Third-party tracking Network egress AI integration audit Process gaps
15 MIN CONSULT

What to Expect

1. Discovery

We talk about your concerns, your goals, and which layers need investigation. 15 minutes complimentary discovery.

2. Investigation

We do the work auditing the website, capturing network traffic and walking through your process.

3. Report & Walkthrough

You receive a clear report of our findings, why it matters and what to do next. Then we walk through it together.

The Layers

Layer 1

The Website Application

Core principle: We observe what any publicly accessible website does when a visitor arrives. We document the third parties that receive data, pixels, tags, APIs, dataLayer pushes and AI model endpoints. We show you what data leaves the site and where it goes, including whether that data is being retained. The website may be yours, one you visit or one you are investigating. Either way, we observe what it does.

Who this is for: Website owners, journalists, competitors, regulators, or concerned users.

Tracking pixels · Third-party APIs · Hidden data flows · PII leakage to ad networks · CRMs · AI providers · Consent failures · Subdomain discovery.
AI integration audit ready

Layer 2

The Network

Core principle: We use your computer as the observation point to see what is happening on your network. We capture traffic but do not decrypt it. We analyze metadata DNS queries, TLS destinations, IP addresses, protocol types, and timing patterns. We inventory every device communicating on your network and document what data is moving.

Unexpected outbound connections · Beaconing patterns · Unencrypted credentials · Device inventory · VPN leak testing · Background telemetry you never see.
3‑phase advanced analysis (idle + VPN + active)

Layer 3

The Physical Process

Core principle: We examine how your people handle data; Identity verification, consent workflows, PII collection, and policy gaps. We document the decisions and procedures that create or prevent data leaks. We show you where the process succeeds, where it fails, and where trust is compromised.

Identity verification gaps · PII handling in workflows · Consent breakdowns · Policy vs. Reality · Stakeholder mapping · Behavioral observation (in‑person).
Virtual or In‑Person (3‑day on‑site)

Pricing

WEBSITE APPLICATION LAYER

We analyze what your website does when a visitor arrives. We document the third parties that receive data, tags, APIs, dataLayer pushes and AI
model endpoints. We show you what data leaves your site and where it goes, including whether that data is being retained.

Tier 1

$3,500
single domain · marketing pages

Includes:

  • Third-party integration inventory
  • Basic compliance gap identification
  • 1-2 page executive summary
  • Email support (post-delivery clarifications)
  • Complimentary subdomain discovery results shared, not audited
Best for: Single domain, marketing pages only (under 25 pages typical)

Tier 2

$7,500
full crawl · blog + API paths

Includes (everything in Tier 1 plus):

  • Full third-party integration inventory (detailed + purpose)
  • PII detection (email, name, phone, health data)
  • Data flow map (visual diagram)
  • Detailed compliance gap analysis (GDPR, CCPA, etc.)
  • Remediation roadmap (step-by-step instructions)
  • 1 hour walkthrough call
  • Complimentary subdomain discovery results shared, not audited
Best for: Single domain, full crawl (blog, app paths, API endpoints)

Tier 3

$12,500+
base price: primary domain only

Includes (everything in Tier 2 plus):

  • AI integration audit (provider inventory, memory layer detection, retention flags, secondary use)
  • Executive briefing (30 min presentation for leadership)
  • Technical Evidence Package: timestamped PCAPs, screenshots with metadata, chain of custody, compliance mapping ready for legal counsel
  • 2-hour walkthrough call (deep technical review)
  • Complimentary subdomain discovery results guide final pricing

📌 Subdomain discovery → final price

Primary domain only (no subdomains)$12,500
Primary domain + 1–5 subdomains$15,000
Primary domain + 6–15 subdomains$22,000
16+ subdomains or complex enterpriseCustom quote / retainer ($25k+)

How subdomain discovery works (complimentary, no hidden fees)

Before any engagement, We run industry-standard reconnaissance to identify subdomains associated with your domain. We share the full results with you. For Tier 1 & Tier 2: subdomains are listed in the report but not audited (great for awareness or future audit). For Tier 3: discovered subdomains determine the final price using the table above. You approve all scope before work starts. No surprises, no fine print.

✔ 16+ subdomains or complex enterprise environments require a tailored conversation (retainer or custom engagement).

NETWORK LAYER

We use your computer as the observation point to see what is happening on your network. We capture traffic but do not decrypt it. We analyze metadata, DNS queries, TLS destinations, IP addresses, protocol types and timing patterns. This reveals where data is going and how much is being sent, without accessing the contents of encrypted communications. We inventory visible devices communicating on your network and document what data is moving.

Baseline

$4,200
2 hours · idle only
VPN choice: on or off (you decide)

Includes:

  • 30-min guided setup (installation, interface selection, test run, Q&A)
  • Network traffic capture (raw PCAP file available upon request)
  • DNS queries, TLS destinations, IP addresses
  • Network device inventory (MAC address, manufacturer, first seen, last seen)
  • Port scan of test device (open ports, services, versions, non‑standard flagging)
  • Summary report of all external destinations
  • Basic anomaly flagging (unusual ports, high‑frequency requests)
  • Environment notes (OS, network type, capture duration)

📌Guided setup & support
30 min included. If total guidance exceeds 60 min (including initial session), additional time billed at $150/hour. You will be notified before any extra charges apply.

Standard

$8,500
12 hours · normal workday
VPN choice: on or off (you decide)

Includes everything in Baseline, plus:

  • Device naming (friendly names from MDNS, hostnames from DHCP/NetBIOS, manufacturer names)
  • Beaconing analysis (periodic connections — every X seconds/minutes/hours)
  • Timeline of all connections (chronological view)
  • Traffic volume analysis by destination (how much data sent to each external destination)
  • Anomaly detection across full capture window (unusual patterns)
  • Detailed recommendations
  • Extended report with raw data export (upon request — PCAP + CSVs)
  • 1 hour walkthrough call (findings review & recommendations)

📌Guided setup & support
60 min included. If total guidance exceeds 60 min, additional time billed at $150/hour. You will be notified before any extra charges apply.

Advanced

$14,000
~24 hours · four‑phase comparison
Tests both: no VPN & with VPN (idle + active)

Includes everything in Standard, plus:

  • Four‑test comparative analysis (idle, idle+VPN, browsing, browsing+VPN)
  • VPN leak detection (DNS leaks, WebRTC, IPv6, split tunneling across all phases)
  • Comparative findings matrix (what changes when VPN is on/off, what persists regardless)
  • Risk assessment by scenario (expected vs. concerning behaviors in each phase)
  • 2-hour walkthrough call (deep technical review of all four tests)

Phases run consecutively (~6 hrs each): idle no VPN → idle+VPN → browsing no VPN → browsing+VPN. You receive simple instructions before each phase.

📌Guided setup & support
If total guidance exceeds 60 min, additional time billed at $150/hour. You will be notified before any extra charges apply.

How the investigation works (self‑capture, no remote access)

You remain in full control. We do not remotely access your computer. Instead, We walk you through installing application and running a test capture during a 60‑minute live session. You capture the traffic yourself. You send us the capture file via secure transfer. This maintains chain of custody and keeps your environment private.

For Baseline & Standard: You choose whether to run the test with your VPN on or off. For Advanced: We guide you through four consecutive phases (idle, idle+VPN, browsing, browsing+VPN) — you’ll see exactly what changes when the VPN is active.

If your setup requires more than 60 minutes of total guidance, follow‑up sessions are billed at $150/hour. You will always confirm before any additional time is incurred.

PHYSICAL PROCESS LAYER

We examine how your people handle data, identity verification, consent workflows, PII collection and policy gaps. We document the decisions and procedures that create or prevent data leaks. We show you where the process succeeds, where it fails, and where trust is compromised.

Virtual Process Audit

Remote interviews, document review and process mapping; Policy gaps and documentation failures.

Virtual Basic

$3,200
one process · remote
attestation evidence

Includes:

  • Process map (visual diagram)
  • Up to 3 interviews (video conference)
  • Up to 5 documents reviewed
  • Findings summary
  • Recommendations

Virtual Comprehensive

$7,500
multiple processes · remote
attestation + roadmap

Includes:

  • Process map (visual diagram)
  • Up to 10 interviews
  • Document review within scope
  • Stakeholder mapping (who touches what data)
  • Gap analysis (missing controls or failure points)
  • Prioritized recommendations
  • Risk matrix (likelihood vs. impact)
  • Implementation roadmap (step‑by‑step with timelines)
  • 1 hour walkthrough call

In‑Person Process Audit

On‑site observation, physical document handling and direct behavioral evidence; Gaps between policy.

Premium In‑Person

$18,500
3 days on‑site · up to 3 locations (≤50 mile radius)
direct observation · admissible evidence

Includes everything in Virtual Comprehensive, plus:

  • On‑site observation of staff performing processes (3 days)
  • Physical document handling review
  • In‑person interviews (within scope)
  • Multi‑location coordination (up to 3 locations within 50 miles of primary site)
  • Extended on‑site presence for complex workflows
  • Direct observation of handoffs between desks and teams
  • Verbal authorization tracking (what is said vs. documented)
  • 2‑hour walkthrough call (deep review of findings)
All‑inclusive — travel, lodging, meals, local transport included.

LET'S TALK

Contact

Email: consult@mindyourtechinbusiness.com

Signal: Available upon request

Inquiry Templates

Use these templates to start the conversation.

Mind Your Tech In Business

© 2025