WooCommerce Analytics & Tracking

DataFirefly Server-Side — WooCommerce client + server tracking (free)

The free plugin that sends your entire WooCommerce funnel server-side — one key, no credentials in the browser.

DataFirefly Server-Side is the official, free WooCommerce connector for the DataFirefly Server-Side Tracking service. It sends your whole funnel (product view, add to cart, checkout, purchase) both in the browser and on the server, with a shared event_id for flawless deduplication. The purchase fires from the WooCommerce order hook: neither blocked by ad-blockers, nor spoofable. A single key configures client and server, no destination credential ever reaches the browser, and nothing fires without consent — including through our DataFirefly Cookie Consent v2 module, read directly on the server.

At a glance
  • 100% free plugin: the official connector for the DataFirefly Server-Side Tracking service.
  • Full funnel, client + server, deduplicated by a shared event_id (keyed on the order).
  • The purchase fires server-side from WooCommerce: impossible to block, impossible to spoof.
  • Natively compatible with our DataFirefly Cookie Consent v2 module (consent read on the server).
  • A DataFirefly Server-Side subscription is required for ingestion — from 39 €/month, hosted in the EU.
Free WooCommerce HPOS Client + Server GDPR / Consent Cookie Consent v2 compatible
Launch live demo
  • 30-day refund
  • 12 months updates
  • 24h support
server-side.datafirefly.com/
DataFirefly Server-Side — Tracking WooCommerce client + serveur (gratuit)
v2.0.1 · updated 2026-07-01
What it does

The short version.

01

One-key connection

Paste the dfss key from your DataFirefly client space: the plugin configures client and server tracking at once. One button, one test, your shop is live.

02

Full funnel, client + server

page_view, product view, add to cart, checkout, add payment info in the browser; the purchase on the server. Both layers share the same event_id, so no conversion is ever counted twice.

03

Server-side purchase, reliable and unspoofable

The purchase conversion fires from the WooCommerce order hooks (payment complete, processing, completed), idempotently. Ad-blockers and ITP can do nothing about it, and the public endpoint refuses any purchase sent from the browser.

04

Consent first — including Cookie Consent v2

Nothing fires until marketing consent is granted. The plugin natively detects our DataFirefly Cookie Consent v2 module and reads its cookie on the server; it also supports WP Consent API, Complianz, Cookiebot and IAB TCF v2.

05

No secret in the browser

Only public identifiers (pixel, measurement) are exposed on the client. The signing secret and your destination credentials stay on the server; every event is HMAC-signed before reaching the dispatcher.

06

Reliability: retry queue + activity panel

An undelivered event is queued and redelivered automatically (5-minute cron). An activity panel shows you in real time what is delivered, queued or rejected, with automatic refresh.

The long version

Everything you'd want to know before you install.

A detailed look at how DataFirefly Server-Side — WooCommerce client + server tracking (free) works, why we built it the way we did, and the thinking behind the features above.

§ 01

A free connector, a service that does the work

DataFirefly Server-Side is free and will stay free: it is the WooCommerce connector for the DataFirefly Server-Side Tracking service. The plugin captures your shop's events and signs them; the service delivers them server-side to your advertising and analytics platforms. You install the plugin at no cost, you subscribe to the service for ingestion and delivery. That split of roles is what makes installation trivial on the shop side and operation light on the server side.

§ 02

One key, everything configured

From your DataFirefly client space, copy the connection key (it starts with dfss). Paste it into the plugin, click Connect: client and server tracking activate together, a test event goes to the dispatcher, and the client tags are put in place for the destinations you configured. An advanced mode lets you, if needed, enter the tenant, the secret and the endpoint manually.

§ 03

Full funnel, client + server, without double counting

The plugin tracks the whole funnel in the browser: page view, product view, add to cart, checkout and add payment info. The purchase, meanwhile, fires server-side from WooCommerce. Both layers share the same event_id, keyed on the order, so Meta, GA4 and the rest deduplicate automatically. You recover the conversions the browser lets slip, without ever counting them twice.

§ 04

The purchase fires from the server: neither blocked nor spoofable

The purchase conversion is triggered by the WooCommerce order hooks (payment complete, processing, completed), idempotently: the same purchase is never sent twice, even if several hooks fire. Because it comes from the server, no ad-blocker or ITP can prevent it. Conversely, the public collection endpoint deliberately refuses any purchase sent from the browser: no one can inject fake conversions to inflate your Meta or GA4 revenue.

§ 05

Consent first — compatible with Cookie Consent v2

The consent gate is on by default: nothing fires until marketing consent is granted. The plugin natively detects our DataFirefly Cookie Consent — GDPR & Google Consent Mode v2 module and reads its consent cookie directly on the server: if the marketing category is refused, the event is discarded, whatever the browser claims. No banner yet? The plugin also supports WP Consent API, Complianz, Cookiebot and IAB TCF v2. Paired with Cookie Consent v2, you get a consistent chain: banner, Consent Mode v2 and server-side tracking that speak the same language.

§ 06

Reliability and transparency

An event that could not be delivered is not lost: it is queued and redelivered automatically every 5 minutes. The activity panel shows you, live and without jargon, what has been delivered, what is queued and what has been rejected, with the HTTP code and the number of attempts. Your destination credentials and the signing secret never leave the server; only public identifiers reach the browser, and every event is HMAC-signed.

§ 07

Move up to the DataFirefly Server-Side subscription

The plugin captures and signs; the DataFirefly Server-Side Tracking service ingests and delivers server-side to five destinations: Meta CAPI, GA4, TikTok Events API, Pinterest Conversions API and Google Ads. The dispatcher is hosted in Germany, ingestion is HMAC-signed, personal data is masked and firing respects consent. One integration, one consolidated invoice, several sites possible. Discover the plans and subscribe at server-side.datafirefly.com: Starter at 39 €/month (1 site, up to 500K events), Growth at 119 €/month (5 sites, up to 2M), Scale at 349 €/month (20 sites, up to 10M). The plugin is ready: all it needs is your key.