SEO Pillar
GDPR-Compliant Analytics
datascale-seo-keyword-map.md) isn't in the project yet. Once it is,
H2 sections along Cluster 2 (IP anonymisation, Consent Mode V2, Schrems II, server-side tracking,
Firebase + GDPR, Matomo vs Plausible, audit checklist) get filled in.
The four common tools compared
| Criterion | GA4 | Plausible CE | Piwik PRO | Matomo |
|---|---|---|---|---|
| Cookies | Yes (first-party) | None | Optional | Optional |
| Consent banner | Required | Not required | Configurable | Configurable |
| Hosting | US (Google) | Self-hosted EU | EU (Poland) | Self / EU Cloud |
| IP anonymisation | Default | No IP stored | Configurable | Configurable |
| Marketing integrations | Strong (Ads) | Minimal | Solid | Solid |
| Licence cost | €0 | €0 (self-host) | From €270/mo | €0 / €19/mo Cloud |
| Best fit | Ads-heavy marketing | Content sites, agencies | Enterprise, regulated | Flexible setups |
Frequently asked
-
What does "GDPR-compliant analytics" mean?
GDPR-compliant analytics means collecting visitor data only on a valid legal basis, processing it on EU infrastructure, and — where cookies or personal data are involved — obtaining informed consent before tracking begins. -
Is Google Analytics 4 GDPR-compliant?
Conditionally yes: with a DPA with Google Ireland, IP anonymisation enabled, Consent Mode V2 correctly configured, a clean CMP integration and limited data retention. Defaults are not compliant out of the box. -
Does Plausible CE require a cookie banner?
No. Plausible Community Edition sets no cookies, stores no IP addresses, and processes no personal data. A consent banner is not required. -
What's the difference between Plausible and Matomo?
Both are privacy-friendly alternatives to GA4. Plausible is cookie-free by default and minimal. Matomo is more powerful but can set cookies — depending on configuration a consent banner may still be needed. For marketing sites without deep attribution, Plausible is usually the better choice. -
When does Piwik PRO make sense?
Piwik PRO is the enterprise variant from Poland with EU servers and integrated CMP. It fits regulated industries (banking, healthcare) or organisations with strict EU-cloud requirements. -
What is Consent Mode V2?
Consent Mode V2 is Google's API for controlling tag behaviour based on consent state. Correctly implemented it sends aggregated signals even when consent is declined, powering conversion modeling. It complements a full GDPR-compliant CMP — it does not replace one.