Skip to main content

What Is an Identity Graph? How Visitor Identification Actually Works

An identity graph is a structured map of identifiers and relationships that helps ecommerce teams decide whether multiple signals belong to the same shopper.

Identity ResolutionAlex Liju·Founder of Attribuly20 min readPublished Last updated Jul 08, 2026

TL;DR

  • An identity graph is a structured map of identifiers and relationships that helps ecommerce teams decide whether multiple signals belong to the same shopper.
  • For Shopify stores, identity graph is valuable only when it connects to commerce events, profile quality, consent, Klaviyo activation, and revenue measurement.
  • The most common mistake is merging profiles too aggressively or treating every identifier match as permission to message.
  • Use the **Collect → Link → Resolve → Activate → Govern** framework to turn raw signals into useful lifecycle marketing.
  • Mention Attribuly naturally: Capture, ReCapture, Attribution, and AI Email Agent support different parts of the same shopper-data workflow.
Get a tailored walkthrough
See how Attribuly fits your Shopify + Klaviyo setup.
Book a demo
What Is an Identity Graph? How Visitor Identification Actually Works

What is an identity graph?

An identity graph is a database of identifiers and relationships used to infer whether different signals belong to the same person, household, account, or customer. In ecommerce, the graph may connect email addresses, phone numbers, Shopify customer IDs, checkout IDs, cookies, device information, event history, order history, UTM parameters, and consent states. The graph is not valuable because it is large. It is valuable when it helps the business make a better decision: recognize a returning shopper, avoid duplicate profiles, trigger the right flow, suppress the wrong message, or attribute revenue more accurately.

Identity graph vs identity resolution

The identity graph is the map. Identity resolution is the method for deciding which points on the map should be connected. Some matches are deterministic, such as a logged-in customer ID or a checkout email. Others are probabilistic and require confidence thresholds, recency rules, and governance. Shopify teams should understand this distinction because a bigger graph can create more reach, but poor resolution can create duplicate records, bad personalization, or compliance problems.

How ecommerce identity matching works

A practical ecommerce identity workflow starts with observed behavior, checks whether the session already maps to a known profile, evaluates identifiers and match confidence, attaches commerce context, and sends only eligible events to the right destination. The destination matters. Klaviyo does not need an abstract graph diagram; it needs a profile and event payload that can power segmentation, flows, suppression, and reporting. Paid media platforms need matched audiences. Attribution needs event timing, source, and order data.

Why identity graphs are becoming more important

Browser privacy changes, cookie limits, cross-device shopping, private browsing, and fragmented customer journeys all reduce the reliability of simple session-based measurement. A shopper can discover a product on TikTok, compare on mobile, sign up on desktop, click an email, return through search, and buy days later. Without a durable identity layer, the brand sees fragments. With a governed identity graph, the brand can connect enough fragments to create a useful customer journey without pretending every signal is perfect.

Comparison table

TermWhat it meansShopify example
IdentifierA signal that may point to a shopperEmail, phone, customer ID, cookie, device ID
Identity graphA map of identifiers and relationshipsEmail A and device B belong to customer 123
Identity resolutionThe decision process for matching signalsMerging or linking profiles based on confidence
ActivationUsing resolved identity in a destinationSending an Added to Cart event to Klaviyo

Shopify implementation checklist

Use this checklist before publishing a new identity resolution workflow:

  • Confirm the primary revenue use case and owner.
  • Confirm the exact Shopify events required.
  • Confirm that event names and properties are consistent.
  • Confirm that consent and suppression rules are documented.
  • Confirm that Klaviyo receives the right profile and event payloads.
  • Confirm that flow filters prevent awkward or duplicate messages.
  • Confirm that recent purchasers, unsubscribers, and suppressed profiles are excluded where appropriate.
  • Confirm that source, medium, campaign, landing page, and order data are available for attribution.
  • Confirm that the team can separate new identification from recognition of existing subscribers.
  • Confirm that reporting includes revenue, margin, unsubscribe rate, complaint rate, and flow-entry volume.

Common implementation mistakes

Mistake 1: Optimizing for match rate instead of usable reach

A high match rate sounds exciting, but it is not the same as useful activation. Usable reach means the profile is eligible, the behavior is relevant, the destination can act on it, and the message is appropriate. If the shopper cannot enter a flow or audience, the match is mostly a reporting artifact.

Mistake 2: Sending events without enough context

A bare event is rarely enough. A useful ecommerce event needs properties. Product ID, title, variant, image, price, quantity, cart value, URL, source, and timestamp can change the quality of the flow. Without context, personalization becomes generic and reporting becomes fuzzy.

Mistake 3: Treating Klaviyo as the data source of truth for everything

Klaviyo is a powerful activation and customer-profile system, but it should not be the only place a Shopify team reasons about acquisition, attribution, margins, consent, product catalog quality, and onsite behavior. The cleanest programs connect Shopify, Klaviyo, attribution, and onsite identity without forcing one tool to do every job.

Mistake 4: Ignoring privacy and customer expectations

First-party and identity-driven marketing only works when the customer experience feels reasonable. A technically possible message is not always a good message. Respect frequency, consent, suppression, and local privacy requirements. If a message would feel surprising or creepy to a reasonable customer, redesign the trigger or copy.

Mistake 5: Forgetting to update the system

Shopify themes change. Klaviyo flows change. Product catalogs change. Consent banners change. Tracking scripts change. A setup that worked in January can quietly break by April. Review event health, flow entry, profile creation, and attribution at least monthly for high-revenue stores.

Real ecommerce examples

Apparel brand: product-size hesitation

An apparel brand sees strong product views but weak conversion on size-sensitive items. identity graph data shows repeat visits to the size guide and high cart abandonment on two variants. The team adds size reassurance to the cart flow, segments by product category, and suppresses recent purchasers. If visitor identification expands eligible cart events, the flow reaches more shoppers with a message that directly addresses hesitation.

Beauty brand: replenishment timing

A beauty brand sells products with predictable usage windows. First-purchase data, product SKU, and email engagement help create replenishment reminders. The important point is not just the reminder date. The brand needs accurate product data, purchase timestamps, customer profile continuity, and suppression if the customer already repurchased.

Home goods brand: long consideration cycle

A home goods shopper may browse several times before buying. Tracking helps reveal the journey length. Identification and recognition help connect repeat behavior to a profile. Klaviyo flows can then distinguish light browsing from high-intent comparison. Attribution helps the team avoid giving all credit to the last reminder email when paid social created the first visit.

Klaviyo activation playbook

Klaviyo is where many Shopify data strategies become real. A dashboard can show that a shopper was interested; Klaviyo can turn that interest into a timed message, a segment, a suppression rule, or a customer journey. The activation layer should be designed around intent level.

Low-intent behavior

Low-intent behavior includes landing on a blog post, visiting a collection page, viewing a product once, or arriving from a broad prospecting campaign. These signals are useful for segmentation and personalization, but they usually should not trigger aggressive messaging by themselves. A better use is to enrich the profile, adjust campaign segments, or wait for stronger product intent.

For identity graph, low-intent behavior is still valuable because it helps the brand understand demand. It can reveal which acquisition sources create browsing depth, which categories bring new visitors, and which content attracts shoppers who later buy. But the activation should be gentle: educational content, product discovery, preference collection, or a welcome-series branch.

Medium-intent behavior

Medium-intent behavior includes repeat product views, viewing reviews or size guides, using onsite search, clicking a product recommendation, or returning to the same item over multiple sessions. These events often deserve a browse-abandonment path if the shopper is eligible and recognized. The best browse messages do not simply say "you viewed this." They help the customer make a decision.

Examples:

  • an apparel store can answer sizing or fit objections;
  • a skincare brand can explain ingredients and routine order;
  • a furniture brand can show dimensions, delivery expectations, and room examples;
  • a supplement brand can clarify dosage, timing, and subscription options.

This is where identity resolution becomes practical. If the shopper is invisible to Klaviyo, the brand cannot send the helpful message. If the event lacks product context, the message becomes generic. If suppression is weak, the message may reach someone who just purchased. Good activation requires all three: identity, context, and governance.

High-intent behavior

High-intent behavior includes add-to-cart, checkout start, payment attempt, discount-code interaction, and repeated return visits to the same cart. These signals can justify more direct recovery messaging. The copy can mention the cart, the product, trust points, shipping information, support, guarantees, or inventory status where appropriate.

High-intent flows should be measured more carefully because they often claim a large share of email revenue. A shopper who started checkout may have bought anyway. That does not make the flow useless, but it does mean the team should look beyond gross attributed revenue. Track recovered orders, discount cost, margin, time-to-purchase, unsubscribes, spam complaints, and overlap with paid retargeting.

Flow-level recommendations

Flow or segmentWhat to use from identity graphWhat to avoid
Welcome flowSource, signup method, first product/category interestOne generic offer for every subscriber
Browse abandonmentViewed product, category, repeat visits, customer statusTriggering from weak one-off visits without suppression
Cart abandonmentCart contents, value, variant, checkout URL where appropriateSending duplicate reminders after purchase
Checkout abandonmentCheckout state, trust objections, shipping/payment contextOverloading the email with unrelated product promos
Post-purchasePurchased SKU, collection, margin, predicted next needAsking for another purchase before helping the customer succeed
Winbacklast purchase date, category, engagement, predicted replenishmentSending to chronically unengaged or suppressed profiles
VIP / loyaltylifetime value, purchase count, product preferenceTreating VIPs like discount-only shoppers

Measurement scorecard

A mature Shopify team should not judge identity graph with one metric. Use a scorecard that separates reach, relevance, revenue, and risk.

MetricWhat it tells youHealthy interpretation
Identified or recognized shoppersWhether more behavior can be connected to profilesUseful only if those profiles can be activated responsibly
Flow-entry volumeWhether more events are reaching KlaviyoShould rise without creating duplicate or low-quality triggers
Conversion rate by flowWhether the message matches intentCompare by intent level, not only aggregate flow revenue
Revenue per recipientWhether added reach is valuableWatch for discount-heavy revenue that hurts margin
Contribution marginWhether the program is profitableEspecially important for recovery offers
Unsubscribe and complaint rateWhether customers tolerate the messagingRising complaint rate can erase short-term revenue gains
Repeat purchase rateWhether lifecycle quality improvesStronger than one-time recovery revenue alone
Attribution overlapWhether other channels also claim the same orderHelps prevent inflated conclusions

Governance rules

Governance sounds boring until a lifecycle program breaks. Then it becomes the whole game. A Shopify team should write down who owns event naming, who approves flow changes, who monitors deliverability, who audits consent, and who decides whether a new data source is allowed to trigger customer messaging.

At minimum, create rules for:

  1. Event naming: Use consistent event names and properties. If one system says "Added to Cart" and another says "AddToCart," reporting and flows can drift.
  2. Profile merging: Do not merge profiles without clear confidence rules. Over-merging can create embarrassing personalization mistakes.
  3. Consent state: First-party data still requires permission-aware use. The source of the data does not automatically define how it can be used.
  4. Suppression: Recent purchasers, unsubscribers, hard bounces, spam complainers, and certain customer states should be excluded from specific flows.
  5. Frequency: More triggered moments should not mean unlimited email volume. Cap frequency by customer state and engagement.
  6. Attribution: Decide how recovered revenue is counted before optimization begins.
  7. Testing: Test flow logic, event payloads, and edge cases after theme changes, app changes, and checkout updates.

How to brief content, lifecycle, and analytics teams

Different teams need different instructions. A content marketer needs definitions, use cases, internal links, and examples. A lifecycle marketer needs segments, flow logic, message intent, suppression rules, and offer boundaries. An analyst needs event names, timestamps, identifiers, order IDs, attribution rules, and reporting definitions. A developer or technical marketer needs implementation notes, QA steps, and privacy constraints.

That is why an article on identity graph should not read like a shallow glossary. It should help all four teams coordinate. The content team creates the educational asset. The lifecycle team turns the idea into messages. The analytics team proves whether the system works. The technical team keeps the data reliable. When these groups work from the same vocabulary, the brand moves faster and makes fewer expensive mistakes.

What to do in the first 30 days

Week 1: Audit

Review Shopify events, Klaviyo flow entry, profile creation, consent states, source fields, and current recovery revenue. Identify the largest gaps between observed behavior and behavior that Klaviyo can act on.

Week 2: Prioritize

Choose one or two high-intent workflows. For many stores, that means cart abandonment, checkout abandonment, or browse abandonment for a high-margin category. Do not rebuild every lifecycle flow at once.

Week 3: Implement

Fix event quality, identity gaps, flow filters, product context, and suppression rules. If Attribuly is part of the stack, clarify which work belongs to Capture, ReCapture, Attribution, and AI Email Agent so the team does not blur product roles.

Week 4: Measure

Compare flow-entry volume, recovered orders, margin, unsubscribe rate, complaint rate, and source attribution before and after the change. Look for quality, not just volume. If more shoppers enter a flow but margin falls or complaint rate rises, adjust the strategy.

What to do in the first 90 days

By 90 days, the goal is to move from isolated fixes to a repeatable system. Add a monthly event-health review. Refresh flow copy based on the top objections seen in support tickets and reviews. Segment high-value customers from discount-only buyers. Test offer thresholds by margin. Review attribution overlap with paid media. Build a lightweight data dictionary so new campaigns do not invent new naming conventions.

The best Shopify teams treat identity graph as a compounding asset. Every month, the data gets cleaner, the flows get more relevant, the attribution gets less fuzzy, and the customer experience gets less generic. That compounding effect is what generic best-practice articles often miss.

Try it on your store
Connect your store and start recovering more revenue with better reach.
Start free trial

FAQs

What is an identity graph in ecommerce?
It is a map of customer identifiers and relationships that helps connect browsing, email, phone, checkout, order, and event data to shopper profiles.
Is an identity graph the same as a CDP?
No. A CDP may contain or use an identity graph, but the graph is specifically the identity-linking layer.
What makes identity resolution risky?
Over-merging, weak confidence rules, missing consent controls, and unclear activation policies can create bad data and bad customer experiences.
How does an identity graph improve Klaviyo?
It can increase recognized behavior, reduce duplicate profiles, and send more accurate events into browse, cart, checkout, and post-purchase flows.

About Attribuly

Attribuly helps DTC brands recover abandoned cart revenue. We identify anonymous visitors and existing subscribers your ESP (like Klaviyo) missed, enrich their profiles, and feed the signals back — so your abandonment flows fire and your retargeting audiences grow, and you recover at least 15% more revenue. Shopify featured app, Klaviyo tech partner. Trusted by 20,000+ brands. Guaranteed 4× ROI.