Magyarországon a Google Tag Manager gyakran az a hely, ahol az analitika, hirdetési tagek, pixelek és e-kereskedelmi események találkoznak. Ezért a hozzájárulási hibák gyorsan láthatóvá válnak. A Google Consent Mode v2-nek a CMP-ben megadott látogatói döntést kell követnie, nem helyettesítenie azt. This guide explains a practical setup for Google Consent Mode v2 a Google Tag Managerben in Magyarország: what should live in the CMP, what should live in GTM, how to test consent states and how CookiePilot can support a maintainable implementation.
If you need the broader business context first, read the related guide to Google Consent Mode v2. For the consent layer itself, review the GDPR cookie banner guide and the practical page for CookiePilot features.
Miért fontos a GTM beállítás
GTM is convenient because marketers can add tags without a code deployment, but that convenience also creates risk. A new GA4 event, Google Ads conversion, Meta pixel, Hotjar script or embedded media trigger can bypass the consent logic if nobody checks it. The safer model is to treat GTM as a controlled execution layer: it receives consent state, respects default denied settings and fires optional tags only after the visitor choice allows it.
For teams in Magyarország, this is both a privacy and measurement issue. A broken setup can overfire tags before consent, underfire legitimate conversions after consent, or send mixed signals to Google platforms. Consent Mode v2 helps Google tags adapt behavior, but it does not remove the need for a clear banner, documented categories and a repeatable testing process.
Ajánlott hozzájárulási architektúra
| Layer | Responsibility | Practical note |
|---|---|---|
| CMP | collects and stores the visitor choice | CookiePilot should be the source of truth for category choices and consent records |
| Website code | loads the CMP early | the default state should be denied for optional storage until consent changes |
| GTM | fires tags based on consent | triggers should check consent before analytics and marketing tags run |
| Google tags | receive Consent Mode v2 signals | use ad_storage, analytics_storage, ad_user_data, ad_personalization according to the visitor choice |
| QA process | proves the setup works | test reject, partial consent and accept all after every tag change |
A good architecture is boring in a positive way: CMP first, default denied state, GTM listens to consent updates, optional tags wait, and every release has a short QA checklist. See pricing if you need to compare the cost of this workflow against more complex CMP stacks, or Cookiebot alternative if you are replacing an expensive provider.
GTM ellenőrzőlista lépésről lépésre
-
Confirm the cmp loads before optional tags. Keep this step visible in the implementation notes. The point is not to create a perfect legal memo, but to make sure marketing, developers and the site owner can repeat the check after the next campaign or plugin update.
-
Set default denied consent for analytics and advertising storage. Keep this step visible in the implementation notes. The point is not to create a perfect legal memo, but to make sure marketing, developers and the site owner can repeat the check after the next campaign or plugin update.
-
Map cmp categories to gtm consent categories. Keep this step visible in the implementation notes. The point is not to create a perfect legal memo, but to make sure marketing, developers and the site owner can repeat the check after the next campaign or plugin update.
-
Separate necessary tags from analytics and marketing tags. Keep this step visible in the implementation notes. The point is not to create a perfect legal memo, but to make sure marketing, developers and the site owner can repeat the check after the next campaign or plugin update.
-
Update ga4 and google ads tags to respect consent mode v2. Keep this step visible in the implementation notes. The point is not to create a perfect legal memo, but to make sure marketing, developers and the site owner can repeat the check after the next campaign or plugin update.
-
Avoid custom html tags that ignore consent. Keep this step visible in the implementation notes. The point is not to create a perfect legal memo, but to make sure marketing, developers and the site owner can repeat the check after the next campaign or plugin update.
-
Test with gtm preview and a clean browser profile. Keep this step visible in the implementation notes. The point is not to create a perfect legal memo, but to make sure marketing, developers and the site owner can repeat the check after the next campaign or plugin update.
-
Document the final trigger logic. Keep this step visible in the implementation notes. The point is not to create a perfect legal memo, but to make sure marketing, developers and the site owner can repeat the check after the next campaign or plugin update.
Hogyan tesztelje a consent állapotokat
| Test | Expected result | Where to check |
|---|---|---|
| Reject all | analytics and marketing tags should not behave as granted | network requests, GTM Preview, Google Tag Assistant |
| Analytics only | analytics signals may follow the analytics choice while ad signals remain denied | GA4 debug, consent state variables |
| Accept all | Google tags receive granted states and conversion tags can fire | Tag Assistant and conversion diagnostics |
| Change preferences | the new state should update without stale triggers | CMP preference center and browser storage |
| New campaign tag | new tags should inherit consent checks before publication | GTM workspace review |
Use Google’s official documentation as the technical reference: Google Consent Mode. The result should be checked in a real browser, not only in a spreadsheet. If the setup is complex, use contact to ask for an implementation review.
Helyi jogi kontextus
In Magyarország, Consent Mode work should be framed carefully. It helps transmit consent signals to Google services, but it is not a legal guarantee and does not replace GDPR or ePrivacy analysis. Review local guidance from NAIH and, where relevant, electronic communications context from NMHH. EU-wide materials from the EDPB and the European Commission GDPR page are useful background.
The practical rule is simple: optional analytics or advertising behavior should follow a clear visitor choice. CookiePilot can help by providing a localized consent UI, consent categories and records, while GTM should remain the execution layer. If you are still deciding whether a banner is needed, start with do I need a cookie banner?.
Gyakori hibák
-
Loading ga4 before the cmp has set the default state. This usually creates a gap between what the banner says and what the browser does. Fix it with a short release checklist, CMP event review and GTM Preview before publication.
-
Firing google ads conversions from a custom trigger that ignores consent. This usually creates a gap between what the banner says and what the browser does. Fix it with a short release checklist, CMP event review and GTM Preview before publication.
-
Assuming consent mode v2 is the same as legal consent. This usually creates a gap between what the banner says and what the browser does. Fix it with a short release checklist, CMP event review and GTM Preview before publication.
-
Forgetting to test reject and partial consent paths. This usually creates a gap between what the banner says and what the browser does. Fix it with a short release checklist, CMP event review and GTM Preview before publication.
-
Adding meta, tiktok or affiliate pixels outside gtm without review. This usually creates a gap between what the banner says and what the browser does. Fix it with a short release checklist, CMP event review and GTM Preview before publication.
-
Translating the banner labels but leaving preference details unclear. This usually creates a gap between what the banner says and what the browser does. Fix it with a short release checklist, CMP event review and GTM Preview before publication.
-
Not documenting who owns the gtm workspace after launch. This usually creates a gap between what the banner says and what the browser does. Fix it with a short release checklist, CMP event review and GTM Preview before publication.
FAQ
Does Consent Mode v2 replace a cookie banner?
No. It communicates consent state to Google tags. The CMP and banner still collect, store and expose the visitor choice.
Which consent signals matter most?
For Google advertising and analytics, check ad_storage, analytics_storage, ad_user_data and ad_personalization. The exact mapping should follow your categories.
Can GTM load before consent?
GTM can load, but optional tags inside it should respect default denied consent and wait until the visitor choice allows them.
How often should we test?
Test after every new tag, GTM workspace publish, CMP change, site redesign, ecommerce plugin update or advertising campaign change.
Is CookiePilot suitable for GTM setups?
Yes, CookiePilot is designed to support practical consent workflows, localized banners, consent records and Google Consent Mode v2 implementation for small teams and agencies.
Következő lépés
Start with a tag inventory, then connect the CMP decision to GTM and test the three core paths: reject, partial consent and accept all. CookiePilot is a practical option if you want a maintainable CMP with localized consent UI, Consent Mode v2 support and predictable pricing. Review features, compare pricing, read the Cookiebot alternative page or use contact for implementation questions.
Írta
Marcin
Zespół CookiePilot dzieli się wiedzą o RODO, PKE i zarządzaniu cookies.
