. Analytics β collect statistical data (e.g., Google Analytics). Marketing β used for profiling and behavioral advertising. All categories except necessary require separate consent.
Legal basisEDPB Guidelines 05/2020 on consentSection 3.1, 3.2
Right to withdraw consent
Users must be able to easily withdraw consent at any time. Withdrawing consent must be as easy as giving it. Fox's Nest ensures this through a re-open consent panel icon, available on every page.
What is WCAG?
WCAG (Web Content Accessibility Guidelines) is an international web content accessibility standard developed by W3C. It defines guidelines that make websites accessible to people with disabilities β visual, auditory, motor, and cognitive. The current version is WCAG 2.1.
Legal basisAct of April 4, 2019 on digital accessibility (Journal of Laws 2019, item 848)Art. 3-6
4 accessibility principles (POUR)
Perceivable β content must be presented in a way that is perceivable by the senses. Operable β the interface must be operable by everyone. Understandable β content and operation must be understandable. Robust β content must be compatible with various assistive technologies.
Legal basisWCAG 2.1 W3C RecommendationPrinciples 1-4
Conformance levels
Level A β minimum accessibility requirements. Level AA β recommended standard for most websites (required by Polish law). Level AAA β highest standard, recommended for public institutions and healthcare websites. Fox's Nest helps achieve Level AA through the accessibility widget.
Legal basisDirective (EU) 2016/2102 on web accessibilityArt. 4
Who is affected by the regulations?
In Poland, digital accessibility regulations have applied to public entities since 2019. Since June 28, 2025, the European Accessibility Act (EAA) extends this obligation to the private sector β including e-commerce, banking, transport, and telecommunications. Non-compliance may result in penalties as defined by national transposition laws. Fox's Nest widgets help meet key digital accessibility requirements under EAA, ADA, and AODA.
Legal basisEuropean Accessibility Act (EAA) β Directive 2019/882Art. 2, Art. 30-32
Step 1: Registration and adding a domain
Create an account with Fox's Nest β you'll automatically get a 14-day free trial without providing a credit card. An interactive wizard will guide you step by step: enter your domain address, name your site, and proceed. The system will automatically start detecting scripts and cookies on your website.
Step 2: Widget selection and configuration
In the wizard, choose the package you need: cookie banner only, WCAG accessibility widget only, or a bundle of both with a -20% discount. Then customize the appearance to match your brand β colors, texts, position on the page, animations, and logo. The wizard shows a live preview.
Step 3: Pasting the code
Copy the generated JavaScript code snippet from the "Embed" tab in the site dashboard and paste it into the <head> section of your website, before other scripts. The script weighs less than 5KB and loads synchronously to ensure tracking scripts are blocked before they can fire. If you use WordPress β install the native Fox's Nest plugin instead of manually pasting the code (see the "WordPress integration" chapter).
Step 4: Verification and audit
After pasting the code, return to the dashboard β the system will automatically verify that the widget is correctly installed. As an additional step, we recommend running a WCAG audit to scan your site and show your current level of compliance with accessibility guidelines.
Automatic scanning
Fox's Nest automatically scans your website and detects all external scripts and cookies. Scripts are automatically assigned to the appropriate categories (necessary, functional, analytics, marketing). You can manually change categorization in the dashboard.
Blocking before consent
A key GDPR-compliant feature: all tracking scripts (Google Analytics, Facebook Pixel, etc.) are blocked until the user gives consent. Scripts essential for website operation (e.g., payments) remain active.
Legal basisGDPR + ePrivacy DirectiveArt. 5(3) ePrivacy β "prior consent" requirement
Appearance customization
Customize every aspect of the banner: background and button colors, texts in any language, position on the page (bottom, top, center), entry animations, company logo. The wizard offers ready-made color schemes and dark mode.
Statistics and reports
In the dashboard you can monitor: overall cookie acceptance rate, individual category choices, period comparisons. Statistics help optimize banner content and increase conversion. Fox's Nest automatically implements Google Consent Mode v2 β consent signals are sent to Google services (GA4, Google Ads, GTM) according to user choices (see the "Google Consent Mode v2" chapter for details).
Widget features
The Fox's Nest WCAG widget offers 8 ready-made accessibility profiles (dyslexia, epilepsy, ADHD, color blindness, low vision, motor impairment, cognitive disorders, blindness) and over 16 individual controls: contrast (high, inverted, grayscale), text size, line height, letter and word spacing, dyslexia-friendly font, hide images, stop animations, reading guide/mask, focus highlighting, link and heading highlighting, big cursor, screen reader mode, blue light filter, and dark/light theme switching.
WCAG 2.1 AA & EAA compliance
The widget helps meet key WCAG 2.1 Level AA success criteria: 1.4.3 (minimum contrast), 1.4.4 (text resize), 2.1.1 (keyboard operation), 2.4.7 (visible focus), 1.4.12 (text spacing), 2.3.1 (animation control). All widgets include: focus trapping, focus store/restore, aria-live announcements, role=switch/menu/menuitem, and focus-visible indicators. The cookie banner ensures no dark patterns β accept and reject buttons have equal visual weight.
Legal basisWCAG 2.1 Level AA + European Accessibility Act (EAA)Success Criteria: 1.4.3, 1.4.4, 2.1.1, 2.3.1, 2.4.7, 1.4.12 + Directive 2019/882
Integration
The widget is automatically included with the Fox's Nest script β no separate installation required. It works on all modern browsers (Chrome, Firefox, Safari, Edge) and mobile devices. It does not conflict with existing page styles. If you use the cookie + accessibility bundle, both widgets merge into a single unified radial menu that takes up less space on the page.
Accessibility statement
Both public and private entities (under the European Accessibility Act since June 2025) benefit from publishing an accessibility statement. Fox's Nest provides a compliant statement page covering conformance level, technical specifications, known limitations, assessment methods, feedback procedures, and enforcement information.
Legal basisAct on digital accessibility + European Accessibility Act (EAA)Art. 10-12 + Directive 2019/882 Art. 4, 13, 14
What is a WCAG audit?
A WCAG audit is an automated accessibility analysis of your website. The system checks compliance with WCAG 2.1 guidelines and generates a detailed report with a score, a list of detected issues, and specific remediation recommendations. You can launch an audit directly from the Fox's Nest dashboard.
Audit types
Fox's Nest offers two audit modes. Single-page scanning β available on all plans, lets you quickly check a specific URL. Full-site scanning β available on Pro and higher plans, automatically fetches your sitemap and analyzes all pages. Higher plans offer more concurrent audits and faster processing.
Results and report
After the audit completes, you receive a score from 0 to 100 and a breakdown of issues by severity: critical, serious, moderate, and minor. Each issue includes a description, location on the page, and a fix recommendation. The system automatically identifies which issues can be resolved by the Fox's Nest widget β these are highlighted as plugin-fixable.
Progress tracking
When scanning multiple pages, you can track the audit progress in real time β see how many pages have been analyzed, results per page, and estimated completion time. Once the audit finishes, you receive an email notification with a summary of the results.
What is the badge?
The WCAG evaluation badge is a public indicator of your website's accessibility level, based on automated audit results. After running an audit and getting a score, you can publish a badge that visitors to your site will see as a visual indicator of WCAG compliance. The badge is available on Standard plans and above.
Styles and embedding
The badge comes in three styles: default (full with score and category), compact (smaller, ideal for footers), and minimal (score indicator only). In the Fox's Nest dashboard you'll find ready-to-use embed codes β simply copy the HTML or JavaScript snippet and paste it on your website.
Grace period
If your audit score drops, the badge won't change immediately β you have a 7-day grace period to make fixes. During this time, the badge continues showing the previous, higher score. If you fix the issues and run a new audit within 7 days, the badge updates to the new score seamlessly.
Public report
Every published badge links to a public report page accessible without login. The report shows the overall score, category breakdown, and last audit date. You can share the report link with clients and partners as an indicator of your commitment to digital accessibility. The report does not replace a formal WCAG audit conducted by certified specialists.
What is the GDPR scanner?
The GDPR Scanner in Fox's Nest is an automated tool that analyzes your website's compliance with data protection regulations. The system visits your site like a real user, detecting cookies, trackers, external scripts, and potential violations. After scanning, you receive a score (0-100) and a detailed list of detected issues with fix recommendations.
Scan types
Fox's Nest offers three scanning modes. Quick scan β single-page analysis, available on all plans. Full scan β multi-page analysis (up to 100β2,000 pages depending on plan), automatic sitemap detection. Sitemap scan β you provide the sitemap URL and the system analyzes all discovered pages. Higher plans offer more monthly scans and faster processing.
What does the scanner check?
The scanner checks 6 key compliance areas: cookie banner presence, cookie reject option availability, tracking script blocking before consent, no tracking cookies before consent, privacy policy presence, and Google Consent Mode implementation. Each detected issue is classified by severity (critical, serious, moderate, minor) and includes specific fix guidance.
Legal basisGDPR + ePrivacy DirectiveArt. 5(3) ePrivacy Directive, Art. 7 GDPR, EDPB Guidelines
Scan scheduling
You can configure recurring GDPR scans β the system will automatically run a scan at your chosen interval (weekly, biweekly, monthly). Set an alert threshold β if the score drops below your defined level, you'll receive an email notification. Schedules can be paused, resumed, or cancelled at any time from the dashboard.
Comparing results
Fox's Nest stores the history of all scans β you can compare results over time and track your compliance progress. The comparison view shows changes in the number of cookies, trackers, and violations between consecutive scans. If you use the WCAG badge, the public badge report also includes a GDPR data summary (score, cookies, trackers).
What are information clauses?
Information clauses are documents required by GDPR Art. 13 and 14 that inform individuals about the processing of their personal data. As a general rule, they should be placed with forms that collect personal data β contact forms, registration forms, newsletter sign-ups, order forms, recruitment forms, and others. A clause should include: controller details, processing purpose, legal basis, retention period, data subject rights, and DPO contact information (if appointed). Exact requirements depend on the processing context.
Legal basisGDPRArt. 13 (Information when collecting data), Art. 14 (Information without collection from data subject)
Step-by-step generator
The GDPR clause generator in Fox's Nest guides you through 4 steps. Step 1: company data (name, address, tax ID, registration number, email, phone, website, DPO details). Step 2: form type selection β 6 types: contact, newsletter, registration, e-commerce, recruitment, user account. Step 3: configuration β data recipients, third-country transfers, profiling, retention period. Step 4: preview of generated clauses in both full and short versions.
Clause configuration
In the configuration step, you can specify data recipients (hosting, payments, accounting, couriers, social media, advertising, other), indicate whether data is transferred to third countries and on what legal basis, and mark whether you use profiling or automated decision-making. For each form type, the system selects appropriate retention periods and legal bases. You can toggle between the full version (all information) and a short version (key elements with a link to the full clause).
Saving and export
Generated clauses can be copied to clipboard (individually or all at once), printed, or saved to your Fox's Nest account. Saved clauses are linked to the compliance checklist β the system automatically detects that you have generated clauses and checks the corresponding item on the checklist. You can return to the generator at any time and update clauses after changing company details. Note: generated clauses are templates and do not constitute legal advice. We recommend having them reviewed by a lawyer or DPO.
What is the compliance checklist?
The compliance checklist is an interactive dashboard in Fox's Nest that evaluates your website's readiness across four key areas: WCAG (digital accessibility), GDPR (data protection), AI Act (AI regulation), and Documentation (required organizational documents). For each site, you receive a percentage compliance score. This feature is available on Pro plans and above.
Checklist sections
The WCAG section includes 6 items: audit score β₯90, accessibility statement, widget installed, PDF documents accessible, recurring audit, evaluation badge. The GDPR section includes 6 items: cookie banner, Google Consent Mode v2, reject button, no pre-consent tracking, privacy policy, GDPR clauses. The AI Act section includes 3 items: AI systems declared, chatbot disclosure, high-risk documentation. The Documentation section includes 4 items: DPO appointment, DPIA assessment, DPA agreement, retention policy.
Automatic and manual mode
Some checklist items are detected automatically β e.g., whether the widget is installed, whether the badge is active, what the latest audit score is. Others require manual toggling (e.g., PDF accessibility, DPO appointment). Each item can also be marked as "Not applicable" β in which case it doesn't affect the score. The score recalculates in real time after every change.
Built-in wizards
From the checklist, you have direct access to built-in wizards: DPO quiz (whether you need to appoint a Data Protection Officer), DPA wizard (data processing agreement), DPIA wizard (impact assessment), and retention policy wizard. Completing any wizard automatically checks the corresponding item on the checklist.
What is the AI Act?
The AI Act (EU Regulation 2024/1689) is the world's first comprehensive regulation on artificial intelligence. It introduces a risk-based approach β from prohibited systems (e.g., social scoring), through high-risk (e.g., recruitment systems, credit scoring), limited risk (e.g., chatbots β disclosure obligation), to minimal risk (e.g., spam filters). Key enforcement dates: February 2025 (prohibited practices), August 2025 (GPAI models), August 2026 (high-risk systems).
Legal basisRegulation (EU) 2024/1689 of the European Parliament and of the CouncilChapter II (Prohibited Practices), Chapter III (High-Risk Systems), Art. 50 (Transparency)
AI Act readiness wizard
The AI Act readiness wizard in Fox's Nest is an interactive questionnaire with 11 questions that assess your exposure to the regulation. Questions cover: organization type, scope of AI usage, high-risk signals, user-facing AI, GPAI models, GDPR data profile, governance, WCAG exposure, documentation maturity, training maturity, and implementation urgency. After completing it, you receive a readiness score, a risk score, and the number of mandatory tasks to complete.
Report and action plan
Based on your wizard answers, the system generates a personalized action plan in three phases: immediately (urgent organizational steps), 30 days (documentation and procedures), and 90 days (full implementation and monitoring). Each task is marked as mandatory or recommended. The plan also includes evidence package requirements β what documents and records you may want to prepare in case of an inspection. The report and action plan are informational and do not constitute a formal AI Act compliance assessment.
AI declaration
Fox's Nest allows you to create AI system declarations for each site separately. This includes disclosing chatbots and AI systems on your website, transparency statements, and public statement pages accessible via a unique link. The AI declaration is linked to the compliance checklist β completing it automatically checks the corresponding item.
What is Google Consent Mode v2?
Google Consent Mode v2 is a mechanism that enables communication between your cookie banner and Google services (Google Analytics 4, Google Ads, Google Tag Manager). Once implemented, Google services automatically adjust their behavior to user choices β when a user doesn't consent to analytics or marketing cookies, Google collects only anonymized data (cookieless pings) without storing cookies on the device.
Legal basisDigital Markets Act (DMA) + GDPRRegulation (EU) 2022/1925 Art. 5 + GDPR Art. 6-7
Automatic implementation
Fox's Nest automatically implements Google Consent Mode v2 on your website β no manual configuration needed. The Fox's Nest script sets consent signals (ad_storage, analytics_storage, ad_user_data, ad_personalization, functionality_storage, personalization_storage, security_storage) according to user choices in the cookie banner. Signals are sent to Google before any Google script loads.
Why is it required?
Since March 2024, Google requires Consent Mode v2 implementation for all websites using Google Ads in the European Economic Area (EEA). Without proper GCM v2 implementation, Google Ads campaigns may lose remarketing and audience building capabilities, and conversion measurements may be inaccurate. Fox's Nest ensures full compliance with these requirements.
Verification
You can verify your Google Consent Mode v2 implementation in the GDPR scan β the report shows whether GCM is active and whether consent signals are properly set. Additionally, in Google Tag Manager you'll find the Consent Mode status in the Diagnostics tab. Fox's Nest supports both basic mode (blocking Google scripts until consent) and advanced mode (cookieless pings without consent + full data after consent).
WordPress plugin
Fox's Nest offers a native WordPress plugin that simplifies the installation of the cookie banner and accessibility widget on WordPress sites. Instead of manually pasting JavaScript code in the <head> section, simply install the plugin, enter your site UUID from the Fox's Nest dashboard, and activate it. The plugin automatically places the script in the correct location on every page.
Installation and configuration
Plugin installation: download the ZIP file from the Fox's Nest dashboard or the WordPress plugin directory, install via Plugins β Add New β Upload Plugin, activate the plugin, then go to Settings β Fox's Nest and paste your site UUID. The plugin automatically adds the Fox's Nest script to the <head> section as the first script, ensuring synchronous loading and tracking script blocking before consent.
Compatibility
The WordPress plugin is compatible with the most popular themes and cache plugins (WP Super Cache, W3 Total Cache, WP Rocket, LiteSpeed Cache). If you use a cache plugin, make sure the Fox's Nest script is not deferred β in your cache settings, exclude the Fox's Nest script from JavaScript optimization (defer/async). The plugin is compatible with WordPress 5.0+ and PHP 7.4+.
Two-factor authentication (2FA)
Two-factor authentication (2FA) adds an extra layer of protection to your Fox's Nest account. Once enabled, in addition to your password, you'll be asked to enter a one-time code from an authenticator app (e.g., Google Authenticator, Authy, 1Password) each time you log in. 2FA configuration is available in Settings β Security.
Backup codes
During 2FA setup, the system generates a set of one-time backup codes. Store them in a safe place β they'll let you regain access to your account if you lose the device with the authenticator app. Each backup code can only be used once. If you use all codes, you can generate a new set in your account settings.
Social login
Fox's Nest supports login via Google, Facebook, LinkedIn, and Apple accounts. Social account connections can be managed in Settings β Connected Accounts. You can link multiple social accounts simultaneously and disconnect any of them at any time. Social login is compatible with 2FA β if you have 2FA enabled, you'll still be asked for a verification code after logging in via a social account.
Session management
In Settings β Sessions, you can view active login sessions β with information about the device, browser, IP address, and login date. You can terminate any session remotely, e.g., if you notice an unfamiliar login. JWT sessions have a limited validity period and are automatically refreshed during active platform use.
Data Processing Agreement (DPA)
A Data Processing Agreement (DPA) is generally required under GDPR Art. 28 when you share personal data with a data processor β e.g., a hosting provider, email service, analytics platform, or payment gateway. Determining whether a given entity qualifies as a processor should be consulted with a lawyer. The DPA wizard in Fox's Nest guides you through 4 steps: party details (with automatic NIP lookup in the GUS registry), processing scope (data subjects, categories, purpose, duration), technical and organizational measures (encryption, access control, backups, training), and document preview and generation. The generated document is a template and does not constitute legal advice.
Legal basisGDPRArt. 28 (Processor)
Data Protection Impact Assessment (DPIA)
A Data Protection Impact Assessment (DPIA) may be required under GDPR Art. 35 when processing may result in a high risk to the rights and freedoms of individuals β e.g., large-scale monitoring, processing sensitive data, automated decision-making, or profiling. Detailed guidelines are published by the national supervisory authority. The DPIA wizard in Fox's Nest guides you through 5 steps: project description, necessity and proportionality assessment, risk identification (likelihood Γ impact matrix, scale 1-16), mitigation measures, and document generation. The generated document is a template and does not constitute legal advice.
Legal basisGDPRArt. 35 (Data protection impact assessment)
Data retention policy
The storage limitation principle (GDPR Art. 5(1)(e)) requires that personal data be kept no longer than necessary. The retention policy wizard in Fox's Nest guides you through 3 steps: organization name and data category selection (8 defaults: employees, clients, contractors, marketing, accounting, correspondence, recruitment, system logs), retention periods and legal bases for each category, and complete retention policy generation. The generated document is a template and does not constitute legal advice.
Legal basisGDPRArt. 5(1)(e) (Storage limitation)
DPO Quiz
A Data Protection Officer (DPO) may be required when your organization is a public authority, conducts large-scale regular monitoring, or processes sensitive data on a large scale. The DPO quiz in Fox's Nest consists of 6 questions and helps you preliminarily assess whether your organization may be obligated to appoint a DPO. The result is indicative β the final assessment should account for your organization's specifics. Three possible outcomes: required, recommended, or not required. Note: all generated documents are templates based on your answers β they do not constitute legal advice and should be reviewed by a lawyer.
Legal basisGDPRArt. 37-39 (Data protection officer)
GDPR (2016/679)
The General Data Protection Regulation β the main legal act governing personal data processing in the EU. Directly applicable since May 25, 2018. It imposes the obligation to obtain informed consent for data processing, including through cookies.
Legal basisRegulation (EU) 2016/679 of the European Parliament and of the CouncilOJ EU L 119
ePrivacy Directive (2002/58/EC)
The Directive on privacy and electronic communications β regulates the use of cookies and similar technologies. It requires obtaining consent before storing or reading cookies on the userβs device (except necessary cookies).
Legal basisDirective 2002/58/EC as amended by Directive 2009/136/ECArt. 5(3)
Telecommunications Law (PL)
In Poland, the ePrivacy Directive was implemented in the Telecommunications Law. Art. 173 imposes the obligation to inform users about cookies and obtain their consent. Supervision is carried out by the President of UKE in cooperation with UODO.
Legal basisAct of July 16, 2004 β Telecommunications LawArt. 173, Art. 174
European Accessibility Act (2019/882)
The European Accessibility Act extends the obligation to ensure digital accessibility to the private sector. Since June 28, 2025, it covers e-commerce, banking services, transport, and telecommunications, among others. It requires compliance with the WCAG 2.1 AA standard. Non-compliance may result in penalties as defined by national transposition laws β member states are required to establish effective and dissuasive sanctions.
Legal basisDirective (EU) 2019/882 of the European Parliament and of the CouncilOJ EU L 151, Art. 30 (Penalties)
Digital Accessibility Act (PL)
Polish act implementing Directive 2016/2102. It imposes digital accessibility obligations on public entities. It requires publishing an accessibility statement and meeting the WCAG 2.1 AA standard. Supervision is carried out by the Minister for Digitalization.
Legal basisAct of April 4, 2019 on digital accessibility of websites and mobile applications of public entitiesJournal of Laws 2019, item 848
Accessibility Provision Act (PL)
The Act of July 19, 2019 defines measures for ensuring accessibility for people with special needs. It applies to public entities and covers digital, architectural, and information-communication accessibility. Accessibility coordinators must be appointed in every public entity.
Legal basisAct of July 19, 2019 on ensuring accessibility for people with special needsJournal of Laws 2019, item 1696
Discovery trial period
Every new user gets a 14-day free trial period without providing credit card details. During this time, you have full access to platform features β you can add a site, configure the cookie banner and accessibility widget, run a WCAG audit, and view results. You'll receive email reminders before the trial ends.
Available plans
Fox's Nest offers 5 plans tailored to every need. Free β 1 domain, 1,000 sessions/month, cookie banner + WCAG widget, basic audits and statistics. Standard β 1 domain, 10,000 sessions/month, GDPR and WCAG scanners, evaluation badge, AI Act features. Pro β 3 domains, 50,000 sessions/month, advanced scanners, automated scheduling, team of up to 5, priority support, white-label. Business β 5 domains, 200,000 sessions/month, full scanners, team of up to 15, API access, 99.9% SLA, dedicated support. Enterprise β custom domains, sessions, volume discounts, white-label, account manager, custom integrations. Each plan is available with monthly or annual billing (with a discount).
Subscription activation
After the trial period ends, you can choose any plan and activate a subscription. Payments are processed by Stripe β a secure platform supporting credit and debit cards. Prices are displayed in PLN for Polish-speaking users and in EUR for others. If you choose a paid plan during the trial period, the remaining days are added as a free period to your subscription. Plan changes are possible at any time β the system automatically prorates the amount.
Enterprise plan
For organizations with special requirements, we offer an Enterprise plan with custom domain and audit limits, white-label option (your brand instead of Fox's Nest), a dedicated account manager, extended 99.9% SLA, and custom integrations. The enterprise calculator is available directly in the dashboard β enter the number of domains and desired features, and the system will generate a personalized PDF offer. You can also contact us directly.
Does my website need a cookie banner?
Yes, if your website uses any cookies beyond strictly necessary ones (session, cart) and is accessible to EU users. This applies to Google Analytics, Facebook Pixel, Google Ads, Hotjar, and many other popular tools.
Is just displaying cookie information enough?
No. According to GDPR and CJEU case law (ruling C-673/17 "Planet49"), merely informing the user is not sufficient. Active, informed consent is required BEFORE cookies are activated. Checkboxes cannot be pre-checked.
Does the WCAG widget guarantee full compliance?
The WCAG widget provides comprehensive coverage of key WCAG 2.1 AA criteria including contrast validation, keyboard navigation, focus management, ARIA roles, and animation control. For complete compliance, your site also needs proper HTML structure, image alt text, correct forms, and semantic markup.
How does Fox's Nest affect website speed?
The Fox's Nest script weighs less than 5KB (gzipped) and loads synchronously to guarantee that no tracking scripts fire before user consent. Despite synchronous loading, the script is highly optimized and has minimal impact on page load times.
Does Foxβs Nest support multiple languages?
Yes. The cookie banner automatically adjusts the language to the userβs browser settings. The Foxβs Nest dashboard is available in Polish and English. The cookie banner supports translations to any language β you can manually define your own translations in the configuration panel.
What penalties apply for GDPR non-compliance?
GDPR violation fines can reach up to 20 million EUR or 4% of annual global turnover (whichever is higher). In Poland, the UODO regularly imposes fines β on both public entities and private companies. The highest Polish GDPR fine exceeds 4.9 million PLN.
What is the Discovery trial period?
Discovery is a 14-day free trial that starts automatically when you add your first site. No credit card is required. During this time you have full access to the platform. Before the trial ends, you'll receive email reminders about choosing a plan.
How does the WCAG audit work?
The WCAG audit automatically scans your website for compliance with WCAG 2.1 accessibility guidelines. You receive a score (0-100), a list of issues grouped by severity, and specific fix recommendations. You can scan a single page or your entire site (depending on your plan).
What is the WCAG evaluation badge?
The evaluation badge is a visual indicator you can place on your website as a visible signal of your commitment to digital accessibility. The badge links to a public report with automated audit results. It's available on Standard plans and above, in three visual styles.
How does the GDPR scanner work?
The GDPR Scanner automatically analyzes your website across 6 compliance areas: cookie banner, reject option, script blocking before consent, no cookies before consent, privacy policy, and Google Consent Mode. You receive a score (0-100) and a list of violations with recommendations. You can scan once or set up a recurring schedule. Available on all plans with monthly limits.
What is the compliance checklist?
The compliance checklist is a dashboard that evaluates your website's readiness across 4 areas: WCAG, GDPR, AI Act, and Documentation. Some items are detected automatically (e.g., widget installed, badge active), while others require manual confirmation (e.g., PDF accessibility, DPO appointment). Available on Pro plans and above.
Are the GDPR clause generator outputs legally binding?
The generator creates information clause templates compliant with GDPR Art. 13 and 14 based on the data you provide. However, these are templates β not legal advice. We recommend having generated clauses reviewed by a lawyer or Data Protection Officer, especially for non-standard data processing scenarios.
What is the AI Act and does it apply to me?
The AI Act (EU Regulation 2024/1689) is a European regulation on artificial intelligence. It applies to you if you deploy, use, or distribute AI systems in the European Union β including chatbots, content generators, recommendation systems, or AI-powered analytics tools. The readiness wizard in Fox's Nest will assess your exposure to the regulation in 11 questions. Key dates: February 2025 (prohibited practices), August 2025 (GPAI), August 2026 (high-risk systems).
When do I need a Data Processing Agreement (DPA)?
A Data Processing Agreement (DPA) is generally required under GDPR Art. 28 when you share personal data with a data processor β e.g., a hosting provider, email service, analytics platform, payment gateway, or accounting firm. The DPA wizard in Fox's Nest generates an agreement template based on your answers in 4 steps. The template should be reviewed by a lawyer.
When is a DPIA required?
A Data Protection Impact Assessment (DPIA) may be required under GDPR Art. 35 when processing personal data may result in a high risk to the rights and freedoms of individuals. This includes large-scale monitoring, processing sensitive data (health, biometrics, political opinions), automated decision-making, and profiling with significant effects. Detailed guidelines are published by national supervisory authorities.
Does my company need a DPO?
A Data Protection Officer (DPO) may be required when your organization is a public authority, conducts regular and systematic large-scale monitoring, or processes sensitive data on a large scale. The DPO quiz in Fox's Nest consists of 6 questions and helps you preliminarily assess whether your organization may be obligated to appoint a DPO. The result is indicative and should be verified considering your organization's specifics.
Does Fox's Nest support Google Consent Mode v2?
Yes. Fox's Nest automatically implements Google Consent Mode v2 on your website. Consent signals (ad_storage, analytics_storage, ad_user_data, ad_personalization, and others) are set according to user choices in the cookie banner and sent to Google before any Google script loads. You can verify the implementation in the GDPR scanner report.
Can I secure my account with 2FA?
Yes. Fox's Nest offers two-factor authentication (2FA) based on time-based one-time passwords (TOTP). You can configure it with any authenticator app (Google Authenticator, Authy, 1Password). The system also generates one-time backup codes in case you lose your device. Configuration is available in Settings β Security.
Does Fox's Nest work with WordPress?
Yes. Fox's Nest offers a native WordPress plugin that automatically adds the cookie banner and accessibility widget script to your website's <head> section. Simply install the plugin, enter your site UUID from the Fox's Nest dashboard, and activate. The plugin is compatible with popular cache plugins (WP Super Cache, WP Rocket, LiteSpeed Cache).
Can I manage websites as a team?
Yes. On Pro and higher plans, you can invite team members to collaboratively manage websites. Send invitations from the dashboard by providing an email address β the invited user receives an activation link. The account owner can remove a team member at any time. Pro supports up to 5 members, Business up to 15, and Enterprise has no limit.
Can I log in with Google/Facebook?
Yes, Fox's Nest supports login via Google, Facebook, LinkedIn, and Apple accounts. Social account connections can be managed in Settings β Connected Accounts. Social login is compatible with 2FA.