Treasure Data

Treasure Data

Treasure Data is an enterprise customer data platform. Scripts collect behavioral events from websites and mobile apps and route them to Treasure Data's cloud DWH for real-time audience segmentation and activation in marketing campaigns.

Back to Vendor Library

Overview

Treasure Data is an enterprise Customer Data Platform (CDP) founded in 2011 and headquartered in Mountain View, California. Acquired by Arm Holdings in 2018, Treasure Data operates a large-scale cloud data warehouse built on Apache Hadoop and Presto, designed to ingest, unify, and activate behavioural data at petabyte scale. Enterprise organisations — particularly in retail, automotive, financial services, and consumer goods — use Treasure Data to build unified customer profiles from website behaviour, mobile app events, offline transaction records, and third-party data sources. The unified profiles are then used for audience segmentation, personalisation, and marketing campaign activation.

What This Script Does

Treasure Data's website SDK loads from cdn.treasuredata.com and initialises as td in the global JavaScript namespace. The SDK captures a comprehensive stream of behavioural events and sends them to Treasure Data's cloud ingestion endpoints.

Cookies and identifiers:

  • td_uid — First-party persistent visitor identifier set on the host domain; created on first page load; expiry 2 years. This is the primary key used to stitch all behavioural events to a single visitor profile across sessions.
  • td_ssc_id — Server-side cookie complement used when the td_uid is set via a server-side helper to extend effective cookie lifetime beyond ITP restrictions; expiry 1 year.
  • _td — Secondary analytics identifier sometimes deployed alongside td_uid for session deduplication; expiry 30 minutes to 1 year depending on configuration.

Script filename and CDN: sdk.js loaded from cdn.treasuredata.com/sdk/latest/ or a version-locked path. Event data is POSTed to in.treasuredata.com/postback/v3/event/ using the host organisation's write API key.

Per-event data collected:

  • Full page URL, referrer, and title
  • UTM campaign parameters and traffic source attribution
  • Click events with target element metadata (CSS selector, href)
  • Form interaction events (field focus, submission — excluding sensitive field values by default)
  • Page visibility and scroll depth
  • Session duration and engagement score
  • Device fingerprint components: user agent, screen dimensions, timezone, language
  • IP address (used for geolocation and enrichment at the CDP layer)

Downstream activation: Collected data feeds Treasure Data's audience segmentation engine, enabling real-time segment membership evaluation and activation to downstream marketing platforms including DMP partners, advertising DSPs, and marketing automation systems (Salesforce Marketing Cloud, Adobe Campaign, Braze).

Consent & Compliance

Treasure Data is classified under the analytics category, though its downstream marketing activation capability means it often functions as a marketing tool. Under GDPR Article 6, the persistent td_uid identifier and behavioural event collection require a lawful basis. When data is used solely for internal analytics with no third-party marketing activation, legitimate interest may apply; when it feeds advertising audiences or personalisation, explicit consent is required. IAB TCF Purpose 1 (Store/access device), Purpose 7 (Measure content performance), and Purpose 9 (Apply market research) are relevant. Under ePrivacy, the td_uid persistent cookie requires prior consent. Treasure Data participates in the EU-US Data Privacy Framework. Under CCPA/CPRA, if behavioural data is shared with advertising platforms for audience targeting, this may constitute a "sale" or "sharing" of personal information.

Should You Block This Without Consent?

Conditional. If Treasure Data is used solely for first-party internal analytics, a legitimate interest argument may be sustainable with appropriate balancing tests. If data feeds third-party marketing activation or audience sharing, block until the user provides explicit analytics and/or marketing consent.

Visit website

Consent Categories

Analytics

Also Known As

Treasure DataTreasureDataenterprise CDP consentcustomer data platform GDPRCDP tracking cookiesARM Treasure Data

Industries

Computers Electronics and TechnologyProgramming and Developer Software

Tracked Domains (1)

treasuredata.comMarketing

Frequently Asked Questions

Does Treasure Data CDP require consent to run on a website?

Yes for most deployments. The persistent td_uid cookie tracks visitors for two years and feeds behavioral data into marketing activation pipelines. Under GDPR and ePrivacy, this requires prior consent. If used solely for internal first-party analytics with no third-party sharing, a legitimate interest basis may apply with a proper balancing test.

What identifiers and data does the Treasure Data SDK set and collect?

Treasure Data sets td_uid (2-year primary visitor ID), td_ssc_id (1-year server-side complement for ITP bypass), and _td (session deduplication identifier). The SDK captures page URLs, UTM parameters, click events, form interactions, scroll depth, session duration, and device fingerprint components, batching events to in.treasuredata.com.

How does ConsentStack manage the Treasure Data script?

ConsentStack classifies Treasure Data as analytics and blocks the SDK until consent is obtained. For deployments activating audiences into advertising or DSP platforms, ConsentStack requires marketing consent before releasing the script. This ensures the td_uid tracking cookie is not set until the visitor explicitly agrees to data collection.

Related Vendors

Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Google Analytics
Google Analytics
Google Analytics is the world's most widely deployed web analytics platform. Scripts track page views, sessions, user demographics, traffic sources, and conversion events. Drops cookies to identify returning visitors and attribute user journeys across sessions.
Firebase
Firebase
Firebase is Google's mobile and web application development platform offering authentication, real-time database, cloud functions, and analytics. Web SDK scripts initialize Firebase services and may track app events via Firebase Analytics, which is powered by Google Analytics 4. Widely used in single-page apps and PWAs for backend infrastructure and usage tracking.
Microsoft
Microsoft
Runs Clarity (session recording and heatmaps), the Microsoft Advertising UET tag (conversion tracking), and Bing's remarketing pixel. Clarity injects a recording script that captures mouse movements, clicks, and rage clicks. The UET tag fires conversion events to tie ad clicks to on-site actions across Microsoft's ad network.
Microsoft Dynamics 365
Microsoft Dynamics 365
Microsoft Dynamics 365 is a suite of CRM and ERP applications that integrates with websites through tracking scripts and embedded forms. Web tracking code captures visitor behavior, page views, and form submissions to build customer profiles and score leads. Sets cookies to identify returning visitors and attribute marketing touchpoints across sessions.
LinkedIn Insight Tag
LinkedIn Insight Tag
LinkedIn Insight Tag is a JavaScript tracking pixel for LinkedIn's advertising and analytics platform. The tag fires on every page view to collect URL, referrer, IP address, and device data for conversion tracking, website demographics reporting, and retargeting audience building. Sets cookies to identify LinkedIn members across advertiser websites.

Manage consent for Treasure Data

ConsentStack automatically detects and manages Treasure Data trackers so your site stays compliant with global privacy regulations.

Get started free