How can I turn off visitor cookies?

Administration

Needed permissions: owner

Sometimes you may want to turn off visitor cookies and not use them to collect data. It could be because you want to stay compliant with some privacy laws or for other reasons.

Without using cookies, your data will be less accurate. It’s because cookies store visitor data like the visitor ID. This ID helps to recognize returning visitors and their sessions. At the end of this article, we’ll show you how your data can be affected by turning off cookies.

To turn off cookies, follow these steps:

  1. Go to Menu > Administration.
  2. Navigate to Sites & apps.
  3. On the left, pick a site or app you want to work with.
  4. Navigate to Privacy.
  5. Ask visitors for consent needs to be turned off.
    Ask visitors for consent (off)
  6. Turn off Use visitor cookies.
    Use vistior cookies (off)
  7. Click Save.

Note: Some triggers in Tag Manager create cookies to work correctly. If you use one of the following conditions in triggers, we’ll set a cookie:

  • Event condition > Traffic source
  • Event condition > Returning visitor
  • Event condition > Campaign
  • Event condition > External referrer 
  • Multiplicity > Fire tag once per session
  • Multiplicity > Fire tag multiple times per session, excluding first
  • Multiplicity > Fire tag once per page view

If you don’t want to use these cookies, don’t set these conditions in the trigger. More about cookies

Comparison of options

Now we’ll show you how your data can differ after turning off cookies. We’ll also compare other options used for collecting data so that you know how combining them can affect your data.

Cookies & session ID No cookies No session ID No cookies & session ID
Mechanisms used to collect data
First-party cookies (1) (1)
Local storage
Session ID (2)
Visitor’s IP address Yes / No (3) Yes / No (3)
Visitor ID
Collected data
Capture all traffic
New vs. returning visitors
Visitor’s session (4)
Visitor’s location Latitude, Longitude, Organization, Provider, City, Region, Country, Continent Latitude, Longitude, Organization, Provider, City, Region, Country, Continent Latitude, Longitude, Organization, Provider, City, Region, Country, Continent Latitude, Longitude, Organization, Provider, City, Region, Country, Continent
Events
Traffic sources
Channel attribution Last-click, position-based, first-click, last-non-direct-click, time-decay, linear and custom models Last-click Last-click, position-based, first-click, last-non-direct-click, time-decay, linear and custom models
Privacy laws
Compliant with Countries without privacy laws,
CCPA (5)
Cookie laws Cookie laws GDPR, UK GDPR/PECR (6), TTDSG (6)
  1. Some triggers in Tag Manager set cookies to work correctly.
  2. We create a session ID to recognize the visitor’s session. We use it only for 30 minutes since the last event.
  3. You can mask IP addresses for visitors under Administration > Sites & apps > Privacy > Mask IP addresses. The IP address informs about visitor’s location. This option removes the selected number of bytes from the address before saving it to the database. Nobody will ever see the full address. Masking it can enhance visitors privacy because you won’t recognize their full location.
  4. Each event is a new session.
  5. You need to add an opt-out form (“do not sell my personal data”).
  6. Assuming the product is set up not to store additional device-level information like screen resolution or browser plugins. Set it up in Administration > Sites & apps > Privacy > Don’t collect visitor’s device data (on). 

Was this article helpful?

Technical support

If you still have some questions, visit our community.
There’s always someone ready to help!

Back to help center