EU CAPTCHA for JavaScript

Frequently Asked Questions

• How do I add EU CAPTCHA to a plain HTML and JavaScript website?

  Add a <script> tag loading verify.js to your HTML page's <head>. Place <div class="eu-captcha" data-sitekey="YOUR_SITEKEY"></div> inside your form element. On form submission, the widget automatically includes the eu-captcha-response token in standard form POST requests, or you can read it manually for AJAX submissions. Your server validates the token against the EU CAPTCHA API.

• Does EU CAPTCHA work without any JavaScript framework?

  Yes. EU CAPTCHA is designed to work with plain HTML and vanilla JavaScript. No npm packages, bundlers, or frameworks are required. A single script tag and a div element are all you need to protect any web form, making it the simplest possible integration path for static HTML sites and server-rendered applications.

• How do I prevent form submission until EU CAPTCHA verification completes?

  EU CAPTCHA runs its background verification automatically when the page loads. By the time a user fills in and submits a form, verification is typically already complete. To enforce this in your submit handler, check that the eu-captcha-response hidden input is present and non-empty before allowing the request to proceed.

• Can EU CAPTCHA be used on a multi-page website with separate HTML files?

  Yes. Add the verify.js script tag and widget div to each page that contains a form you want to protect. Each page initialises its own widget instance independently. You can use the same sitekey across all pages on the same domain, and each submission includes its own eu-captcha-response token for individual server-side verification.

• Can I use EU CAPTCHA with AJAX form submissions?

  Yes. When submitting a form via fetch or XMLHttpRequest, read the eu-captcha-response value from the hidden input the widget creates — document.querySelector('input[name="eu-captcha-response"]')?.value — and include it in your request payload. Your server validates the token with the EU CAPTCHA API before processing the data.

• Can I customise the EU CAPTCHA widget appearance?

  Yes. Use the data-theme attribute ("light" or "dark"), data-width, and data-height on the widget div to adjust its visual properties. For a fully invisible experience, set data-autostart="true" and the widget will complete the challenge silently in the background without displaying any UI element to the user.

• Is EU CAPTCHA GDPR compliant for standard HTML websites?

  Yes. EU CAPTCHA is operated by an EU-based company, is hosted entirely in Germany, and does not rely on US cloud providers or infrastructure subject to US surveillance laws. The service processes only the data necessary to provide and verify the CAPTCHA (such as IP address and technical browser or device information) in line with the requirements of the GDPR. Your organization remains responsible for providing transparent privacy information, selecting an appropriate legal basis, and obtaining any required consent for your specific implementation. This information does not constitute legal advice; please consult your legal counsel for an assessment of your individual case.