Deep-check a Matomo implementation.
A focused check of how Matomo is loaded, configured and how it interacts with consent on a given site.
What this checks
- Variant detected. Plain Matomo, Matomo Tag Manager, or Matomo Cloud.
- Tracker endpoint. Where
matomo.phphits go, and whether the host is first-party or third-party. - Site IDs. Which
idsitevalues appear on the captured beacons. - Cookie mode. Cookied (
_pk_idset) vs. cookieless. - Consent behaviour. Whether Matomo fires before consent, after consent only, or both.
- CSP coverage. Whether the tracker host is allowed by
Content-Security-Policy.