Websites do not only process personal data like IP addresses, but ask their visitors to leave e-mail addresses, names, birth dates or sometimes even more sensitive information. Due to EU-GDPR and related legislation, organisations need to document all aspects of such data processing. Nimbusec Compliance Monitor provides a starting point for this documentation based on publicly visible websites.