Brevo

Brevo

Brevo (formerly Sendinblue) is an all-in-one marketing platform offering email, SMS, chat, and CRM tools. Scripts may embed signup forms, chat widgets, or track email click-throughs via redirect links on host websites. Behavioral data collected supports automation workflows and lead scoring.

Back to Vendor Library

Overview

Brevo (formerly Sendinblue, rebranded 2023) is a Paris-based all-in-one marketing platform offering email campaigns, SMS marketing, transactional email, live chat, CRM, and marketing automation. Founded in 2012, Brevo serves over 500,000 businesses globally, with a particular concentration among small and mid-size companies in Europe. On websites, Brevo appears through its site-tracking script, embeddable newsletter signup forms, pop-up widgets, and the Brevo Conversations live chat widget. Brevo holds ISO 27001 certification and stores European customer data on servers within the EU.

What This Script Does

The Brevo tracking script loads from sibautomation.com (Brevo's automation domain) or js.brevo.com and initialises the site tracking and marketing automation layer. Separately, the Conversations chat widget loads from conversations-widget.brevo.com.

Cookies and identifiers set:

  • sib_cuid — Cross-session contact identifier set on the host domain; first-party cookie linking browsing behaviour to a Brevo contact record when the visitor is known (e.g. has submitted a form or clicked an email); expiry 180 days.
  • sib_session — Session cookie managing the current browsing session for automation trigger evaluation; expires at session end.
  • brevo_cid — Visitor identifier for anonymous tracking prior to contact identification; expiry 13 months.
  • __brevo_cid — Alternative cookie name used in some configurations; same purpose as brevo_cid.

Script filenames and CDN: automation.min.js loaded from sibautomation.com; tracker.js from js.brevo.com; chat widget JS from conversations-widget.brevo.com/brevo-conversations-bundle.js.

Per-session data collected:

  • Page views with full URL, title, and referrer
  • UTM parameters and advertising attribution data
  • Form submissions (email address and form field values captured on submit)
  • Email link click-through events when visitor arrives via Brevo campaign
  • Behavioral triggers: time on page, scroll depth, exit intent (for automation rules)
  • Contact profile merge events when anonymous visitor is identified

Automation capabilities: The site tracking script evaluates automation workflow conditions in real time — triggering email sequences, assigning lead scores, updating contact properties in the Brevo CRM, and firing retargeting events based on page visits or behavioural patterns.

Consent & Compliance

Brevo scripts are classified under the marketing category. The site tracking, contact identification, and behavioral automation constitute marketing data processing under GDPR Article 6(1)(a). The sib_cuid and brevo_cid persistent cookies require prior opt-in consent under the ePrivacy Directive. Under CCPA/CPRA, linking browsing behaviour to named contact records constitutes collecting personal information for marketing purposes that must be disclosed with appropriate opt-out rights. The live chat widget may be treated as functional if loaded only upon explicit user initiation (clicking a chat icon), but the background tracking script always requires marketing consent. As a French company, Brevo operates under CNIL guidance, which takes a strict opt-in interpretation of ePrivacy requirements. Brevo's EU data residency provides a favourable GDPR transfer posture for European deployments.

Should You Block This Without Consent?

Yes. Brevo site tracking scripts collect behavioral data and set persistent cookies for marketing automation and contact identification. Block all Brevo tracking components until the user grants marketing consent. The live chat widget may be treated as functional only if it loads exclusively on user initiation with no background tracking.

Visit website

Consent Categories

Marketing

Also Known As

BrevoSendinblueBrevo formerly Sendinblueemail marketing consentSMS marketing GDPRnewsletter tracking

Industries

Computers Electronics and Technology

Tracked Domains (3)

sibautomation.comMarketing
sendinblue.comMarketing
brevo.comMarketing

Frequently Asked Questions

Does Brevo require consent before its tracking scripts load?

Yes. Brevo's site tracking script sets persistent cookies for contact identification and behavioral automation. These are marketing activities under GDPR Article 6 requiring prior opt-in consent. The live chat widget may load without consent only if it activates solely on explicit user initiation with no background tracking running.

What cookies and data does Brevo set on website visitors?

Brevo sets sib_cuid (180-day contact identifier linking browsing to CRM records), sib_session (session automation trigger cookie), and brevo_cid (13-month anonymous visitor ID). The tracking script records page views, form submissions, UTM parameters, and behavioral triggers including scroll depth and exit intent, reporting to sibautomation.com.

How does ConsentStack handle Brevo on a website?

ConsentStack classifies Brevo as marketing and blocks the site tracking script by default. The sib_cuid and brevo_cid cookies are not set until marketing consent is granted. ConsentStack can allow the Conversations chat widget as functional if it activates only on user click with no background tracking running simultaneously.

Related Vendors

Google Ads
Google Ads
Google Ads is Google's advertising platform for search, display, and remarketing campaigns. Conversion tracking scripts fire on advertiser landing pages to measure actions taken after ad clicks. The remarketing tag builds audience lists for retargeting users across Google's ad network.
Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Microsoft Dynamics 365
Microsoft Dynamics 365
Microsoft Dynamics 365 is a suite of CRM and ERP applications that integrates with websites through tracking scripts and embedded forms. Web tracking code captures visitor behavior, page views, and form submissions to build customer profiles and score leads. Sets cookies to identify returning visitors and attribute marketing touchpoints across sessions.
Microsoft
Microsoft
Runs Clarity (session recording and heatmaps), the Microsoft Advertising UET tag (conversion tracking), and Bing's remarketing pixel. Clarity injects a recording script that captures mouse movements, clicks, and rage clicks. The UET tag fires conversion events to tie ad clicks to on-site actions across Microsoft's ad network.
Microsoft Advertising UET Tag
Microsoft Advertising UET Tag
Microsoft Advertising UET Tag is the Universal Event Tracking pixel for Microsoft's ad platform, formerly Bing Ads. The JavaScript tag fires on advertiser websites to track page views, conversions, and custom events for campaign optimization. Sets cookies to identify visitors across sessions and attribute conversions to Microsoft Search and Audience Network ad clicks.
LinkedIn Ads
LinkedIn Ads
LinkedIn Ads is LinkedIn's advertising platform for B2B marketing and professional audience targeting. Conversion tracking scripts and pixels fire on advertiser websites to measure sign-ups, downloads, and purchases driven by LinkedIn ad campaigns. Sets cookies for audience matching, retargeting list building, and cross-device attribution reporting.

Manage consent for Brevo

ConsentStack automatically detects and manages Brevo trackers so your site stays compliant with global privacy regulations.

Get started