Bird

The provider exhibits significant compliance risks (overall score 0.81), primarily due to inadequate handling of automated decision-making under the EU AI Act and GDPR, including missing disclosures for profiling and human intervention. Additional vulnerabilities include unclear legitimate interest assessments, insufficient data portability mechanisms, and incomplete cookie consent logging. While the provider demonstrates strong adherence in areas like encryption, international transfers, and children's data, critical gaps in transparency, user control, and technical documentation pose compliance risks under GDPR, ePrivacy Directive, and emerging AI regulations.