What is EU CAPTCHA?

Myra EU CAPTCHA is a privacy-first bot protection service for websites and APIs, developed and operated by Myra Security GmbH in Munich, Germany.

How it works

When a visitor submits a form on your website, EU CAPTCHA runs a challenge automatically in the background. The challenge uses cryptographic calculations and browser fingerprinting to determine whether the request comes from a human or a bot. The visitor sees only a small Myra logo — no puzzles, no image selection, no user interaction required.

If the challenge passes, the CAPTCHA issues a token. Your server verifies this token via the EU CAPTCHA API before accepting the form submission. Requests that fail the challenge are blocked before they reach your application.

Key capabilities

Capability	Description
Bot protection	Advanced fingerprinting detects automated traffic without user interaction
Spam & credential stuffing prevention	Protects login forms, registration forms, and any other input
GDPR-compliant	No cookies, no persistent browser storage, no personal data collected — operated entirely within EU infrastructure
No DNS changes	Integrates as a JavaScript snippet; your DNS and infrastructure stay unchanged
Intelligent risk detection	Adaptive difficulty automatically responds to suspicious behaviour patterns
Dark mode support	Widget appearance adapts to your site's colour scheme
Full API support	All sitekey and statistics operations are available via REST API
Dedicated dashboard	View statistics, manage sitekeys, and configure permissions in the web UI

Privacy & compliance

EU CAPTCHA is designed to comply with European data protection requirements:

• No cookies are set by the CAPTCHA widget
• No data is stored persistently in the user's browser
• No personal information (name, email, etc.) is collected or required for verification
• Operated entirely within EU infrastructure

Because the widget sets no cookies, you do not need to add EU CAPTCHA to your cookie consent banner.

Architecture overview

Browser                    Your server              EU CAPTCHA API
  │                             │                        │
  │  1. Load your page          │                        │
  │  2. CAPTCHA script runs     │                        │
  │     challenge in bg         │                        │
  │  3. Submit form + token ──► │                        │
  │                             │  4. Verify token ────► │
  │                             │ ◄──── 5. Valid/Invalid  │
  │                             │  6. Accept / Reject     │
  │ ◄── 7. Response             │                        │

Next steps

• Quick Start Guide — integrate EU CAPTCHA in three steps
• Account Registration — create your account and get a sitekey
• HTML Integration — technical integration reference
• Caddy Middleware — Caddy HTTP handler that challenges every visitor with EU CAPTCHA
• Traefik Plugin — protect services behind Traefik with CrowdSec and EU CAPTCHA
• CrowdSec Bouncer — standalone reverse proxy for CrowdSec-based bot protection