QA mode · Tier:PUBLIC(override via ?tier=paid | premium)
← All Vendors
data_enrichment
Intentdata

Intentdata

Sells "contact-level" B2B intent data identifying individual prospects by name, email, phone, and company — identity resolution marketed as analytics. 5.9% pre-consent rate with DoubleClick, Google Ads, and Meta Pixel firing before consent. Privacy policy names zero subprocessors.

72 IOCs observed1 detections100% pre-consent1 sites
85
Vendor Risk Score
Tier: HOSTILE
Observation Coverage

BLACKOUT observes runtime behavior in the browser. This dossier reflects browser-side execution, which is one of five vendor data-egress classes. Server-to-server transfers, backend integrations, and offline data flows are outside this observation boundary.

BLACKOUT observes runtime behavior and cites the regulations that address that behavior pattern. Legal determinations are the customer's counsel's call.

How This Briefing Works

This dossier opens with key findings, then maps the gap between what Intentdata discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection evidence underneath. BLACKOUT observes runtime browser behavior and cites the regulations that address each pattern — legal determinations are your counsel's call.

Key Findings

At a Glance

Detections
1

across 1 sites

Pre-Consent Rate
100%

vendor fires before consent

Disclosure Gaps
4

2 HIGH

Claims-vs-Reality Classified
BTI-X01BTI-X02BTI-X05BTI-X08
Summary

Briefing

IntentData.io, operated by Consilium Global Business Advisors, LLC, provides "contact-level" B2B intent data that identifies individual prospects by name, email, phone, and company - a form of identity resolution marketed as analytics. Their own website deploys 5+ pre-consent tracking vendors (DoubleClick, Google Ads, GA4, HubSpot, Meta Pixel) while claiming GDPR compliance and honoring Do Not Track signals. The gap between their compliance claims and observed 5.9% pre-consent tracking rate represents a material disclosure deficiency.

Customer Impact

What This Means For You

If IntentData.io provides your intent intelligence, you are consuming contact-level data that identifies individual prospects by name, email, phone, and company. Under GDPR Art 14, you must inform data subjects within one month when their personal data is obtained from third parties — IntentData's contact-level identification creates this obligation for every lead received. Their 5.9% pre-consent rate with advertising pixels firing before consent suggests consent chain issues in their data collection. IntentData's privacy policy names zero subprocessors while 5+ vendors are detected at runtime. Using their service means your prospect intent signals may be sold to competitors subscribing to the same topic categories.

Collapse Engine

Risk Channel Breakdown

Oracle
Truth Collapse
40

As an intent data provider, IntentData corrupts measurement by adding their contact-level data to your CRM/MAP, potentially polluting attribution with questionable consent provenance. Their data sourcing method (mining the open web for contact information) creates uncertain data quality chains.

Broker
Control Collapse
100

IntentData explicitly sells demand signals - they identify who is researching topics at the individual contact level. Using their service means your prospect intent signals may be sold to competitors subscribing to the same topics.

Reaper
Safety Collapse
0

Loading 5+ third-party tracking scripts pre-consent on their own site demonstrates poor security hygiene. Their data collection methodology (web mining for contact details) creates potential legal exposure for customers who use the data.

Counselor
Legitimacy Collapse
100

Claims GDPR compliance and DNT honoring while demonstrating 5.9% pre-consent tracking. No subprocessor list despite clear third-party data sharing with Google, Meta, HubSpot. Marketing claims contact-level PII collection while privacy policy frames as analytics.

BTI Codes

Threat Indicators

Runtime-observed (BTI-C)

BTI-C01
Defeat Device

Evasion infrastructure, auditor bypass

BTI-C06
Behavioral Biometrics

Keystroke/mouse tracking

BTI-C08
Cross-Domain Sync

Identity stitching

BTI-C09
Consent Bypass

Ignoring CMP signals

BTI-C10
Fingerprinting

Device identification

BTI-C14
Identity Resolution

PII deanonymization

BTI-C15
Tag Manager

Container/loader (neutral)

Claims-vs-Reality (BTI-X)

BTI-X01
Undisclosed Party

Not in privacy policy

BTI-X02
Undisclosed Sharing

Hidden data recipients

BTI-X05
Compliance Claim Mismatch

False certification claims

BTI-X08
Scope Creep

Collection exceeds disclosed scope

4
BTI Consequences Identified

Per-code narrative explanations of what each detected behavior means for your organization

Available in VIDB Subscription

Per-code evidence with full attribution chain, severity rankings, and consequence narratives See pricing →

Disclosure Gaps

Claims vs. Reality

4
Gaps Observed
2 HIGH2 MEDIUM

BLACKOUT analyzed Intentdata's public claims against observed runtime behavior and identified 4 contradictions.

BTI-X01BTI-X02BTI-X05BTI-X08
Featured Gap
Subprocessor Disclosure
HIGH
They Claim

"Privacy policy mentions Contractors but provides no list"

BLACKOUT Observed

Observed DoubleClick, Google Ads, GA4, HubSpot, Meta Pixel on site

3 more gaps — with regulatory citations and evidence pointers — available with subscription.

Available in VIDB Subscription

Full claim-vs-reality gap analysis with claim text, observed behavior, severity, regulatory citations (GDPR, CCPA, ePrivacy), and evidence pointers per gap See pricing →

Recommended Actions

What To Do

Recommended Actions
10

5 for current users · 5 for evaluators

Negotiation Leverage
4

contractual leverage points

Available in VIDB Subscription

Role-specific actions (security / legal / marketing / procurement), full negotiation brief with contractual language, and BTI-code-specific consequences See pricing →

Ecosystem

Supply Chain & Pairings

Available in VIDB Subscription

Full supply-chain mapping (loads / loaded-by lists with vendor identities) and the undisclosed-subprocessor list with observation evidence See pricing →

Profile: intentdataFirst Seen: 2026-01-22Last Updated: 2026-01-22