Do You Need an EU Representative for Google Ads?

You finally did it. Campaign built, keywords picked, and because your product sells just as well in Munich as in Miami, you set the location targeting to Germany and France. Then Google starts behaving strangely. It wants your identity verified. It mentions something called the Digital Services Act. And somewhere in a help article you hit the phrase "EU representative" and think: do I need to hire someone in Brussels just to run search ads?

The short version: Google Ads itself does not force you to appoint an EU representative. EU law does, and it does so the moment your campaigns start tracking people in the EU. The trigger is not the ad budget. It is the conversion pixel quietly watching what 450 million Europeans do after they click.

Let us untangle who is actually asking for what, because three different things get mixed up here constantly.

Where "EU representative" actually appears inside Google Ads

If you search your Google Ads account for the words "EU representative" you will find them in exactly one place: election ads. To run political advertising in the EU, Google demands that the advertiser is either based in an EU member state or acts through an authorised representative who is. If you sell software, supplements or sneakers, this requirement is not about you. You can stop worrying about that page.

What does apply to every advertiser is identity verification. Google has been rolling this out to all accounts, and since the Digital Services Act took effect for ad transparency in February 2024, every ad shown to users in the EU carries a disclosure: who paid for it, the advertiser's verified name, and their location. Your US LLC's name is now displayed, in public, to every EU user who clicks "About this ad."

Notice what just happened there. Google satisfied its own DSA duties by making you visible to European users and European regulators. The platform's homework is done. Yours is just beginning.

The trigger is not the ad. It is the tracking.

Here is the part most US advertisers miss, and it is the one that matters.

The GDPR does not care where your company is registered. Article 3(2) extends it to any company outside the EU that either offers goods or services to people in the EU, or monitors their behaviour. Targeting German customers with ads built to sell to Germans already leans on the first prong. But the second prong is where Google Ads walks you straight in.

Think about what a well-run campaign actually does:

• Conversion tracking records what an identifiable visitor did on your site after clicking your ad.
• Remarketing lists follow past visitors around the web to show them your ads again.
• Audience signals and customer match profile users by behaviour, interests and purchase intent.

Every one of those is behavioural monitoring of people in the EU. It is not an edge case or a lawyer's stretch. Following individuals across sessions to predict and influence what they buy is the textbook example of what Article 3(2)(b) was written for.

And once the GDPR applies to a company with no office in the EU, Article 27 attaches its own requirement: appoint a representative physically established in the Union, name them in your privacy notice, and give EU users and regulators a real point of contact. The exemption exists only for processing that is occasional, low risk and free of sensitive data. A campaign that runs every day, builds audiences and optimises on behaviour is the opposite of occasional.

The ad platform is American. The audience is European. The legal duty follows the audience, not the platform.

Google's own rulebook quietly assumes you did your homework

Google is not the GDPR police, but its policies are built so that non-compliant advertisers eventually hit a wall.

The EU user consent policy requires every advertiser using personalised ads in the European Economic Area to obtain valid consent from users. Since March 2024 that policy has teeth: advertisers must use a Google-certified consent banner and pass Consent Mode v2 signals with their tags. No valid consent signals means your remarketing lists for EU traffic stop filling, your conversion data degrades, and the expensive machine learning you are paying for starts flying blind.

So the practical stack for a US company advertising into the EU looks like this:

1. A compliant consent banner on your site, wired to Consent Mode v2, so Google's tags only fire the way each user allowed.
2. A privacy notice that tells the truth, including what your ads stack tracks and who your EU representative is.
3. An Article 27 EU representative, because your tracking makes the GDPR apply, and the GDPR requires an EU contact point once it does.
4. A way to answer data subject requests, because the same EU users you are remarketing to have the right to ask what you hold on them.

Most advertisers get the first item done because Google forces it. The other three are invisible until a user complains, a regulator asks, or a partner runs due diligence on you. That order is not a coincidence. Platform requirements are loud, legal requirements are quiet, and quiet requirements are the ones that show up later with interest.

And while we are listing quiet requirements: almost every Google Ads account has a Google Analytics property sitting next to it, measuring the same EU visitors. Analytics has its own track record in Europe. In 2022, the Austrian and French data protection authorities both ruled that the standard Google Analytics setup of that era unlawfully transferred EU user data to the United States, and ordered websites to stop using it. The legal landscape has since improved with the EU-US Data Privacy Framework, but the episode made one thing permanent: European regulators read your measurement stack as seriously as your marketing. If your GA4 property collects EU traffic for a company with no EU establishment, it is one more processing activity your Article 27 representative is there to answer for, and one more reason the appointment is not optional paperwork.

What happens if you skip it

Being honest: nobody gets a knock on the door for running search ads without an EU representative on day one. Enforcement against non-EU companies usually starts with something else, a complaint about ignored deletion requests, a breach, a data-hungry product in the press. We wrote about who actually gets fined and the pattern is consistent.

But the missing representative changes how those situations unfold. It is a violation that takes a regulator one page view to prove, sitting in the penalty tier of up to €10 million or 2 percent of global turnover. And it removes the one mechanism that could have de-escalated the problem: a contact in the EU who receives the authority's letter, responds in time and keeps a complaint from maturing into a case file. The companies that get hurt are rarely the ones who asked "do I need this?" too late. They are the ones whose first EU correspondence went unanswered because it was mailed to an address that did not exist.

There is also a commercial angle that has nothing to do with regulators. Your verified identity is now stamped on every EU ad impression. EU buyers, partners and procurement teams can and do check whether the company behind the ad has a privacy notice that holds up. An advertiser visibly compliant with Article 27 reads as a company that intends to stay in the market. An advertiser without one reads as a tourist.

The five-minute version for busy founders

If you want the decision logic without the law degree:

1. Do your Google Ads campaigns target EU countries? If no, close this tab and go optimise your Quality Score.
2. Do you use conversion tracking, remarketing or audience features on that EU traffic? If yes, you are monitoring EU users and the GDPR applies to you.
3. Do you have an office or subsidiary in the EU? If yes, that entity anchors your compliance. If no, Article 27 requires you to appoint an EU representative.
4. Is your consent banner passing Consent Mode v2 signals? If not, fix it before Google's audience features quietly stop working for Europe.

Running Google Ads into Europe is one of the smartest growth moves a US company can make. The market is huge, the competition in many niches is thinner than at home, and as we found in our own research, even established players leave surprising gaps. Just remember that the moment your pixel starts watching European behaviour, Europe acquires the right to watch back. Appoint your EU representative, wire up your consent signals, and then spend your energy where it belongs: on ads people actually want to click.