Keep Cookiebot's banner. Add the layer that proves what fires before consent and writes your GDPR documents.
Cookiebot is a Danish product, built by Cybot A/S in Copenhagen in 2012 and now operated under Usercentrics A/S, the same Copenhagen-headquartered group it merged with in September 2021. It is available both as a hosted SaaS and as a popular WordPress plugin, and it is a fully certified IAB TCF v2.3 Consent Management Platform (CMP ID 134) and a Google-recognized Gold Tier CMP partner. Its core job is to display a consent banner, block cookies until consent, and keep a cookie declaration current with scheduled rescans. Pricing is per domain and scales by the number of subpages its scanner discovers. CookieSentry is not trying to replace that banner. It is the pre-consent audit and GDPR-documents layer you bolt on alongside it: it loads your live URL like a real visitor, names every cookie and tracker that fires before anyone clicks anything, and generates the localized privacy and cookie documents you can hand to counsel, all on flat pricing that does not climb as your site grows.
2012
Year Cybot launched Cookiebot in Copenhagen, before its 2021 Usercentrics merger
Cookiebot Support — Company information
v2.3
IAB TCF version Cookiebot is certified for as CMP ID 134, a Google Gold Tier partner
IAB Europe TCF vendor/CMP list; Cookiebot
70%
Share of Danish sites found setting non-essential cookies before consent
Cookie Information — Denmark compliance report
2026
Year Datatilsynet named cookie consent a formal enforcement priority
Datatilsynet / Digitaliseringsstyrelsen 2026 priorities
Cookiebot's scanner builds a cookie declaration to populate its own banner. CookieSentry runs an independent pass that loads your live page like a visitor and flags every cookie and tracker firing BEFORE consent, naming the source, so you can verify the banner is actually holding things back rather than trusting it to police itself.
Beyond the audit, CookieSentry generates GDPR documents (privacy and cookie policies and related records) mapped to the national rules that apply, including Germany's section 25 TDDDG, Denmark's cookie order, and Poland, Sweden and pan-EU ePrivacy, not a generic baseline. A banner does not write or maintain these for you.
Cookiebot's plan tier is set by how many subpages its scanner finds, and it auto-upgrades you when a scan crosses a threshold. CookieSentry pricing is flat and predictable: a large site does not push you into a higher bracket, and a monthly rescan will not silently change your bill.
Cookiebot's patented scanner exists to feed its own consent product: it categorizes cookies so the banner can describe them and the blocking engine can gate them. That is a closed loop, and it is a reasonable design for a CMP. But it means the same system that is supposed to suppress pre-consent tracking is also the system that reports on whether it succeeded. When a DPA, an agency or your own counsel asks for proof that nothing non-essential fired before the visitor consented, a vendor's self-report on its own banner is a weak artifact.
CookieSentry deliberately sits outside that loop. It loads your live URL as an untrusted third party would, observes the network and storage before any consent signal, and produces a standalone report naming each pre-consent cookie and tracker and where it came from. You can keep Cookiebot running the banner exactly as it is; CookieSentry simply gives you an independent second opinion you can export and hand over as evidence.
Denmark's own numbers make the point bluntly. Cookie Information's national compliance report found that the overwhelming majority of Danish sites already have a banner, yet most still have compliance issues and around 70% set non-essential cookies before consent. A banner being present, even a certified one, says nothing about whether the page actually withholds tracking before the click. The gap between 'we have a banner' and 'nothing fired early' is precisely the gap CookieSentry measures.
There is a second gap Cookiebot does not address: the documents. A cookie declaration that populates a banner is not the same as a maintained privacy policy, cookie policy and supporting records written against the national law that applies to you. CookieSentry generates that document set and localizes it, so the evidence of what fires and the paperwork describing it come from one place and stay consistent as your site changes.
Cookiebot's commercial model is tied to scale: your tier is determined by how many subpages its scanner discovers, not by traffic, and it automatically upgrades you to the next plan when a monthly scan crosses a threshold. For a small marketing site that is fine. For a large catalog, documentation set or multilingual estate, a routine rescan can quietly move you up a bracket. CookieSentry's flat pricing is built to remove that surprise: the audit-and-docs layer costs the same whether you have fifty pages or fifty thousand.
The timing matters too. Denmark's Datatilsynet named cookie consent a formal 2026 enforcement priority, coordinating with Digitaliseringsstyrelsen on dark patterns, asymmetric accept/reject choices and tracking that fires before consent. Datatilsynet does not levy administrative fines itself; it refers cases through the police and courts, but its orders and reprimands still force remediation. In that climate, being able to show an independent, dated record of what your pages did before consent, alongside documents mapped to the Danish and pan-EU rules, is a concrete advantage a banner alone cannot give you.
'Consent' of the data subject means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
| Capability | CookieSentry | Cookiebot |
|---|---|---|
| Consent banner / CMPCookiebot is a certified CMP; CookieSentry has no banner by design. | ||
| IAB TCF supportCookiebot is certified for IAB TCF v2.3 as CMP ID 134. | ||
| Automatic pre-consent cookie scanningCookiebot scans to feed its own banner; CookieSentry runs an independent pre-consent audit. | ||
| Free public scan (no signup)Cookiebot has a free tier but it is account-based and capped at 50 subpages. | ||
| GDPR document generationCookiebot produces a cookie declaration; CookieSentry generates a localized GDPR document set. | ||
| Exportable audit evidence (PDF)CookieSentry produces a shareable report plus a downloadable PDF for counsel. | ||
| National-law overlaysCookieSentry maps to TDDDG, Danish cookie order, PL/SE and pan-EU ePrivacy. | ||
| Pricing modelCookiebot tier is set by subpages discovered, not traffic. | Flat, does not scale by subpages | Per domain, scales by subpage count with auto-upgrades |
| Google Consent Mode for adsCookiebot is a Google Gold Tier CMP partner. | ||
| Scheduled rescan monitoringCookieSentry offers monitoring on paid tiers; Cookiebot rescans on a schedule. |
Cookiebot was built by Cybot A/S in Copenhagen in 2012 and merged with Usercentrics in September 2021. It runs as both a hosted SaaS and a widely installed WordPress plugin under Usercentrics A/S.
Cookiebot is certified under IAB TCF v2.3 as CMP ID 134 and is a Google Gold Tier CMP partner. CookieSentry is deliberately not a CMP: it does not display, host or manage a consent banner and does not implement TCF.
Cookiebot's plan tier is determined by the number of subpages its scanner discovers per domain, and it automatically upgrades to the next tier when a scan exceeds the limit. Its base Premium pricing was raised in 2025. CookieSentry pricing is flat.
Cookiebot is the better choice when your primary need is a consent banner itself. If you must display, style and A/B a consent UI, pass IAB TCF v2.3 consent strings to ad vendors, run Google Consent Mode for advertising, and block scripts until the visitor agrees, that is exactly what Cookiebot is built for, and it does it well as a certified CMP and Google Gold Tier partner. CookieSentry offers none of that: it has no banner, is not a CMP, and does not implement IAB TCF. Honestly, if a banner plus automatic blocking is the box you need ticked, keep Cookiebot. CookieSentry is for the adjacent problem Cookiebot's banner cannot solve on its own: independently proving what actually fires before consent and producing the GDPR paperwork to match.
Cookiebot's price is a moving target tied to your site's size: your tier is set by how many subpages its scanner finds per domain, and it auto-upgrades you to the next plan when a monthly scan crosses the limit, with base Premium pricing having risen in 2025. For large or growing estates that means a routine rescan can quietly raise your bill. CookieSentry takes the opposite approach: flat, predictable pricing that does not scale by subpage count, so the audit-and-documents layer costs the same whether you run fifty pages or fifty thousand. We never quote Cookiebot's exact figures here because their tiers change; the point is the model, not the number.
You do not swap your consent script for CookieSentry, and you should not. Keep Cookiebot (or whatever banner you run) as your consent UI: it stays the certified CMP that displays the banner, passes TCF strings and runs Google Consent Mode. Add CookieSentry alongside it as the layer that independently proves what fires before consent and generates and maintains your localized GDPR documents. If your team was leaning on Cookiebot mainly for its cookie scanner and audit, CookieSentry can replace that half while the banner keeps doing its job.
No. CookieSentry is not a consent banner or a CMP and does not implement IAB TCF. Keep Cookiebot for the banner, TCF strings and Google Consent Mode. CookieSentry adds an independent pre-consent audit and generates your localized GDPR documents alongside it.
Cookiebot's scanner exists to feed its own banner and declaration. CookieSentry runs an independent pass that loads your live page like a visitor and names every cookie and tracker that fires before consent, giving you exportable, third-party evidence rather than a vendor self-report on its own banner.
Cookiebot's tier is set by the number of subpages its scanner discovers per domain and auto-upgrades when a scan crosses a threshold. CookieSentry pricing is flat and does not scale by subpage count, so a large or growing site does not push you into a higher bracket.
Yes. CookieSentry's checks and generated documents map to the national overlays that actually apply, including Denmark's cookie order, Germany's section 25 TDDDG, and Poland, Sweden and pan-EU ePrivacy, rather than a generic GDPR baseline. This is timely given Datatilsynet's 2026 cookie-consent enforcement focus.
Weighing more than one option? See how CookieSentry stacks up against the other consent tools on the market.
Run a free CookieSentry scan on your live pages, catch early-firing cookies, and export evidence your privacy team or agency can act on — no signup required.
Run a free scan →Comparison last reviewed 2026-06-14. Cookiebot is a trademark of its respective owner; competitor details are described in good faith and may change over time.