Didomi

VéRIFIé

Consentement cookies · France

Founded 2017 · didomi.io ↗

Paris-based enterprise CMP (founded 2017); ISO 27001, Google-certified CMP; clients include Volvo, Michelin, Yahoo.

Pourquoi ce score ?

Didomi (Paris FR, founded 2017) is ISO 27001 certified, Google-certified CMP, IAPP Bronze Member, enterprise customer base (Volvo / Yahoo / Michelin / Lacoste / Rakuten); funded primarily by EU + FR investors (Breega, Elaia, BPI France, Smartfin) with no identified US-PE majority — ownership_signal: eu_owned; score 4/5 capped because DPA + sub-processors not publicly surfaced.

SCORE: 4.0/5
CLOUD ACT
OWNERSHIP
SUB-PROCS: — not disclosed

JUMP TO

OVERVIEW

About Didomi

**Didomi** (Paris, France, founded 2017) is an enterprise-grade Consent Management Platform with a strong roster of European brands — **Volvo, Yahoo, Michelin, Lacoste, Rakuten**. ISO 27001 certified, Google Certified CMP partner, IAPP Bronze Member. The platform covers consent collection, **Preference Management**, **Privacy Request automation**, **Compliance Monitoring**, and **server-side tagging** — broader than pure cookie-banner vendors. Cap table is mostly European (Breega, Elaia, BPI France, Smartfin), no US PE majority identified at time of research. For French / European procurement buyers wanting an alternative to the Vista-controlled Usercentrics / Cookiebot stack, Didomi is the strongest enterprise CMP option in the catalogue.

SUB-PROCESSORS

Carte des sous-traitants · not disclosed

Vendor does not publish a sub-processors list. Schrems II compliance and CLOUD Act exposure cannot be independently verified without it.

CERTIFICATIONS

Référentiels & certifications

ISO/IEC 27001

ACTIVE

FEATURES

Matrice de fonctionnalités

INTEGRATION & ACCESS

REST API

SSO (SAML / OIDC)

COMPLIANCE & GOVERNANCE

Audit log

Self-host / on-prem option

PRICING

Tarifs & paliers

PAYANT

à partir de €19/mois

Voir la page tarifs ↗

PUBLIC DOCUMENTS

Documents publics

Vendor does not publish a public DPA. Without a publicly accessible Data Processing Addendum, small EU customers cannot self-serve the processor agreement — this caps the compliance score (see How we score).

Vendor does not publish a sub-processors list. Schrems II compliance and CLOUD Act exposure cannot be independently verified without it.

Data Processing Addendum (DPA)

— missing

missing
Sub-processors list

— missing

missing

ALTERNATIVES

Alternatives dans cette catégorie

ConsentManager

Germany

German-owned CMP with own EU data centres (not hyperscaler); ISO 27001, IAB TCF v2 ID 31, 100K+ websites, from €23/mo.

Iubenda

Italy

Italian privacy-compliance toolkit (Milan, est. 2010); 150K+ customers; subject to direction of Team.blue NV (Belgium).

Cookiebot

Denmark

Danish cookie consent (Cybot A/S, est. 2012); ISO 27001 + ISO 27701; acquired by Usercentrics 2022 (now Vista Equity-owned).

See all consentement cookies alternatives →