jfohQ: Interested, but concerned about GDPR
Hi Alistair,
Thanks for bringing getTerms to Appsumo.
I'm interested in your product, but a few things scare me...
By default, your own website appears to fail GDPR, e.g. it automatically loads:
1. Google Tag Manager for Analytics
2. Google Tag Manager for Ad Words
3. More Google Ads stuff (https://pagead2.googlesyndication.com/ccm/collect?frm=0&en=page_view...)
4. More Google Analytics stuff (https://region1.google-analytics.com/g/collect?v=2&tid=G-621WXSGQL0...)
These should be blocked by default, and only allowed after **explicit** consent is given.
Perhaps this is just a bug you're already fixing, but it would be good to have this confirmed.
Thanks
P.S. I've opened your website in multiple browsers using incognito mode, so as to ensure these scripts aren't being loaded by a rogue browser extension.
Alistair_GetTerms
Edited Feb 18, 2026A: Hi,
Where are you located? Our banner's blocking behavior is dependent on the user's location.
If I open our website from Germany, our banner blocks all cookies and trackers as required. If you open it in the US, it only blocks them if you opt-out.
We don't apply explicit consent rules if you're in a region that doesn't require them.
Sorry, I should have said that I'm in the UK. I've tried with and without a VPN connection - same issue. These scripts shouldn't be loaded without my explicit consent.
Do you mean you see something like this? https://cloud.keresomarketing.com/DPQ95sT7
This is default action, check any other cookie policy plugin site. The same tags load without you accept anything. GTM is using consent mode, so it can load the default empty container initially.
Hi jfoh,
As per Gabor's comment, we're using Google consent mode. We're also using the advanced implementation, meaning it's making cookieless pings to Google with anonymized data.
If you would prefer, you can absolutely use basic consent mode which will behave as you explained in your most recent comment.
Would you be open to sending some more information about the behavior that you're looking for to [email protected]?
Hi Gabor, no - this is not standard across cookie consent widgets.
One of those scripts is an Ad conversion endpoint (https://pagead2.googlesyndication.com/...)
It sends a pageview event to Google, alongside an AdWords ID (plus lots more), and although it includes &npa=1 - it's still communicating with Google.
Any cookie widgets on my client sites need to block scripts like this by default.
Hi jfoh, yeah I am not sure about their initial GA load, however, I saw that cookieyes.com is loading a similar script block, including GA and GTM.
Yes, I see that too. My clients expect blocking of all third-party scripts by default... so I couldn't use CookieYes either. Hopefully, GetTerms.io will consider providing an option to enable this (like OneTrust).