Skip to content
EARNST.
DE

Server-Side Tracking

Server-Side Tracking | EARNST

First-party data collection on your own infrastructure. No third-party dependencies, no standard templates, no compromises on data quality.

What is server-side tracking?

Third-party cookies are blocked by browsers. Ad blockers filter JavaScript tags. ITP shortens cookie lifetimes to 7 days or less. The consequence: incomplete data, inaccurate conversion numbers, poor campaign performance. Server-side tracking solves this by routing data through your own infrastructure. First-party cookies stay intact, tracking requests look like normal API calls, and you maintain full control over what data flows where and when.

The critical difference with EARNST: we run the GTM Server Container on our own infrastructure, not on Stape, not on Google Cloud. This sounds like a detail but it changes everything. Own infrastructure means true first-party cookies modified at the server level. It means custom modules that would not run on any hosted platform. And it means API-based conversion attribution instead of error-prone browser pixels.

Why own infrastructure instead of Stape or Google Cloud?

Standard setups on Stape or Google Cloud Run work for simple use cases. But they have clear limitations: you cannot modify cookie attributes at the OS level, cannot install custom modules, cannot create custom endpoints. You are bound by whatever configuration options the provider exposes.

On your own infrastructure, you control the entire stack. This enables true first-party cookie modifications via HTTP response headers. Not the JavaScript-based cookie setting that most agencies sell as "first-party" and that browsers still restrict. Server-set cookies with customized lifetime, correct domain scope, and SameSite flags that browsers treat like any other first-party cookie on your domain.

You can also build custom logic: data validation before forwarding to platforms, enrichment with CRM data, custom endpoints for specific use cases like offline conversions or phone attributions. These are not theoretical advantages. These are the capabilities that make the difference between a 15% ROAS uplift and a 35% ROAS uplift.

API-based conversion attribution instead of browser pixels

Most tracking setups still rely on browser pixels for conversion measurement. The problem: pixels get filtered by ad blockers, restricted by browser policies, and fail to fire when users leave the page too early. Every lost conversion means a missing optimization signal for the campaign.

We use API-based attribution. Conversion data is sent server-side directly to the APIs of Google Ads, Meta, TikTok, and other platforms. This happens completely independent of the user's browser. No ad blocker can prevent it. No ITP can distort the data. Attribution is more reliable, conversion numbers are more complete, and campaign algorithms receive better signals for optimization.

Meta CAPI, Google Ads Enhanced Conversions, and TikTok Events API are implemented in parallel, with event deduplication to prevent double-counting. This gives you consistent conversion data across all platforms.

Phone tracking and call attribution

For many businesses, 30% to 50% of conversions happen over the phone. Without call attribution, this share is completely missing from your campaign data. You optimize your ads based on incomplete data and wonder why certain campaigns appear to underperform.

We implement phone tracking that attributes calls to specific campaigns, keywords, and ads. Call data flows into the same attribution as your online conversions. Google Ads receives the offline conversion signal, Meta gets the CAPI events. The result: a complete picture of campaign performance that unifies online and offline conversions.

Custom CMP instead of off-the-shelf solutions

Cookiebot, Usercentrics, OneTrust -- these tools cover standard requirements. But they are also rigid: they use someone else's design, someone else's logic, someone else's servers. Any customization beyond the built-in options is either impossible or expensive.

We develop custom consent management solutions tailored precisely to your requirements. Custom design that integrates seamlessly with your website. Custom consent logic that maps exactly the granularity you need. Full control over consent signals forwarded to the server container and downstream platforms. Consent Mode v2 is natively supported.

If an existing CMP makes sense for your situation, we integrate it. The decision is based on your use case, not on our convenience.

Who needs this?

Any business running paid advertising or relying on analytics for decision making. This is especially critical for companies operating in Europe where GDPR requires explicit consent before setting most cookies. Server-side tracking on own infrastructure allows you to maintain measurement capabilities while fully respecting user privacy choices. It is also essential for e-commerce businesses where accurate conversion tracking directly impacts campaign performance and profitability.

If your marketing team reports declining conversion rates despite consistent performance, if phone calls are missing from your attribution, or if your CMP causes more problems than it solves, our approach is the answer. We work closely with your marketing and legal teams to align technical implementation with regulatory requirements.

How EARNST approaches it

We start with an audit of your current tracking implementation: which tags fire, which events are tracked, where the gaps are, which conversions are being lost. Then we set up the GTM Server Container on dedicated infrastructure, configured on a subdomain (for example, tracking.yourdomain.com). All relevant tags are migrated server-side.

Cookie configuration happens at the server level: HTTP response headers instead of JavaScript. API integrations to Google, Meta, and other platforms are set up with proper event deduplication. Phone tracking is implemented when calls are a relevant conversion channel. The CMP is either custom-built or existing solutions are cleanly integrated.

Every implementation is fully documented. You receive an event matrix showing which events fire when, with which parameters, and to which systems. This is important not only for GDPR audits but also for future adjustments. After go-live, we monitor in parallel for two weeks, compare old and new data, and fine-tune as needed.

Project scope

A standard server-side tracking implementation takes 2 to 3 weeks: 1 week for audit and concept, 1 week for implementation and testing, 1 week for monitoring and optimization. More complex setups with phone tracking, custom CMP, or multi-domain tracking may take 4 to 6 weeks. You need access to DNS (for subdomain setup), Google Tag Manager, and the relevant advertising accounts. The server container runs on dedicated, own infrastructure.

Typical Results

27%

Average ROAS uplift after SST migration

100%

First-party data collection without cookie loss

GDPR

Audit-ready documentation and compliance

What you get

GTM Server Container on Own Infrastructure

No Stape, no Google Cloud shared hosting. Full control over server, network, and data flows on dedicated infrastructure.

True First-Party Cookie Modification

HTTP response header-based cookie configuration with customized lifetime, domain scope, and SameSite attributes set directly at the server level.

API-Based Conversion Attribution

Server-side conversion data delivery to Google, Meta, and other platforms. Independent of browser restrictions and ad blockers.

Phone Tracking & Call Attribution

Call tracking with attribution to campaigns, keywords, and ads for complete conversion measurement.

Custom CMP or CMP Integration

Custom consent management solution or integration of existing CMPs with full Consent Mode v2 support.

Documentation & Audit Trail

Technical documentation and GDPR compliance audit trail.

“Ein Freak in Sachen Vermarktung, Performance, digitaler Vertrieb - seine Leidenschaft ist bei jedem Gespräch spürbar.”

Nina Kraft

Moderatorin für Events, TV, Radio & Online, NK-MfETR&O

Frequently Asked Questions

How much does server-side tracking cost?

A standard setup ranges from 3,000 to 8,000 EUR depending on complexity. Ongoing hosting costs for the server container are approximately 30-80 EUR/month on dedicated infrastructure. You receive a fixed-price quote after the discovery call.

How long does the migration take?

Standard setup takes 2 to 3 weeks, more complex multi-domain setups 4 to 6 weeks. Your existing tracking runs in parallel during migration, so there is no data gap.

Why not Stape or Google Cloud?

Stape and Google Cloud are shared hosting solutions. You share resources with other customers, have limited configuration options, and are locked into whatever features the provider exposes. On your own infrastructure, you control the entire stack: operating system, network, firewall rules, SSL configuration, server location. You can install custom modules, modify cookie attributes at the OS level, and adjust data flows in ways that are simply not possible on hosted platforms. There is also no vendor lock-in risk and no price increases outside your control.

What is the advantage of own infrastructure?

Full control means true first-party cookies with modified attributes (lifetime, domain scope, SameSite flags) set directly at the server level. This is not a JavaScript workaround like standard setups use. It is an HTTP response header modification. Browsers treat these cookies like any other first-party cookie on your domain. You can also build custom logic: data validation before forwarding, CRM data enrichment, and custom endpoints for special use cases.

What is API-based conversion attribution?

Instead of relying on browser pixels, we send conversion data directly via API to Google, Meta, and other platforms. This happens server-side, completely independent of the user's browser. No ad blocker, no ITP, no cookie loss can interfere with this attribution. The result: more reliable conversion numbers and better optimization signals for your campaigns.

Does it work with my consent management platform?

Yes, but we go further. Instead of simply connecting standard CMP solutions like Cookiebot or Usercentrics, we can develop a custom consent management solution tailored to your exact requirements: custom design, custom logic, full control over consent signals. We also integrate with existing CMPs when that makes sense. Consent Mode v2 integration works in both cases.

Will I lose historical data during migration?

No. We migrate gradually and run old and new tracking in parallel for two weeks. This allows us to compare data and ensure nothing is lost.

Can phone calls be tracked?

Yes. We implement phone tracking with call attribution that maps calls to specific campaigns, keywords, and ads. This is particularly relevant for service businesses and B2B companies where a significant share of conversions happen over the phone. Call data flows into the same attribution as online conversions, giving you a complete picture of campaign performance.

Do I need Shopify Plus for server-side tracking?

No. Server-side tracking works with any Shopify plan and all other platforms. The GTM Server Container is platform-independent.

You might also be interested in

Campaign Tracking

Google Ads Enhanced Conversions, Meta CAPI, GA4 event architecture. Every click attributed correctly.

Learn more →

Improve Shopify

Performance, conversions, and custom extensions for existing Shopify stores. Beyond template limits.

Learn more →

Ready to discuss?

Tell us about your project. We will get back to you within 24 hours.

1 Project
2 Details
3 Contact

What can we help with?

Select the area that fits best.