Tools by Lunar Turtle
Back to hub

Privacy Signal

Add a client-side privacy widget and website tracker scanner that surfaces scripts, analytics globals, third-party embeds, and referrer policy in the visitor browser.

Runs in the visitor's browser. No data is collected or transmitted.

Install in under a minute

  1. Add one script before </body> on any page.
  2. Choose your widget position, color, and theme from the generator below.
  3. The floating privacy widget opens a client-side privacy signal report for each visitor.

What it detects

This website tracker scanner checks analytics script sources, common tracking globals, third-party iframes, and referrer policy visible in the current page.

What it does not detect

It does not inspect server-side tracking, dynamically injected scripts after scan time, or network paths hidden behind backend proxies.

Privacy-first and CSP-aware

Privacy Signal runs entirely in the visitor browser and sends no scan data anywhere. If Content Security Policy (CSP) blocks some endpoints, use the FAQ guidance below to allow the Privacy Signal script source and required inline styles.

Configure your privacy widget

Set placement and styling, then copy the generated embed snippet.

Auto follows the visitor's system preference.

Paste this before the closing </body> tag on any page.

Embed code

<script src="https://tools.lunarturtle.com/embed/privacy-signal.min.js" async></script>

Open live demo page · See how detection works

Common questions

Quick answers before you use this tool.

Runs in the visitor's browser. No data is collected or transmitted.
No account is required. Open the tool and use it right away.
No. The script loads asynchronously and runs after the page is ready. It has no external dependencies and makes no network requests.
No. It is a client-side heuristic scan that checks script sources and analytics globals present at page-load time. Dynamically injected scripts, server-set cookies, and network-level tracking are outside its scope.
No. The privacy widget surfaces detectable signals as a transparency aid. It does not provide legal compliance status or certifications of any kind.
If you are using a CSP, allow the embed source and inline styles used by the widget: script-src https://tools.lunarturtle.com; and style-src 'unsafe-inline';.