Sovereignty Audit

The sovereignty audit assesses any domain across data residency, privacy posture, tech stack, and security. It detects which third-party tools a site relies on, flags non-EU dependencies, and suggests European alternatives.

What it measures

Data residency — where data is hosted and processed
Privacy posture — DPA, subprocessors, transparency
Tech stack — detected analytics, CDN, hosting, CRM, and other dependencies
Security — TLS, headers, public certifications

How it works

Enter a domain, the audit runs a page scan, DNS checks, RIPE lookups, TLS inspection, and subprocessor extraction. You get a score per pillar, a gap analysis, and a list of European alternatives for any non-EU tools detected.

Read the audit policy for retention, scope, and what we don't store.