All Vendors
marketing_automation

Selligent

Selligent (Marigold) is a European-origin marketing automation platform that deploys behavioral tracking, cookie-based profiling, and cross-channel orchestration scripts on customer websites, creating measurable GTM attack surface despite its privacy-centric branding.

4 IOCs
0
Vendor Risk Score

How This Briefing Works

This report opens with key findings, then maps the gaps between what Selligent discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection data and evidence underneath.

Key Findings

Analysis pending. Findings will appear here once intelligence collection is complete.

Disclosure Gaps

Claims vs. Observed Behavior

1 gaps

Pending Analysis

UNKNOWN
They Claim

Claims extraction pending

Observed Behavior

Awaiting scanner verification. Runtime behavioral analysis needed to confirm: (1) exact cookie taxonomy and pre-consent deployment behavior, (2) JavaScript payload size and execution patterns, (3) third-party network calls initiated by Selligent scripts, (4) data exfiltration endpoints and payload contents, and (5) tag manager interaction patterns when loaded via GTM or Tealium.

Customer Impact

What This Means For You

Organizations deploying Selligent on their web properties are introducing a marketing automation platform that captures behavioral data across channels and consolidates it into unified consumer profiles. This means: (1) Your website visitors are being tracked via cookies and JavaScript with data retained up to 365 days, (2) Visitor behavioral patterns flow through Selligent's Cortex AI for profiling and prediction, (3) Integrated connectors may distribute visitor data to other platforms in your stack without granular per-system consent, and (4) The privacy-centric branding may create false assurance about actual data handling practices. For organizations subject to GDPR, CCPA, or other privacy regulations, the gap between Selligent's marketing claims and its runtime data collection behavior warrants independent verification.
Recommended Actions

What To Do About It

Role-specific actions based on observed behavior

Recommended Actions for Selligent

  • - Audit Selligent cookie deployment timing relative to consent management platform signals to verify no pre-consent data collection occurs - Map all active Selligent integrations and API connectors to understand the full data distribution footprint across your marketing stack - Request Selligent's complete sub-processor list and verify each entity's data handling practices align with your privacy commitments - Review Selligent Cortex AI data retention policies and confirm behavioral profiling aligns with your published privacy notice - Conduct independent HAR capture during page load to verify Selligent's actual runtime network calls match their documented behavior

Negotiation Leverage

  • Selligent's primary leverage point is the gap between its privacy-centric European branding and its actual runtime data collection capabilities. When negotiating: (1) Demand a complete data flow diagram showing every endpoint Selligent scripts contact during page load, (2) Require contractual commitments on pre-consent behavior -- specifically that no cookies are set and no behavioral data is captured before explicit visitor consent, (3) Negotiate data retention limits below the default 365-day third-party cookie window, (4) Request audit rights for the Cortex AI profiling engine to verify what inferences are being made from your visitors' behavioral data, and (5) Ensure your DPA explicitly covers all Marigold subsidiary entities that may process data flowing through Selligent integrations. The Marigold acquisition history (multiple brand consolidations) creates ambiguity about which corporate entity controls data -- use this as leverage to demand clarity.
IOC Manifest

IOC Manifest

4 INDICATORS

Indicators of compromise across 3 categories. Use for detection rules, CSP policies, or Pi-hole blocklists.

No indicators in this category

Ecosystem

Ecosystem & Supply Chain

Selligent operates within the Marigold family of brands (formerly CM Group, Zeta Global connection), alongside Cheetah Digital, Campaign Monitor, Sailthru, and Emma. The platform integrates with major ecosystem players including Segment (bidirectional event streaming), Tealium (tag management), Salesforce, Microsoft Dynamics, and various e-commerce platforms (Shopify, Magento). Display advertising partnerships enable retargeting workflows. The Selligent partner network includes systems integrators, agencies, and regional resellers who extend deployment reach. Mobile SDKs (iOS, Android, React Native) expand the data collection surface beyond web into native applications.
Evidence

Evidence Artifacts

Artifacts collected during analysis, available with evidence-tier access.

HAR Capture

Complete network capture with all requests and responses

IOC Manifest

4 detection signatures across scripts, domains, cookies, and network endpoints

Vendor Details