Marketo

Marketo

Marketing automation and email platform for B2B companies. The Marketo Munchkin script tracks every page view and form submission to build behavioral profiles for lead scoring and nurture campaign segmentation. Sets a persistent cookie to identify visitors who have previously filled out a Marketo form.

Back to Vendor Library

Overview

Marketo (now part of Adobe) is a marketing automation and email platform primarily used by B2B companies for lead generation, scoring, and nurture campaigns. Its JavaScript tracker (Munchkin) builds behavioral profiles of website visitors to drive automated marketing workflows.

What This Script Does

The Marketo Munchkin script is a persistent behavioral tracker that operates on every page load:

  • Page view tracking: Records every page the visitor views, including the full URL, referrer, and query parameters. Each page view is sent to Marketo's servers in real time.
  • Persistent cookie: Sets a first-party cookie (_mkto_trk) with a long expiration (typically 2 years) to identify visitors across sessions. This cookie links anonymous browsing history to a known lead record when the visitor submits a Marketo form or clicks a tracked email link.
  • Form tracking: Captures all Marketo form submissions (and optionally non-Marketo forms) including field values. Form data is sent to Marketo's servers and associated with the visitor's cookie-based profile.
  • Click tracking: Monitors outbound link clicks and custom events defined by the site owner.
  • Identity stitching: When a visitor clicks a link in a Marketo email, the mkt_tok URL parameter connects the anonymous cookie profile to a known contact record in Marketo's database, retroactively associating all prior browsing history with that individual.
  • Lead scoring signals: All collected behavioral data feeds into Marketo's lead scoring models, which assign point values to activities (page views, form fills, email clicks) to prioritize sales outreach.
  • API calls: The Munchkin script makes requests to munchkin.marketo.net on every page load and interaction event.

The script builds comprehensive behavioral profiles that combine browsing history, form submissions, email engagement, and custom events into unified lead records.

Consent & Compliance

Marketo is a marketing and analytics tool with significant privacy implications:

Under GDPR/ePrivacy:

  • The Munchkin script requires explicit opt-in consent. It sets a persistent tracking cookie, builds detailed behavioral profiles, and transmits personal data to a third-party processor (Adobe/Marketo).
  • The identity stitching feature — retroactively linking anonymous browsing to a known individual — is particularly sensitive under GDPR's data minimization and purpose limitation principles.
  • Marketo forms that collect personal data require their own lawful basis (typically consent), separate from the tracking consent.

Under CCPA:

  • Marketo's data collection must be disclosed in the privacy policy.
  • If Marketo data is used for cross-context behavioral advertising, it may constitute a sale/share requiring opt-out mechanisms.

Under ePrivacy:

  • The _mkto_trk cookie is non-essential and requires consent before being set.

Should You Block This Without Consent?

Yes. Marketo Munchkin is a comprehensive behavioral tracking system that builds detailed visitor profiles for marketing automation. It sets persistent cookies, tracks all page views and interactions, and performs identity stitching. This requires explicit opt-in consent under GDPR/ePrivacy. Block the Munchkin script entirely until marketing consent is granted. Marketo forms can be loaded separately if needed, but they should also be gated behind consent if the tracking script is active.

Visit website

Consent Categories

Marketing
Analytics

Also Known As

Marketo MunchkinMarketo trackingmarketing automationlead scoringB2B marketingMarketo cookieAdobe Marketo Engage

Industries

Business and Consumer ServicesComputers Electronics and TechnologyHeavy Industry and EngineeringMarketing and Advertising

Tracked Domains (2)

marketo.comMarketing
munchkin.marketo.netMarketing

Frequently Asked Questions

Why is Marketo's identity stitching a consent concern?

Marketo retroactively links anonymous browsing history to a known contact when a visitor submits a form or clicks a tracked email. Visitors who browsed before consenting may have pre-consent data merged into their profile — a data minimization violation under GDPR.

What does the Marketo Munchkin cookie track?

The _mkto_trk cookie (2-year expiry) identifies visitors across sessions. It links page views, referrer data, and outbound link clicks to a lead record in Marketo, enabling lead scoring models to assign point values to behavioral activities and prioritize sales outreach.

How does ConsentStack handle Marketo?

ConsentStack blocks the Marketo Munchkin script entirely until marketing consent is granted. This prevents pre-consent browsing data from being captured or retroactively stitched to contact records. ConsentStack also supports loading Marketo forms separately from the tracking script if form functionality is needed independently.

Related Vendors

Google Ads
Google Ads
Google Ads is Google's advertising platform for search, display, and remarketing campaigns. Conversion tracking scripts fire on advertiser landing pages to measure actions taken after ad clicks. The remarketing tag builds audience lists for retargeting users across Google's ad network.
Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Microsoft Dynamics 365
Microsoft Dynamics 365
Microsoft Dynamics 365 is a suite of CRM and ERP applications that integrates with websites through tracking scripts and embedded forms. Web tracking code captures visitor behavior, page views, and form submissions to build customer profiles and score leads. Sets cookies to identify returning visitors and attribute marketing touchpoints across sessions.
Microsoft
Microsoft
Runs Clarity (session recording and heatmaps), the Microsoft Advertising UET tag (conversion tracking), and Bing's remarketing pixel. Clarity injects a recording script that captures mouse movements, clicks, and rage clicks. The UET tag fires conversion events to tie ad clicks to on-site actions across Microsoft's ad network.
Microsoft Advertising UET Tag
Microsoft Advertising UET Tag
Microsoft Advertising UET Tag is the Universal Event Tracking pixel for Microsoft's ad platform, formerly Bing Ads. The JavaScript tag fires on advertiser websites to track page views, conversions, and custom events for campaign optimization. Sets cookies to identify visitors across sessions and attribute conversions to Microsoft Search and Audience Network ad clicks.
LinkedIn Ads
LinkedIn Ads
LinkedIn Ads is LinkedIn's advertising platform for B2B marketing and professional audience targeting. Conversion tracking scripts and pixels fire on advertiser websites to measure sign-ups, downloads, and purchases driven by LinkedIn ad campaigns. Sets cookies for audience matching, retargeting list building, and cross-device attribution reporting.

Manage consent for Marketo

ConsentStack automatically detects and manages Marketo trackers so your site stays compliant with global privacy regulations.

Get started free