All Blog Posts

Google-Certified CMP: What the Requirement Means for Publishers and How to Comply

Close
Read time
9 mins
Updated
Jul 14, 2026
Share

  • A Google-certified CMP is a third-party consent tool approved by Google to collect, store, and signal user consent in line with the IAB Europe's Transparency and Consent Framework (TCF v2.3).
  • Since January 16, 2024, publishers using Google AdSense, Ad Manager, or AdMob must use a Google-certified CMP to serve ads to users in the EU/EEA, UK, and Switzerland.
  • Google has published an official list of Google-certified CMP providers that meet its technical and policy requirements. 
  • Cookiebot is a Google-certified CMP partner that’s easy to set up, with TCF-specific features, Consent Mode support, multiple Google integrations (including Google Tag Manager, Google Analytics 4, and content management systems), and with global support for data privacy compliance.

Google mandates the use of a certified consent management platform to enable users to opt out for data processing or obtain user consent for businesses serving ads in the EU/EEA, UK, and Switzerland. This guide explores the implications of Google’s CMP requirements, how to select a Google-certified platform, how it supports compliance in the U.S., and how Cookiebot™, a Google Gold Tier-certified CMP, can help.

On May 16, 2023, Google announced that publishers using or intending to use its AdSense, Ad Manager, or AdMob products must implement a Google-certified consent management platform (CMP) if they want to serve ads to visitors from the European Economic Area, Switzerland, and the United Kingdom. 

The announcement coincided with IAB Europe publishing updates to its Transparency and Consent Framework (TCF) — now at version 2.3 — which provides a standardized framework for obtaining, storing, and signalling user consent in line with the General Data Protection Regulation (GDPR) and ePrivacy Directive.

The deadline to implement a Google-certified CMP was January 16, 2024. Publishers who had not switched by this date lost the ability to serve ads to users in the EU/EEA, UK, and Switzerland via Google's advertising products.

This article explains what the Google CMP requirement entails, how to select a compliant CMP, and why Cookiebot by Usercentrics qualifies.

This article has been reviewed by Cookiebot's data protection experts and reflects requirements in force as of June 2026.

What Is a Google-Certified CMP?

A Google-certified CMP is a consent management platform that has been approved by Google to collect and signal user consent to enable serving ads in the EU/EEA, UK, and Switzerland. Since January 2024, publishers using Google AdSense, Ad Manager, or AdMob must implement a Google-certified CMP, also integrated with the IAB’s TCF v2.3, to serve ads in these regions.

Why Is Google Requiring Certified CMPs?

According to Google, the main objective of the requirement is to establish “a more unified and reliable approach to transparency and consent” and “a more privacy-conscious digital advertising ecosystem.” A certified CMP helps support compliance with the GDPR, UK GDPR, and CCPA by managing consent and privacy signals for personalized advertising.

Here is the timeline of Google-certified CMP requirement implementation in 2024:

16 January 2024: Google required publisher partners serving ads to users in the EEA and UK to use a Google-certified CMP with TCF integration, or they would lose access to personalized ad serving in those regions.

6 March 2024: Google Consent Mode v2 became required for relevant Google Ads and Analytics use cases in the EEA.

31 July 2024: the Google requirement was expanded to include Switzerland

As of 1 March 2026, Google has required all publishers and CMPs to use TCF v2.3 for all newly generated TC strings. Publishers whose CMP still generates TCF v2.2 strings risk having ad requests defaulted to Limited Ads, which Google warns may significantly impact programmatic revenue.

Learn more: Google Signals Changed in June 2025: What It Means for Your Consent Setup

Understanding Google’s CMP Requirements for Ad-Serving Businesses in 2026

As of June 2026, publishers serving personalized ads to users in the EU/EEA, UK, and Switzerland with Google Ads services need to use a Google‑certified CMP and ensure it’s integrated with the IAB TCF v2.3 signals and Consent Mode v2.

For publishers that have not yet implemented a CMP, or are unsure whether their current CMP provider is certified, complies with IAB Europe's TCF v2.3 requirements, and supports Google Consent v2, Google has published an official list of Google-certified CMPs that meet these requirements.

Cookiebot CMP is Gold Tier-certified by Google, enabling you to meet requirements to maintain your advertising without interruption.

The Digital Markets Act (DMA) designates Google as one of several "gatekeeper" platforms subject to added obligations around data access, interoperability, and consent. Google's certified CMP requirement grew partly out of these obligations, which is why the two are often mentioned together. For most publishers, though, the DMA doesn't apply directly. What actually governs your compliance work is the TCF and the GDPR.

Google's Obligations as a Gatekeeper

Under the DMA, gatekeepers like Google must obtain valid consent before combining personal data across their services or using it for personalized advertising. This obligation sits separately from a publisher's own compliance requirements, but it's part of why Google introduced Consent Mode v2 and tightened its CMP certification requirements in the first place. Google needs to ensure valid consent is obtained throughout its platforms’ ecosystems.

What This Means for Your Compliance

A Google-certified CMP helps support your compliance with the TCF and the GDPR, if not the DMA directly. But meeting TCF requirements supports maintaining advertising in the EU, UK, and Switzerland. 

The CMP still needs to collect valid, granular consent and signal it accurately, since that determines whether Google can serve personalized ads on your site. If your business happens to also qualify as a designated gatekeeper in its own right, separate DMA-specific requirements would apply on top of this. However, there are only seven gatekeepers currently designated by the DMA.

Selecting the Right Google-Certified CMP for Your Business

While searching for a Google-certified CMP provider for your business, consider:

  • How well it enables your ongoing compliance with the TCF and evolving requirements of data privacy laws
  • Available integrations
  • User-friendliness for teams with limited technical or legal resources
  • Customization for your branding, messaging, and regulatory requirements
  • Customer support quality

By paying attention to these specific areas, you can select a CMP that complies with Google's mandates and aligns with your operational needs and growth.

Compliance with the TCF and Data Privacy Laws

Verify that the CMP complies with IAB Europe's TCF v2.3. If you use Google ad products, also check that it appears on Google's list of certified CMPs. Businesses with visitors from other regions should also look into whether the CMP enables collecting consent that supports compliance with other potentially relevant privacy regulations.

Integrations

Look for a CMP that integrates easily with the platforms your business uses, especially Google AdSense, Ad Manager, and AdMob. Other integrations to consider include your content management system, analytics platform, and e-commerce platform.

User-Friendliness for Teams with Limited Resources

A CMP is only as useful as the team implementing it. Look for an intuitive setup process, clear documentation, and a management interface that doesn't require deep technical or legal expertise to operate day to day. This matters most for smaller teams without dedicated compliance or engineering staff on hand.

Customization and Adaptability

A CMP should be customizable to reflect your business's branding and messaging, supporting coherence with its overall image. It should also enable timely, automated updates for shifts in privacy legislation or advancements in ad technology, helping maintain its effectiveness and compliance over time.

Level of Customer Support

Investigate the level of customer support, comprehensiveness of documentation, and updates offered by the CMP provider. Some things to look out for include variety in support channels, availability of an account manager or customer success manager, support ticket response methods and times, maintaining detailed and updated documentation and resources, and providing regular software updates.

Which CMPs Are Google-Certified?

Google’s list breaks down certified CMP partners by their tier, and also enables additional filters, including pricing, app support, and more.

Official Google partners receive a Google badge that signals a CMP partner has integrated with Consent Mode and Google Tag Manager, enables straightforward implementation, and can deliver accurate, privacy-safe insights. 

How to Implement Google-Certified CMP in 5 Steps

The exact implementation plan depends on the Google-certified CMP chosen; yet generally, the setup takes five steps:

1

Choose a Google-certified CMP, like Cookiebot CMP: Review Google's list of certified partners to see if your current CMP is on the list or choose a CMP provider if you don’t yet have one.

2

Set up: Install the CMP script or plugin on your website.

3

Configure consent collection: Set up Google Consent Mode v2 in the CMP, customize your consent banner, and test that consent is being signaled correctly to Google tags.

4

Check the IAB TCF framework: Confirm that the CMP supports valid IAB TCF signals for Google advertising use cases.

5

Verify compliance: Validate that your CMP banner meets GDPR and ePrivacy Directive requirements, and regulatory requirements in any other relevant jurisdictions.

What Happens If You Do Not Implement a Google-Certified CMP?

Since having a Google-certified CMP is a Google requirement to serve personalized ads in EEA, UK, and Switzerland, failing to implement one results in automatic ad-serving restrictions. These consequences may include:

Ad delivery disruptions: Google AdSense, Ad Manager, and AdMob may restrict or downgrade ad serving to users in the EU/EEA, UK, and Switzerland.

Rejected requests: Lack of valid TCF signals can lead to account suspensions across your Google advertising products.

Inaccurate insights from Google Analytics: Without the relevant consent framework and signals from a Google-certified CMP, you can’t track conversions accurately.

Regulatory fines: Absence of a Google-certified CMP increases the risks of non-compliance and penalties from the GDPR, UK GDPR, Swiss FADP, and other data privacy regulations.

Why Cookiebot is a Leading Google-Certified CMP

The table below compares Cookiebot CMP features with two other Google-certified CMPs in Gold tier: OneTrust and CookieYes.

Cookiebot™OneTrustCookieYes
Audit-ready consent logs, including for the GDPR and CCPAYesYes, but unclear pricingBasic logs
Google certification tierGoldGoldGold
G2 Best Data Privacy Software Award 2026Top 7Not on the listTop 20
PricingStarts at EUR 7/month Custom quotes, no published pricesStarts at EUR 9/month
Pricing modelPredictable, based on number of pages (no web traffic limits)Unpredictable, requires custom quotesUnpredictable, based on website traffic

Information accurate per published sources as of June 2026.

Cookiebot by Usercentrics is a global leader in consent management, serving over 2.4 million websites across 195 countries. It’s Google Gold Tier-certified — here’s what that means for your business.

1. TCF-Specific Features

When a cookie banner displays on a website registered with the IAB, it will have an additional panel called "ad settings." This panel provides visitors with information on vendors and purposes, and visitors can enable and disable each separately or all at once.

Cookiebot CMP supports Google Consent Mode v2 by default, signalling visitor consent to Google tags before they fire. It also supports Google's Additional Consent Mode, which enables publishers to get consent for Google ad tech providers that are not part of the IAB TCF v2.3 Vendor List, so publishers can display ads from this wider list of providers alongside those registered with the IAB.

3. Multiple Integrations

Cookiebot CMP integrates with Google services via Google Tag Manager. You can also integrate the Cookiebot CMP with other platforms, including content management systems such as Shopify, and WordPress, and analytics platforms, including Google Analytics 4 and others.

4. Automated Scanning and Updates

Cookiebot CMP automatically scans websites to detect the cookies and trackers in use, categorizing each by type and purpose, and enabling auto-blocking. Scans run on a recurring basis, so the cookie declaration and consent banner stay current as new cookies or trackers are added to the site, without requiring manual review.

5. Easy to Set Up

You can implement Cookiebot CMP in just a few minutes. It makes it easy to get started with collecting compliant consent to support your ongoing advertising campaigns, and takes the technical hassle out of the process.

6. Supports Compliance with Global Data Privacy Regulations

Cookiebot customers can collect consent that supports compliance with multiple data privacy laws worldwide, including those with more strict opt-in consent models, like the EU and Brazil, or those requiring opt-out options, like the U.S. state-level privacy laws.

Cookiebot CMP is a customizable and flexible cookie consent solution that supports 47+ languages. Customers can use geolocation settings to display a cookie banner that obtains opt-in or opt-out consent based on the visitor’s location and relevant data privacy law. This enables customers to configure the banner for the jurisdictional requirements relevant to their audience.

7. Varied Support Options

Cookiebot customers have access to multiple support options, including a dedicated Help Center, detailed knowledge base, and ticket system for technical support and customer care. Customers can also work with the large partner base of thousands of reseller partners.

Frequently asked questions

A Google-certified CMP is a consent management platform certified by Google to help publishers manage user consent for online advertising and data collection via AdSense, Ad Manager, or AdMob products, in compliance with IAB Europe's Transparency and Consent Framework (TCF) v2.3 requirements. Google maintains an official list of certified providers.

Google itself does not provide its own consent management platform, but it certifies third-party CMPs that businesses can implement to collect compliant consent. These CMPs must meet and integrate with the requirements of the TCF v2.3 to be certified.

A consent management platform for Google AdSense is a consent solution used by publishers who run ads using Google’s AdSense service. It helps in obtaining and managing user consent for data processing and ad targeting in compliance with privacy laws like the GDPR. 

Since January 16, 2024, publishers must have a Google-certified CMP to use AdSense and continue serving ads to users in the EU, EEA, and UK (Switzerland added to the list as of July 31, 2024).

Under the GDPR, a CMP enables websites and online services to obtain, manage, record, and signal valid user consent for data processing activities. It supports compliance with the GDPR’s strict guidelines on user consent, particularly in handling personal data and user preferences for privacy and data usage.