Skip to content
https://teepublic.com

Compliance

· 13 checks — WCAG, consent & privacy, language, viewport, cookie inventory, and legal pages rolled into one auditable list.
SCORE
75
GRADE
C
FIX
1
REVIEW
4
PASS
5
INFO
3
Checks
13
5 PASS 4 REVIEW 1 FIX
F
Language & i18n
Action
Missing <html lang>
FIX
Missing <html lang>
Warning::
<html lang> attribute is missing
The lang attribute on <html> is required for screen readers and WCAG 3.1.1 compliance.
Info::
No Content-Language HTTP header
Info::
Language signals are consistent
Page Language Content-Language Header Consistent Yes

The lang attribute on <html> is required for screen readers and WCAG 3.1.1 compliance.

Why this matters

Without a lang attribute, screen readers mispronounce every word on the page.

Learn more

An HTML element without lang="..." causes screen readers to fall back to the user's default voice — a French page read in English sounds like nonsense. Setting lang on the <html> element is a one-character fix that lets every assistive tool pronounce content correctly.

Source: W3C WCAG 2.1

C
Viewport Configuration
Action
Viewport prevents zooming
REVIEW
Viewport prevents zooming
Info::
Viewport meta tag is present
Info::
width=device-width is set
Critical::
Viewport prevents user zooming
user-scalable=no or maximum-scale < 2 prevents users from zooming. This is a WCAG 1.4.4 (Level AA) failure and an accessibility barrier for users with low vision.
Got: width=device-width, initial-scale=1, maximum-scale=1 Expected: width=device-width, initial-scale=1 (without zoom restrictions)
Viewport Configuration Problem
Content
width=device-width, initial-scale=1, maximum-scale=1
width=device-width

Responsive layout enabled

initial-scale=1

Correct initial zoom level

maximum-scale=1

Restricts zoom — set to 5.0 or higher, or remove entirely

User zooming BLOCKED

WCAG 1.4.4 violation — users with low vision cannot zoom. Remove user-scalable=no and set maximum-scale to at least 5.0.

user-scalable=no or maximum-scale < 2 prevents users from zooming. This is a WCAG 1.4.4 (Level AA) failure and an accessibility barrier for users with low vision.

Why this matters

user-scalable=no is a WCAG 1.4.4 failure and creates ADA/EAA legal exposure — low-vision users rely on pinch-zoom every day.

Learn more

Setting user-scalable=no (or maximum-scale=1) in the viewport meta blocks pinch-zoom. WCAG 2.1 success criterion 1.4.4 (Resize Text) requires zoom up to 200%. ADA lawsuits against inaccessible US sites have risen sharply; the EU Accessibility Act adds another enforcement layer in 2025. Remove user-scalable and maximum-scale from the viewport meta.

Source: WCAG 2.1 SC 1.4.4 / ADA / EAA

B
Compliance Badges
1 compliance badge(s) detected
REVIEW
1 compliance badge(s) detected
Info::
Better Business Bureau badge detected
Found via image alt text: 'better business bureau accredited business'. Note: the presence of a badge does not verify the certification is current or valid.
Got: Detected by: image alt text
SOC 2
ISO 27001
PCI DSS
GDPR Certified
HIPAA Compliant
Better Business Bureau detected

Detected by: image alt text

Evidence: better business bureau accredited business

TRUSTe / TrustArc
Privacy Shield
McAfee SECURE / TrustedSite
Norton Secured
Badge detection is based on image alt text, link URLs, and page content. Detection does not verify that certifications are current or valid.
A+
WCAG Compliance
No testable criteria
PASS
No testable criteria
Level A
Level AA

0

Passed

0

Failed

0

Partial

0

Manual review

0

Not tested

Key accessibility barriers

Images without alt text

Screen reader users cannot understand 98 image(s)

~8M screen reader users in the US

Links with unclear purpose

11 link(s) have empty or generic text

Screen reader users navigating by link list

Form controls without labels

Assistive technology cannot identify 9 input(s)

Screen reader and voice-control users

Automated testing covers ~30–40% of WCAG criteria. Manual review is recommended for full conformance.

Full WCAG 2.1 AA compliance checklist — paste into a client deliverable or ticket

A+
Readability & Typography
Font sizes and tap targets checked
PASS
Font sizes and tap targets checked
A+
Third-Party Trackers
6 trackers detected
PASS
6 trackers detected
Info::
6 third-party trackers detected
Found 5 analytics, 0 advertising, 0 marketing, 1 tag manager trackers.
Got: 6 trackers
Regulatory Indicators
5 regulatory indicator(s) detected
INFO
5 regulatory indicator(s) detected
Info::
This is a technical scan, not a legal assessment
BeaverCheck detects technical indicators that may suggest regulatory relevance. This is not a compliance audit and should not be relied upon for legal decisions. Consult qualified legal counsel for compliance assessments.
Info::
GDPR indicators detected (strong confidence)
Indicators suggesting GDPR may be relevant: Consent management platform detected: cookiebot.com; Privacy policy page found. EU General Data Protection Regulation — governs collection and processing of personal data of EU residents.
Got: 2 indicators: Consent management platform detected: cookiebot.com, Privacy policy page found
Info::
CCPA indicators detected (strong confidence)
Indicators suggesting CCPA may be relevant: Text mentions: do not sell; Link URL pattern: /ccpa; Link text: CA: Do Not Sell My Personal Information. California Consumer Privacy Act — gives California residents rights over their personal data.
Got: 3 indicators: Text mentions: do not sell, Link URL pattern: /ccpa, Link text: CA: Do Not Sell My Personal Information
Info::
ADA indicators detected (moderate confidence)
Indicators suggesting ADA may be relevant: Accessibility link found: Accessibility. Americans with Disabilities Act / Section 508 — requires digital accessibility for people with disabilities.
Got: 1 indicators: Accessibility link found: Accessibility
Info::
PCI-DSS indicators detected (strong confidence)
Indicators suggesting PCI-DSS may be relevant: Payment processor detected: paypal.com; Payment processor detected: paypal.com; Payment processor detected: braintreegateway.com; Payment processor detected: paypal.com; Payment processor detected: braintreegateway.com; Payment processor detected: braintreegateway.com; Payment processor detected: braintreegateway.com; Payment processor detected: braintreegateway.com. Payment Card Industry Data Security Standard — applies to organizations handling credit card data.
Got: 8 indicators: Payment processor detected: paypal.com, Payment processor detected: paypal.com, Payment processor detected…
Info::
HIPAA indicators detected (weak confidence)
Indicators suggesting HIPAA may be relevant: Text mentions: phi. Health Insurance Portability and Accountability Act — protects sensitive patient health information.
Got: 1 indicators: Text mentions: phi

This is a technical scan, not a legal assessment.

BeaverCheck detects technical indicators that may suggest regulatory relevance. This should not be relied upon for legal decisions. Consult qualified legal counsel.

GDPR Strong

EU General Data Protection Regulation — governs collection and processing of personal data of EU residents.

Indicators detected

  • Consent management platform detected: cookiebot.com
  • Privacy policy page found
CCPA Strong

California Consumer Privacy Act — gives California residents rights over their personal data.

Indicators detected

  • Text mentions: do not sell
  • Link URL pattern: /ccpa
  • Link text: CA: Do Not Sell My Personal Information
ADA Moderate

Americans with Disabilities Act / Section 508 — requires digital accessibility for people with disabilities.

Indicators detected

  • Accessibility link found: Accessibility
PCI-DSS Strong

Payment Card Industry Data Security Standard — applies to organizations handling credit card data.

Indicators detected

  • Payment processor detected: paypal.com
  • Payment processor detected: paypal.com
  • Payment processor detected: braintreegateway.com
  • Payment processor detected: paypal.com
  • Payment processor detected: braintreegateway.com
  • Payment processor detected: braintreegateway.com
  • Payment processor detected: braintreegateway.com
  • Payment processor detected: braintreegateway.com
HIPAA Weak

Health Insurance Portability and Accountability Act — protects sensitive patient health information.

Indicators detected

  • Text mentions: phi
Third-Party Data Sharing
3 third-party service(s) detected
INFO
3 third-party service(s) detected
Info::
Data inventory for transparency purposes
This inventory identifies third-party services that receive data from your site visitors. Under regulations like GDPR (Article 30), maintaining records of data processing activities is commonly considered a best practice. This automated scan provides a starting point — it may not capture all data flows.
Info::
3 third-party services across 3 categories
3 third-party services detected across 3 categories: Analytics (1), Tag Management (1), Payment (1). Each of these services receives some user data from your site visitors.
Info::
Google Analytics (Analytics)
Detected via script URL. Typically collects: Page views, User behavior, Demographics, Device info, IP address. Privacy policy: https://policies.google.com/privacy. Data Processing Agreement available.
Got: Category: Analytics | Data types: Page views, User behavior, Demographics, Device info, IP address
Info::
Google Tag Manager (Tag Management)
Detected via script URL. Typically collects: Orchestrates other tracking scripts, Page views. Privacy policy: https://policies.google.com/privacy. Data Processing Agreement available.
Got: Category: Tag Management | Data types: Orchestrates other tracking scripts, Page views
Info::
PayPal (Payment)
Detected via script URL. Typically collects: Payment data, Transaction details, User identity. Privacy policy: https://www.paypal.com/us/legalhub/privacy-full. Data Processing Agreement available.
Got: Category: Payment | Data types: Payment data, Transaction details, User identity
Analytics (1)
Tag Management (1)
Payment (1)
Google Analytics Analytics
Detected by: script URL
Data typically collected:
Page viewsUser behaviorDemographicsDevice infoIP address
Privacy policy → DPA available ✓
Google Tag Manager Tag Management
Detected by: script URL
Data typically collected:
Orchestrates other tracking scriptsPage views
Privacy policy → DPA available ✓
PayPal Payment
Detected by: script URL
Data typically collected:
Payment dataTransaction detailsUser identity
Privacy policy → DPA available ✓

This inventory identifies services receiving visitor data.

Under regulations like GDPR Article 30, maintaining records of data processing is commonly considered a best practice. This scan provides a starting point.

Readability Scores
7940 words, Flesch-Kincaid grade 12.3
INFO

Readability Analysis (Flesch-Kincaid)

Grade Level

12.3

Grade 12 (college+)

Reading Ease

38

Difficult

Words

7940

Sentences

453

All checks on this page are automated. Results are estimates - run targeted manual reviews when the score affects a release decision.

Send Feedback