Overview
Server-side Google Tag Manager deploys a tagging server on a first-party domain, proxying analytics and advertising requests through the organisation's own infrastructure. The /shared/analytics.*.js bundle is the sGTM-generated client-side loader. The /g/collect endpoint proxies measurement protocol hits. This vendor represents the sGTM transport layer, not the tags it proxies.
Detection capabilities
- Signature count
- 0
Consent Mode v2
Consent Mode v2
Google Consent Mode v2 signal requirements for this tag.
analytics_storagenot requiredad_storagenot requiredad_user_datanot requiredad_personalizationnot requiredCommon mistakes
- 1Not configuring the sGTM container to respect Consent Mode signals from the client
- 2Using the default sGTM domain instead of a first-party subdomain, negating the privacy benefit
- 3Failing to set up proper CSP headers for the first-party sGTM domain
Compliance considerations
Server-side GTM routes requests through a first-party endpoint, reducing third-party cookie exposure and giving the organisation more control over data egress. However, the proxied requests still reach Google servers. The sGTM container itself is infrastructure and does not require consent, but the tags running inside it (GA4, Google Ads, etc.) retain their original consent requirements.
Related services
Scan your site for Google
Run a free Consentmark scan to see how Google is loading on your site, whether it respects consent, and where governance gaps exist across your wider tag estate.
Start a free scan