The General Data Protection Regulation (GDPR) is a mandatory legal framework for any publisher with visitors from the European Union (EU) and European Economic Area (EEA). To facilitate compliance without compromising ad revenue, Ezoic provides a Google-certified Consent Management solution. Built on the IAB Transparency and Consent Framework (TCF) v2.2, this system ensures that user permissions are accurately communicated to advertising demand partners in real-time.

Disclaimer: This article is for informational purposes only and does not constitute legal advice. Publishers should consult with legal counsel regarding their specific data collection requirements.

Ezoic’s Consent Management feature acts as a bridge between your visitors and the various ad tech vendors bidding on your inventory. For sites integrated via JavaScript (not via WordPress), this requires a manual placement of a header script to initialize the Consent Management Platform (CMP).

Technical Mechanics:

• The Consent String: When a user selects "Agree," the system generates an encoded string that informs bidders exactly which data processing activities are authorized.

• TCF v2.2 Standard: This version removes "Legitimate Interest" as a legal basis for specific data processing, making explicit user consent critical for maintaining high-value programmatic demand.

• Consent Data Dashboard: Publishers can monitor their Personalised Ads Rate and Consent Decisions Overview in real-time to track how many users are opting in vs. opting out.

Steps

1A. Manual Header Script Implementation

For JavaScript integrated sites, you must place the following script in the <head> section of your website’s HTML. This script should be placed as high as possible to ensure the CMP initializes before any ad-related scripts. 

<script data-cfasync="false" src="https://cmp.gatekeeperconsent.com/min.js"></script>
<script data-cfasync="false" src="https://the.gatekeeperconsent.com/cmp.min.js"></script>

1B. Wordpress Implementation

If you are connected to Ezoic via the WordPress Plugin, you can enable the consent scripts by going to Settings > Ezoic > Integration and check the "Enable Privacy Scripts" box: 

2. Dashboard Activation

After adding the header script, you must enable the feature in your dashboard:

1. Navigate to Settings > Privacy > Consent Management.

2. Under Legislations, toggle GDPR and/or CCPA to "On."

3. Select your Country and indicate if your site has content intended for minors.

4. Deny Cookies Button: You can toggle the "Allow Necessary Cookies and Continue" button. Note: Enabling this can cause a significant revenue drop (20-50%) as it prevents tracking for many premium bidders.

3. Handling Third-Party CMPs

If you prefer to use a different, IAB-certified consent tool:

1. Click the black button in the top right: "Switch to Third Party Consent Management."

2. Ezoic will then "listen" for the consent signals from your existing tool and pass them to our ad partners, preventing duplicate modals for your users.

Review Vendor Lists:

Under TCF v2.2, you must disclose which companies are processing data. If you use custom trackers or affiliate tools not on the IAB list, use the Vendor List tab to manually add them for full transparency.

Avoid "Deny" Buttons if Possible:

Unless your specific legal counsel requires it, keep the "Deny Cookies" button off. Providing a prominent "Reject" button on the first layer of the modal often leads to a decrease (20-50%) in personalized ad revenue.

Regular Data Monitoring:

Periodically check the Consent Data tab. If your "Opt-In" rate falls below 90%, it may indicate that your modal placement or wording is causing user confusion.

Clear Consent Cache:

After making any changes to your privacy settings or vendor list, click the "Clear Consent Cache" button at the bottom of the dashboard to ensure the updates propagate to live users immediately.

Does the modal show for everyone?

No. Ezoic uses IP-based geolocation to show the GDPR modal only to visitors in the EU, EEA, and UK. This ensures you maintain compliance where required without adding friction for users in other regions.

What happens if a user rejects cookies?

If a user does not consent, premium demand partners cannot serve personalized ads. Ezoic will automatically serve "Contextual Ads." While these typically have lower EPMVs, they allow you to monetize the session legally.

Is Ezoic’s Consent Management Google-certified?

Yes. Ezoic is an IAB-registered CMP and is fully certified by Google to meet the requirements for serving ads in the EEA and UK.

Can I download my consent logs?

Yes. At the bottom of the Consent Data tab, you can select a date range and download a full log of user decisions for your compliance records.