What is Google Consent Mode v2?

Google Consent Mode v2 is an API that lets you adjust how Google tags behave based on user consent choices. When a user declines cookies, Consent Mode allows Google Analytics and Google Ads tags to fire in a cookieless, data-minimized mode — preserving some measurement signal while respecting user preferences. v2 adds two new parameters: ad_user_data and ad_personalization.

How does a broken consent setup cause data loss?

If your consent management platform (CMP) is not correctly integrated with GTM and your analytics tags, tags may fire before consent is granted (a compliance risk), or they may never fire even when consent is given (causing data loss). Many businesses lose 20–50% of their analytics data silently due to misconfigured consent logic.

Do I need a CMP if I'm not in the EU?

Even outside the EU, consent management is increasingly important. CCPA in California, LGPD in Brazil, and other regional privacy laws require some form of consent or opt-out mechanism. Additionally, Google's EU User Consent Policy (required for Google Ads) now applies to all advertisers serving EU traffic regardless of where they're headquartered.

Which consent management platforms do you support?

We work with all major CMPs including Cookiebot (Usercentrics), OneTrust, Consent Manager, Axeptio, CookieYes, and Didomi — as well as custom consent implementations. We can help you select the right CMP for your business and integrate it correctly with GTM and Google Consent Mode.

Strategic Service

Consent Management — GDPR, CCPA & U.S. State Privacy Law Compliance

A misconfigured cookie consent setup can silently wipe out 20–50% of your analytics and ad conversion data — while leaving you exposed to GDPR, CCPA/CPRA, Virginia's VCDPA, Utah's UCPA, New Jersey's NJDPA, and growing U.S. state privacy enforcement. We fix both problems at once.

Fix My Consent Setup All Services

Here's The Numbers

$1B+ USD

Privacy Fines Issued in 2025

Regulators on both sides of the Atlantic are done issuing warnings. GDPR enforcement actions exceed €300M and U.S. state attorneys general are actively pursuing violations under CCPA, VCDPA, and beyond.

20+

U.S. States With Active Privacy Laws

California (CCPA/CPRA), Virginia (VCDPA), Utah (UCPA), New Jersey (NJDPA) — and more states finalizing legislation every quarter. Your consent setup needs to keep pace.

Countless

Consent Setups Break Tracking

Reactive cookie banner deployments block tags indiscriminately — silently killing analytics data and ad signal while teams assume everything is working fine.

Service Scope

What's Included in Consent Management Services

CMP Selection & Setup

Help choosing the right Consent Management Platform for your business, then full configuration and integration with your site.

Google Consent Mode v2 Implementation

Correct implementation of Consent Mode v2 via GTM — including all four consent parameters and proper default/update state management.

GTM Consent State Integration

Wire your CMP to GTM so tags correctly fire or hold based on real-time user consent choices — preventing both data loss and compliance violations.

GA4 Consent Mode Configuration

Configure GA4 to use modeling for users who decline consent, preserving analytical signals while respecting privacy preferences.

Consent Audit & Data Loss Assessment

Audit your existing consent configuration to identify silent data loss, non-compliant tag firing, and gaps in consent coverage.

Cookie Scanning & Categorization

Scan your site to identify all cookies being set, categorize them by purpose, and ensure your CMP banner reflects accurate cookie usage.

U.S. & Global Privacy Regulation Alignment

Review your consent setup against GDPR, ePrivacy, California's CCPA/CPRA, Virginia's VCDPA, Utah's UCPA, New Jersey's NJDPA, and other applicable privacy requirements — with actionable remediation guidance.

Consent Mode Testing & Validation

Test and validate that consent signals are correctly flowing from your CMP to GTM to GA4 and Google Ads — in all consent states.

U.S. Privacy Law

State Privacy Laws That Affect Your Tracking

You don't need to serve EU users to need a consent strategy. These U.S. laws are in effect now — and carry real enforcement teeth.

🌴

California — CCPA/CPRA

The most comprehensive U.S. privacy law. Grants consumers the right to know, delete, and opt out of the sale or sharing of personal data. Enforcement by the California Privacy Protection Agency (CPPA) is active.

🏛️

Virginia — VCDPA

The Virginia Consumer Data Protection Act requires opt-out rights for targeted advertising and data sales, with the Attorney General handling enforcement. Applies to businesses meeting volume thresholds.

⛰️

Utah — UCPA

The Utah Consumer Privacy Act gives residents the right to opt out of targeted advertising and the sale of personal data. One of the more business-friendly frameworks, but enforcement is real.

🗽

New Jersey — NJDPA

New Jersey's Data Privacy Act took effect January 2025, requiring opt-out mechanisms for data sales, targeted advertising, and profiling — with no cure period for violations.

Texas, Colorado, Connecticut, Montana, Oregon and more are also in effect. A properly configured CMP handles opt-out signals across all of them.

FAQ

Consent Management — Frequently Asked Questions

Google Consent Mode v2 is an API that adjusts how Google tags behave based on user consent. When users decline cookies, it allows Analytics and Ads tags to fire in a cookieless mode — preserving aggregated measurement signals while respecting privacy. v2 adds ad_user_data and ad_personalization parameters required for EU advertisers since March 2024.

If your CMP isn't correctly integrated with GTM, analytics tags may be blocked even when users consent — or may fire before consent is given. Either way results in data problems: lost analytics data in the first case, or a compliance violation in the second. Most broken setups silently lose 20–50% of trackable events.

Yes — U.S.-based businesses increasingly need consent infrastructure too. California's CCPA/CPRA gives consumers the right to opt out of data sales and sharing. Virginia's VCDPA, Utah's UCPA, and New Jersey's NJDPA each carry similar requirements with their own enforcement mechanisms. If your site receives traffic from any of these states, you have compliance obligations. Google also requires Consent Mode for all advertisers serving EU traffic, regardless of where your business is headquartered.

We work with Cookiebot/Usercentrics, OneTrust, Consent Manager, CookieYes, Didomi, Axeptio, and custom implementations. We can help you select the right platform for your site and budget, then handle the full integration with GTM and Google Consent Mode.

Related Services

You Might Also Need

☁️