Setting up cookie consent for Microsoft Clarity (V2)

Updated: September 16th, 2025

When you enable Microsoft Clarity on your website, it automatically sets cookies on a visitor’s browser regardless of consent, but you can configure this behavior to comply with privacy requirements.

If your website receives visitors from the European Economic Area (EEA), the United Kingdom (UK), or Switzerland (CH), you’re required to use the Microsoft Clarity Consent API to handle user consent correctly. Even if you’ve previously set up consent handling for Clarity, you may need to update your implementation to align with the latest version, known as Consent V2.

What happens if you don’t implement consent V2? Without it, Clarity will treat each pageview as a separate session from a new user. This results in significant limitations, such as each page view generating a new session and a new user, which restricts your ability to create multiple page funnels. As a result, metrics like pages per session will only ever be one. Microsoft provides more information on Clarity reporting without cookie consent here.

Don’t worry, it’s a pretty easy process, and I’ll take you through it step-by-step. Let’s get into it!

Table of Contents

Here’s what you will learn in this article

• Disable automatically set cookies in Microsoft Clarity
• Options for informing Clarity when a visitor gives consent
  • Google Consent Mode
  • Consent Management Platform
  • Manual Setup
    • Using CookieHub to trigger cookies
    • Create variables for cookiehub_analytics and cookiehub_marketing
  • Create a trigger for cookiehub_consent_update
  • Create a tag that will activate cookies based on consent
• Test the tag
• What to do if Clarity tg fires only if consent is given?
• Final Words

Video tutorial

If you prefer video content, here’s a tutorial from our Youtube channel.

Disable automatically set cookies in Microsoft Clarity

In this tutorial, I assume that you have already installed Clarity on your site. If not, here is some documentation on how to do so (there is a method to use GTM for your installation, which may be the simplest option).

When you enable the Clarity tag on your site, it sets two cookies. To find the cookies that Microsoft Clarity sets, right-click on your webpage and select “Inspect” from the drop-down menu. This will open the Developer Tools (which you can also access through the Chrome menu by going to “More Tools”).

Once the tab opens, go to the Application section, search “_cl”, and you should see two cookies: _clck and _clsk. These are the cookies we want to set only when a user gives consent for analytics tracking.

In Microsoft Clarity, go to Settings > Setup and under Advanced settings, toggle off “Cookies” to disable the cookies from automatically being set when a user lands on your site.

When you turn the cookies off, you can still see data and recordings of each page. However, as a user goes from one page to another, Clarity will use a new session ID and user ID (aka it will think the user is a new user) on each page, so those pages will not be tied into a cohesive session.

However, it’s possible to set cookies after a user has provided consent for them. According to Microsoft’s documentation, if you want to tell Clarity that a visitor has explicitly consented to cookies (e.g., through a consent pop-up), you can use this code:

window.clarity('consentv2', {
   ad_storage: "granted" | "denied"
   analytics_storage: "granted" | "denied"
});

In the next chapter, we will go through the process of setting up a tag that makes sure Clarity only sets cookies when a user provides consent (using the code above).

Options for informing Clarity when a visitor gives consent

To ensure Microsoft Clarity handles user consent correctly, you’ll need to inform it when a visitor agrees (or doesn’t agree) to cookie tracking. Thankfully, there are three main ways to do this, and chances are you’re already using one of them: Google Consent Mode (GCM), a supported Consent Management Platform (CMP), or manual setup.

Google Consent Mode

If you’ve already implemented Google Consent Mode on your website, good news: there’s nothing else you need to configure. Microsoft Clarity will automatically pick up consent signals from GCM and adjust its behavior accordingly.

This integration should be available starting in mid-September 2025, so if you’re reading this after that time, Clarity should already be compatible with your GCM setup. The only thing left to do is verify that it’s working correctly—we’ll show you how to test that later in this article.

Consent Management Platform

If you’re using a supported Consent Management Platform, the process is also automatic. These CMPs already communicate directly with Microsoft Clarity through its Consent API. So, when a visitor interacts with the CMP, say, by clicking “I agree” on your cookie banner, Clarity will also receive that consent status.

You can check which CMPs Clarity officially supports here. If you’re not sure whether you can integrate your platform with Clarity, it’s worth asking your CMP provider if they currently support Microsoft Clarity or have plans to do so.

Manual Setup

The main method we’ll focus on for this article is the manual process, which is the most widely available option for everyone (since it doesn’t require any other programs).

According to Microsoft’s documentation, if you want to tell Clarity that a visitor has explicitly consented to cookies (e.g., through a consent pop-up), you can use this code:

window.clarity('consentv2', {
   ad_Storage: "granted" | "denied"
   analytics_Storage: "granted" | "denied"
});

You might have something similar already implemented that looks more like the code below, but this is the old version, so you need to update to the new version (the code above):

window.clarity('consent');

While there are many options for a cookie consent solution (any of which would work), for this setup, we will leverage the community template created by CookieHub. If you are using a different cookie consent system, the following steps will differ, but you should be able to follow the logic to adapt it to your situation.

Using CookieHub to trigger cookies

While there are many options for a cookie consent solution (any of which would work), for this setup, we will leverage the community template created by CookieHub.

We’ll start by exploring how this tag works. Go to the Tag section and click “New” to create a new tag. Click on the ”Tag Configuration” section and go to the Community Template Gallery.

Search “CookieHub CMP” and click “Add to workplace” to add it to the tag.

You will need to go to register your account with CookieHub and enter your Domain Code in the textbox (which you can find next to your site’s URL in the Domains tab once you’ve registered).

Set the trigger to “Consent Initialization – All Pages” (which is automatically available in your GTM container). Name the tag “CH” (or “CookieHub”) and save.

To see how CookieHub works, click Preview and load your site. You should see the cookie consent pop-up on your page.

If you go to the Application tab (right-click and select “Inspect”) and refresh the page, you will notice that the previously set cookies are no longer there.

Now, click “Allow all cookies” on the consent pop-up. You should notice a bunch of events show up in Preview mode, including cookiehub_consent_update.

Using this information, we can allow Clarity to set cookies when the cookiehub_consent_update event is triggered by a user allowing cookies, which happens when cookiehub_analytics and cookiehub_marketing are true (you can see this by going to the Data Layer tab).

You’ll notice that CookieHub uses true/false for the consent indicator, but Clarity wants it in the form of “granted” or “denied,” so we need to use some code to update this.

Create variables for cookiehub_analytics and cookiehub_marketing

In Google Tag Manager, go to Variables and select “New” under User-Defined Variables. For the Variable configuration, select “Data Layer Variable” since the parameter is available in the data layer.

For the first variable, enter “cookiehub_analytics” as the Data Layer Variable Name and name the variable “dlv – cookiehub_analytics” (to keep things easy).

Follow the exact same process for the next variable, but enter cookiehub_marketing instead.

Create a trigger for cookiehub_consent_update

Now, go to the Triggers section and select “New”. Under Trigger Configuration, select Custom Event.

Enter “cookiehub_consent_update” as the Event Name and name the trigger “custom – cookiehub_consent_update” (following proper naming convention).

Create a tag that will activate cookies based on consent

Let’s put it all together now! Just a quick note that this method is for when the values of the data layer variables created above differ from the values that Microsoft Clarity accepts, i.e., granted & denied.

Create a new tag and select “Custom HTML” as the tag type.

In the textbox, add this code:

<script>
  (function() {
    // IMPORTANT: Replace ad_storage and analytics_storage variables with your actual GTM variable names if they are different.
    var adStorageConsent = {{dlv - cookiehub_marketing}};
    var analyticsStorageConsent = {{dlv - cookiehub_analytics}};

    var adStorageStatus = adStorageConsent === true ? 'granted' : 'denied';
    var analyticsStorageStatus = analyticsStorageConsent === true ? 'granted' : 'denied';

    if (typeof window.clarity === 'function') {
      window.clarity('consentv2', {
        ad_Storage: adStorageStatus,
        analytics_Storage: analyticsStorageStatus
      });
    }
  })();
</script>

This code is basically looking at whether the consent is true or false, and if it’s true, only then will it trigger the Clarity consent code to fire cookies.

If your data layer variable value will be one of “granted” or “denied”, then you can use this more simplified code:

<script>
  window.clarity('consentv2', {
   ad_Storage: {{dlv - cookiehub_marketing}},
   analytics_Storage: {{dlv - cookiehub_analytics}}
});
</script>

Important: As you can see in the comment in the code, if you named the data layer variables we created above (cookiehub_analytics and cookiehub_marketing) differently, you will need to enter that name in the code (e.g. where I have {{dlv – cookiehub_analytics}} will need to be replaced with the name of your variable).

Now, add the previously created trigger under Triggering. Name the tag “cHTML – clarity consent” and save.

Test the tag

As always, we need to test the tag to make sure it’s working properly before publishing the GTM container. Go to your site and open the Application tab in the Developer Tools. Search for “_cl” and make sure you don’t see Clarity’s cookies.

Then, search “cookie” and delete the cookiehub cookie to make sure you trigger the consent pop-up again.

Now, go to Preview mode and, once your site loads, open the Network tab in the Developer Tools. Search “collect” to see the requests going to Clarity (which we expect to see).

In the Application tab, search for “_cl” and there should be no cookies. But, if you provide consent in the Cookiehub pop-up and search for “_cl”, there should be cookies now!

Another way to check is to go to the Console tab, enter the code below and click Enter. You should see that the consent status is denied for both variables. Once you’ve agreed to allow cookies, it’ll be granted.

clarity('metadata', (d, upgrade, consent) => {
       console.log('consentStatus:', consent);
  }, false, true, true);

Once you have tested the tag and confirmed it is working as intended, you can publish your GTM container to save all the changes (make sure you use proper naming conventions to name and describe the changes to the container)!

What to do if you fire Clarity Tag only if consent is given?

Everything until this point was explaining a scenario where you activate Microsoft Clarity’s tag even if consent is not given. In that case, the cookies are not set by default.

But what if you want to be more cautious and only fire the tag if consent is given? That is also possible.

In general, you would have to fire the Clarity tag and then almost immediately fire the consent tag, which is responsible for setting consent signals. This can be achieved with Tag Sequencing.

If the Clarity tag fires only if analytics and marketing consent is given, then simply create a Custom HTML tag with the following code:

<script>
  window.clarity('consentv2', {
    ad_Storage: 'granted',
    analytics_Storage: 'granted'
  });
</script>

If you have variables for each consent group, then your code could look like this, instead:

<script>
  window.clarity('consentv2', {
    ad_Storage: {{dlv - cookiehub_marketing}},
    analytics_Storage: {{dlv - cookiehub_analytics}}
  });
</script>

DO NOT add any trigger to this tag. Save it.

Then open your Microsoft Clarity tag and go to Advanced Settings > Tag Sequencing > Fire a tag after Clarity fires and select the custom HTML that includes the consent command.

Save the tag. What will happen here is that when your Microsoft Clarity tag fires (and it does only when consent is given), your consent tag will fire immediately after that. This guarantees that Microsoft will still get the consent signals.

Setting up cookie consent for Microsoft Clarity: Final Words

The main goal of this article is to make sure that Microsoft Clarity does not set cookies unless consent is explicitly provided by the user. There are a few ways you could do this using either Google Consent Mode, a compatible consent management program, or manually using Google Tag Manager.

These days it’s extra important to be compliant with all regulations that could impact your analytics, so it’s good to get ahead of the game and make sure you’re only setting cookies when a user explicitly provides permission for you to do so (it’s the right thing to do after all).