Generate a GDPR Compliance Report
Use this guide when you need to demonstrate GDPR compliance to an auditor, regulator, or client.
What the report contains
A ConsentForge compliance report proves:
- You have a published consent policy with defined categories and vendors
- Users were shown a compliant banner before any non-necessary scripts loaded
- Every consent decision was recorded as a tamper-proof receipt
- The evidence chain is intact (HMAC-verified)
Step 1: Generate the Consent Summary Report
Dashboard → Evidence → Reports → Consent Summary
- Set the date range (e.g. last 12 months)
- Format: PDF
- Click Generate Report
The report shows: total decisions, accept/reject breakdown by category, regional distribution, and policy version history.
Step 2: Generate the Vendor Coverage Report
Evidence → Reports → Vendor Coverage → Export PDF
Shows all vendors, their categories, and scanner verification status. This proves you have documented all data processors.
Step 3: Generate the Audit Trail Report
Evidence → Reports → Audit Trail
- Set date range
- Click Verify chain — confirms all receipts are tamper-proof
- Export as PDF
Step 4: Download your DPA
Account → Legal → Data Processing Agreement → Download
The pre-signed DPA documents ConsentForge's role as your data processor under GDPR Art. 28.
Responding to a DPA (Data Protection Authority) inquiry
If you receive an inquiry from a DPA (e.g. BfDI in Germany, CNIL in France), provide:
- Consent Summary Report for the relevant period
- Audit Trail Report with chain verification
- Your DPA with ConsentForge
- Your published policy (export from Policy → Version History)
See also: Compliance Reports · Shared Responsibility