Free Tools
GTM, Analytics & Privacy Tools. No account required.
Inspect your Google Tag Manager setup, validate consent mode compliance, compare container versions, and audit live tracking. No installation or account required.
Available now
Upload your GTM container JSON. Inspect every tag, trigger, and variable, map their dependencies, and detect unused or broken elements. Export the full audit as CSV. Works from a local export, no container API access required.
Compare two GTM container exports side by side. See exactly which tags, triggers, and variables were added, removed, or changed between versions. Useful before and after deployments.
Audit Google Consent Mode v2 and Microsoft UET Consent Mode on any live URL. Validates that tags respect user consent choices across three states: before consent, after accept, and after reject. Covers GA4, Google Ads, Meta Pixel, TikTok, Microsoft Ads, and Clarity.
Run a live audit on any URL in a real headless browser. Receive an email report covering GA4 events, GTM container health, Facebook Pixel, consent mode signals, and duplicate tracking. No browser extension needed.
Coming soon
Connect to your GA4 property to validate event schemas, explore dimensions and metrics, and audit your measurement setup against best practices. Coming soon.
Related reading
How the three-state consent audit works, what GCS and ASC signals mean, and what the most common GDPR failures look like in practice.
FAQ
Are these tools really free? +
Yes. All four live tools (GTM Auditor, GTM Diff, Privacy Compliance Audit, and Website Tracking Audit) are completely free. No account, no credit card, no login required.
What is the GTM Auditor and what does it check? +
The GTM Auditor analyses a GTM container JSON export from your browser. It maps every tag, trigger, and variable, shows their dependencies, and flags unused elements, missing consent configuration, and broken trigger references. Export the results as CSV for documentation or handoffs.
How does the Privacy Compliance Audit differ from a cookie scanner? +
A cookie scanner reads which cookies were set. The Privacy Compliance Audit loads your URL in a real browser, clicks your consent banner, and intercepts the actual network requests fired by tracking tags across three consent states: before consent, after accept, and after reject. It validates the GCS signal on every Google request and the ASC signal on every Microsoft UET request, which a cookie scanner cannot do.
What vendors does the Privacy Compliance Audit cover? +
Google Analytics 4, Google Ads, Google Tag Manager, Meta Pixel, TikTok Pixel, Pinterest Tag, Microsoft Ads (UET / Bing), and Microsoft Clarity. Each vendor receives a pass or fail verdict per consent state.
What is the difference between strict and normal compliance in the Privacy Audit? +
Normal compliance allows Google tags to fire in the deny state when they carry a denied GCS signal (Advanced Consent Mode) and allows Microsoft Ads to fire with a denied ASC signal. Strict compliance requires that no vendor fires after rejection under any circumstances. The audit reports both verdicts so you can evaluate against either standard.
What does the GTM Diff tool do? +
GTM Diff compares two GTM container JSON exports and shows every element that was added, removed, or modified between them. It is useful for reviewing changes before deploying a new container version, or for auditing what changed after an incident.
Do I need to install anything to use these tools? +
No installation is required for any tool. The GTM Auditor and GTM Diff work from a container JSON export you upload in your browser. The Privacy Compliance Audit and Website Tracking Audit run on AssertionHub servers and deliver results by email.
