Article

Cookiebot vs Termly vs iubenda for Cookie Consent on Spiritual Business Sites

iubenda Essentials $5.99/mo. Termly Starter $10/mo includes privacy policy. Cookiebot doubled to $30/mo in 2025. GDPR cookie consent for practitioners.

You added Google Analytics to your site two years ago and forgot about it. Now someone tells you that you're probably violating GDPR, and you need a cookie consent banner. Or a client from Germany asks whether you're GDPR compliant. Or you just noticed that other practitioners have a cookie popup and yours doesn't.

Here's the actual situation: if you have EU or UK visitors and you're running Google Analytics, Facebook Pixel, or any other tracking technology, you need to obtain consent before those scripts fire. A generic banner that just says "We use cookies" and buries an OK button doesn't meet the standard - you need a real consent mechanism with the option to decline.

The tools that handle this correctly - and what they actually cost - are what this article is about.

All pricing from official sources as of June 2026.

What You Actually Need (and What You Don't)

If your audience is primarily US-based and you have no EU or UK visitors, the GDPR consent requirement doesn't apply to you. You still have state-level US obligations (CCPA in California requires opt-out rather than opt-in), but these are less demanding. In that case, a simple Notice-and-Opt-Out approach works, and a free tool may be entirely sufficient.

If you have EU/UK visitors - even occasionally, even a small fraction - the stricter GDPR standard applies. This means: consent before cookies load, genuine ability to decline non-essential cookies, and a logged record that the consent happened. "They'll never know" isn't a compliance strategy; it's a risk tolerance decision.

Cookiebot: High Power, High Price After 2025 Hike

Cookiebot was the premium standard for a long time. Then in August 2025, they doubled pricing without warning. Users were automatically moved to higher-priced tiers. What used to cost roughly €15/domain/month now starts at €30/domain/month.

For a practitioner with a single website and modest traffic, €30/month ($33+) for a cookie banner is excessive. Cookiebot earns its keep for organizations managing multiple domains with complex tech stacks and compliance requirements. For a solo spiritual business, it's simply too expensive.

The free tier is available only for sites with fewer than 500 subpages. For a typical practitioner site with a home page, services page, blog, and a few more pages, the free tier would technically apply - but it's a single domain, and the upgrade path is expensive when you do hit limits.

Source: enzuzo.com/blog/best-cookiebot-alternatives (2026); bizbot.com cookie consent review (2026)

Termly: Best If You're Missing Legal Documents

Termly's practical advantage isn't just the cookie banner - it's that Termly includes generators for your privacy policy, terms and conditions, cookie policy, and disclaimers all in the same subscription.

Many practitioners running legitimate practices have no formal privacy policy on their site. This is a separate legal risk from the cookie consent issue. If you collect email addresses, take bookings, or process any client data, you need a privacy policy. Termly Starter at $10/month (or $120/year) gives you both the compliant cookie banner and the policy documents in one place.

Termly Starter at $10/month (annual billing at $120/year) includes cookie consent with auto-scan, consent logging, and all the policy generators. The free tier has a limited consent banner with no logging.

If you already have a lawyer-drafted privacy policy and just need the consent mechanism, Termly's bundled value matters less.

Source: enzuzo.com/blog/best-cookie-consent-software (2026)

iubenda: Best Value for Cookie Consent Alone

iubenda covers the full GDPR requirement - cookie banner with genuine accept/reject options, consent logging (required for GDPR compliance, not just nice to have), auto-scan of your site for cookies, privacy policy generation, and accessibility statement.

Essentials plan starts at $5.99/site/month (billed annually) for sites up to 25,000 pageviews/month. For most practitioners - a personal practice site with a blog and booking page - this is well within that limit. Annual cost: $71.88.

Advanced at $24.99/site/year covers up to 50,000 pageviews. This is the right tier if your site gets meaningful organic traffic from blog content or SEO.

The price comparison makes iubenda hard to argue with for the core use case. It does what a spiritual business website needs at roughly half the cost of Termly and a fraction of Cookiebot's current pricing.

Source: iubenda.com/en/iubenda-vs-cookiebot/ (iubenda official, 2026)

CookieYes: Free Option Worth Knowing

CookieYes isn't in the main comparison but deserves mention: their free plan covers up to 100 URLs with a basic consent banner. No consent logging on the free tier, which means it doesn't satisfy GDPR's documentation requirement, but it gives you the visible mechanism.

For practitioners with a very small site and primarily US traffic who want something visible on their site quickly without spending money, CookieYes Free is a starting point. Don't treat it as GDPR-compliant if you have EU visitors - the missing consent log is the problem.

CookieYes Basic at $10/month adds consent logging and scales to 10,000 pageviews. At that price point it competes directly with iubenda Essentials.

Source: enzuzo.com/blog/cookieyes-alternatives (2026)

Cost Comparison

Tool

Entry price

Consent logging

Privacy policy

Auto-scan

iubenda Essentials

$5.99/month

Yes

Yes (generated)

Yes

Termly Starter

$10/month

Yes

Yes (generator)

Yes

CookieYes Free

$0

No

No

Limited

CookieYes Basic

$10/month

Yes

No

Yes

Cookiebot

~€30/month

Yes

No

Yes

The Risk Math

GDPR fines for violations start at lower thresholds than most people think - complaints from a single EU visitor can trigger an investigation. Documented enforcement against small businesses for cookie consent failures has produced fines in the thousands of euros range for straightforward violations.

`cost_of_compliance = $5.99/month = $71.88/year`

`minimum_realistic_fine_risk = several thousand EUR`

The math isn't close. The $72/year iubenda plan is the insurance premium.

For the broader cookie consent compliance picture on a spiritual business site, see the GDPR cookie consent guide for spiritual businesses. For handling client data more generally, see protecting client data in readings. For the legal disclaimers that should accompany your readings and services, see legal disclaimers for readings.

Which Should You Choose

EU/UK visitors, need the lowest cost GDPR-compliant solution: iubenda Essentials at $5.99/month. Consent logging included, auto-scan included, privacy policy generator included.

No formal privacy policy or T&C yet, want to fix both at once: Termly Starter at $10/month. The bundled document generators are the reason to pay the extra $4/month.

Primarily US audience, just want something visible on the site: CookieYes Free to start. Understand it lacks consent logging if you later get EU visitors.

Running a multi-site or agency operation: Cookiebot scales appropriately but at €30+/domain/month - only makes sense at scale.

Frequently Asked Questions

My site only has US visitors. Do I still need a cookie consent banner?

US federal law doesn't require opt-in cookie consent the way GDPR does. California's CCPA requires opt-out (not opt-in) for data sales. If you have zero EU/UK traffic and no plans for a European audience, the GDPR consent requirement technically doesn't apply. However, adding a banner is low cost and future-proofs your site if your audience grows internationally.

Does adding a consent banner hurt my Google Analytics data?

Yes, some visitors will decline non-essential cookies, which means their sessions won't be tracked by Google Analytics. This is expected and required under GDPR - compliant data is smaller but accurate. The alternative (tracking without consent) creates legal risk that outweighs the data completeness problem.

Is the free tier of iubenda or Termly ever enough?

Termly's free tier includes a limited consent banner but no consent logging. iubenda's entry point requires a paid plan for the consent solution. For actual GDPR compliance with EU visitors, you need a paid plan from either provider. The free tiers are for testing the interface.

What's a consent log and why does it matter?

A consent log is a record of who consented to what, and when. GDPR requires you to be able to demonstrate that a specific visitor gave consent on a specific date for specific cookie categories. Without a log, you have a banner but no proof. In any enforcement situation, the log is what protects you.

Do I need a separate cookie policy document?

Technically, the cookie information can be part of your privacy policy. Practically, having a standalone cookie policy that lists each cookie, its purpose, and its duration is cleaner and easier to maintain as your tech stack changes. Both Termly and iubenda generate this document automatically as part of their scans.