Done-for-you offer · Fractional CMO with AI Swarm · foot-traffic-ingestion 3-skill bundle · territory agent
Continuous foot-traffic ingestion for multi-location retail, multi-unit franchise, and multi-location service operators — Capture + Normalize + Emit 3-skill bundle with cross-vendor consensus reconciliation, COVID-baseline adjustment, and a 5- anchor compliance gate
You operate 50-1,500 locations across 200+ trade areas. You license Placer.ai for retail trade-area analytics, SafeGraph for POI-level visit counts and visitor demographics, possibly Foursquare for movement panels, Cuebiq or Unacast for high- resolution mobility, Esri Business Analyst for trade-area definitions, Nielsen Spectra for consumer segment overlays, and CoStar + LoopNet + Reonomy if you have a commercial real-estate team using the same data for site-selection + lease-renewal decisions. Cross-vendor reconciliation matters because no single panel is statistically reliable in every trade area. COVID- baseline distortion (the 2020-2023 baseline is uneven across geographies and verticals) makes year-over-year comparisons unreliable without operator-counsel-and-data-science-team- approved adjustment. Per-vendor consent provenance attestation matters because the January 2024 FTC settlement with X-Mode/ Outlogic and the December 2024 FTC settlement with Mobilewalla established that unauthorized location-data collection or sale is an FTC Section 5 violation, and the Massachusetts AG v X- Mode 2024 settlement reinforced state-AG scrutiny. CPRA Section 1798.121 explicitly classifies precise geolocation as sensitive PI requiring opt-out, with the state-comprehensive-privacy patchwork following similar paths. The foot-traffic + mobility- data + geospatial + commercial-real-estate + demographic- enrichment + warehouse + reverse-ETL + clean-room + consent- management vendors below ship strong primitives. The orchestration above them — per-source Capture with consent- provenance verification, cross-vendor Normalize with COVID- baseline adjustment, cross-skill Emit to downstream agents — is operator-side architecture. The compliance gate is anchored on five real anchors: FTC mobile-location-data enforcement (X-Mode/Outlogic + Mobilewalla 2024 + MA AG v X-Mode 2024 + similar state-AG actions); CCPA/CPRA sensitive PI opt-out + state-comprehensive-privacy patchwork sensitive-PI + CalECPA + Maryland Online Data Privacy Act; GDPR Article 9 special categories + Article 6 + ePrivacy + EU Data Act + DSA; per- vendor consent provenance + DPA + SCC + CPNI when cellular- carrier-derived; SOC 2 Type II + ISO 27001 + ISO 42001 + NIST SP 800-218A + FTC Health Breach Notification Rule when foot- traffic data correlates with healthcare visits. You keep the vendor relationships, the consent-provenance attestation library, the normalization model, the COVID-baseline-adjustment library, the WORM audit trail, the policy-as-code policies, and the LLM prompts. You keep the ability to in-house at any time.
Published September 24, 2026
The real ecosystem this sits above
Foot-traffic + mobility data
Placer.ai, SafeGraph, Foursquare, Cuebiq, Unacast, Veraset, Esri, Nielsen Spectra, AirSage, Streetlight, Tamoco, Inrix. Each ships strong panel-derived foot-traffic + mobility primitives with different panel-source + weighting + geospatial-resolution methodology. The cross-vendor normalization + consensus reconciliation above them is operator-side architecture.
Commercial real-estate + demographic enrichment
Commercial real-estate: CoStar, LoopNet, Reonomy, Crexi. Demographic enrichment: Esri Business Analyst, Nielsen, Experian, Acxiom, IXI, Claritas. Each ships strong primitives. The adjacent-industry-aware orchestration that supports both marketing-ops audience and real-estate + site-selection audience above them is operator-side architecture.
Geospatial tooling
PostGIS, ArcGIS, Mapbox, Carto, Kepler.gl, Deck.gl, Uber H3, Google S2, MaxMind, Digital Element. Each ships strong primitives. Per-CBG + per-trade-area + per-DMA + per-state + per-MSA aggregation and per-territory polygon definition above them is operator-side architecture.
Warehouse + reverse ETL + clean rooms
Warehouse: Snowflake, Databricks, BigQuery, Redshift, Postgres. Reverse ETL: Hightouch, Census, Polytomic. Clean rooms: AWS Clean Rooms, Snowflake Data Clean Rooms, InfoSum, Habu, LiveRamp Safe Haven, Google Ads Data Hub. Each ships strong primitives. The cross-vendor data join + privacy-preserving partner-data collaboration above them is operator-side architecture.
Consent management + legal research
Consent: OneTrust, TrustArc, Ketch, Securiti, BigID. Legal research: Westlaw, Lexis+, Bloomberg Law, Practical Law, Compliance.ai, LawGeex. Each ships strong primitives. Per- vendor consent provenance attestation library + per-state sensitive-PI policy library maintenance above them is operator-counsel-side architecture.
Policy-as-code + WORM storage + GRC
Policy-as-code: OPA Rego, AWS Cedar, Casbin, Cerbos, Oso. WORM: AWS S3 Object Lock, GCS retention, Azure Blob immutable, Snowflake Time Travel. GRC: Hyperproof, Drata, Vanta, Thoropass, AuditBoard. Each ships strong primitives. The per-event compliance gate that maps FTC mobile-location enforcement + CCPA/CPRA sensitive PI + GDPR Article 9 + per-vendor consent provenance + CPNI + SOC 2 + ISO 27001 + ISO 42001 + FTC Health Breach Notification Rule onto an operator-counsel-approved policy bundle is operator-side architecture.
Frequently asked
What does continuous foot-traffic ingestion for multi-location operators actually deliver?
An orchestration layer that sits above the operator foot-traffic + mobility-data + geospatial + commercial-real-estate + demographic-enrichment + warehouse + reverse-ETL + clean-room + consent-management + policy-as-code + WORM-storage stack and turns the operator’s licensed foot-traffic data into a normalized, attribution-tagged, cross-skill-emission-ready stream that downstream agents in the Completions swarm consume. The skill is a three-skill bundle on the territory agent. Skill 1 — Capture: ingest per-territory per-source foot-traffic data from operator-chosen vendors (Placer.ai for retail trade-area analysis, SafeGraph for point-of-interest-level visit counts and visitor demographics, Foursquare for movement panels, Cuebiq for high-resolution mobility, Unacast for daily-active mobility, Veraset for raw movement data, Esri Business Analyst for trade-area definitions, Nielsen Spectra for consumer segment overlays, AirSage and Streetlight for transportation-derived visit data, Inrix and Tamoco for real-time mobility, CoStar + LoopNet + Reonomy for commercial real-estate context). Capture records per-territory per-source per-visit metadata across visit count + visit duration + visit frequency + dwell time + visitor home/work CBG (census block group, the standard geospatial unit Placer.ai and SafeGraph use) + visitor demographic bands + visit time-of-day + day-of-week + seasonality + cross-shopping pattern + substitute pattern + complement pattern. Critical: every record carries operator-counsel-approved per-vendor consent provenance attestation (the operator counsel has verified the vendor’s panel was sourced with appropriate consent per the FTC location-data enforcement guidance from the 2024 X-Mode/Outlogic and Mobilewalla settlements). Skill 2 — Normalize: per-territory per-source normalization handles the cross-vendor comparability problem — Placer.ai’s panel size and methodology differ from SafeGraph’s, which differ from Foursquare’s. Normalization applies per-CBG + per-trade-area + per-DMA + per-state + per-MSA aggregation, source-bias adjustment, panel-weight adjustment, sample-size adjustment, seasonality adjustment, and COVID-baseline adjustment (the 2020-2023 COVID-era foot-traffic baseline distorts every comparison; the operator-data-science-team-set COVID-baseline adjustment is operator-counsel-approved). Cross-vendor consensus reconciliation runs when the operator licenses multiple sources and surfaces high-confidence consensus visit counts versus single-source flagged-confidence counts. Confidence-attribution tagging accompanies every normalized record. Skill 3 — Emit: per-territory cross-skill emission routes the normalized data to downstream subscriber agents — the competitive-density-mapping skill on the territory agent itself, the per-market-scoring-rollup on the rollup-reporting agent, the marketing-mix-modeling skill on the measurement-attribution-engine agent, the offer-optimizer agent, the per-location-landing-pages skill on the page-generator agent, the journey-orchestrator agent, and the customer-graph agent. Emission routes through the operator-chosen event broker (the same broker the customer-change-event-emission sibling skill uses) with per-subscriber acknowledgment tracking, per-subscriber SLA tracking, and dead-letter-queue handling. Every Capture, Normalize, and Emit decision writes to the WORM audit trail. The foot-traffic, mobility-data, geospatial, commercial-real-estate, demographic-enrichment, warehouse, reverse-ETL, clean-room, and consent-management vendors below ship strong primitives. The orchestration above them — per-source ingestion with consent provenance, cross-vendor normalization, cross-skill emission, compliance gate, audit trail — is operator-side architecture.
Where does single-vendor foot-traffic licensing stop compounding for multi-location operators?
Single-vendor foot-traffic licensing is solved. Placer.ai ships a strong retail trade-area analytics product with built-in dashboards. SafeGraph ships a strong POI-level visit-count product with built-in panels. Foursquare ships strong movement panels with built-in audience modeling. The compound case the territory agent has to handle is the one where a multi-location operator has 50-1,500 locations across 200+ trade areas, licenses Placer.ai + SafeGraph + Foursquare for cross-validation (because no single panel is large enough to be statistically reliable in every trade area, especially in rural and exurban geographies), has a commercial-real-estate team using CoStar + LoopNet + Reonomy for adjacent-industry context (the same trade-area data informs site-selection + lease-renewal decisions, which is why this skill explicitly supports adjacent-industry real-estate and site-selection capture), needs to feed downstream marketing-mix-modeling + per-market-scoring + per-location-landing-pages + offer-optimizer + journey-orchestrator agents with consistent normalized foot-traffic signals, and faces the post-2024 FTC mobile-location enforcement environment where the FTC settled with X-Mode/Outlogic and Mobilewalla and the Massachusetts AG separately settled with X-Mode for selling sensitive-location data without adequate consent — meaning every per-vendor consent provenance attestation matters. Without an orchestration layer above the foot-traffic + mobility-data + geospatial vendors, vendor reconciliation lives in spreadsheets, the COVID-baseline-distorted comparisons stay distorted, the per-CBG normalization fragments across vendor consoles, the downstream agents see inconsistent foot-traffic signals, and the compliance evidence for the per-vendor consent provenance chain splinters across vendor portals. The orchestration above the vendors is what holds the cross-source + cross-territory + cross-skill + cross-jurisdiction invariants.
How does Skill 2 Normalize handle cross-vendor comparability and the COVID-baseline distortion?
Cross-vendor comparability is the central methodological problem in multi-source foot-traffic analysis. Placer.ai’s panel is sourced through SDK partnerships and weighted to a target US-adult-mobile-user universe; SafeGraph’s panel was historically sourced through SDK partnerships and weighted similarly but with different methodology; Foursquare’s panel comes from its own consumer app + SDK partnerships with different weighting. The same trade area produces different absolute visit counts on each panel even when the underlying movement is the same. Normalization handles this through per-vendor calibration against operator-counsel-and-data-science-team-defined ground-truth references where available (operator POS-derived visit counts; operator wifi-based visitor counts; operator beacon-based visit counts) and through per-vendor relative-change normalization where ground truth is unavailable (the absolute number is unreliable but the percentage change month-over-month is consistent across vendors). Per-CBG aggregation normalizes against the underlying population base — a 10,000-visit count means something different in a CBG with 5,000 residents vs 50,000 residents — and per-trade-area + per-DMA + per-state + per-MSA aggregation runs at the operator-data-science-team-selected geospatial hierarchy. Source-bias adjustment compensates for known panel biases (some panels overweight iOS users, some overweight Android; some panels skew younger or older than the target audience). Panel-weight adjustment applies the vendor-published weighting methodology with operator-data-science-team review. Sample-size adjustment marks low-confidence records where the panel sample for a given CBG-month falls below the operator-data-science-team-set minimum. Seasonality adjustment uses operator-counsel-and-data-science-team-approved seasonal indices. COVID-baseline adjustment is the hardest piece — the 2020-2023 COVID-era foot-traffic baseline is distorted across every trade area, but the distortion is not uniform (urban trade areas were affected differently from suburban; restaurant categories were affected differently from grocery; some categories never recovered to pre-2020 baselines while others overshot). The operator-data-science-team-maintained COVID-adjustment library applies per-category + per-trade-area COVID-baseline indices that operator counsel has reviewed for substantiation when foot-traffic-derived claims surface in operator-internal financial reporting + investor communications + franchisee disclosures. Cross-vendor consensus reconciliation runs only when the operator licenses multiple sources; with single-source licensing, the normalize stage surfaces single-source-flagged-confidence with explicit caveats so downstream agents know not to overclaim. The vendors ship strong panel data; the cross-vendor normalization + consensus reconciliation above them is operator-side architecture.
How does per-vendor consent provenance verification work given the post-2024 FTC location-data enforcement environment?
In January 2024 the FTC settled with X-Mode Social and Outlogic over allegedly unfair collection and sale of sensitive-location data. In December 2024 the FTC settled with Mobilewalla over similar allegations. The Massachusetts AG separately settled with X-Mode in 2024 over selling sensitive location data without adequate consumer consent. California, New York, and other state AGs have signaled increased enforcement scrutiny on location-data brokers. Operator counsel reading this enforcement signal sets the baseline that every per-vendor location-data relationship must have an attested consent provenance — the operator counsel verifies, for each licensed foot-traffic vendor, that the vendor’s panel was sourced with: (a) clear and conspicuous consumer-facing consent at the point of collection (SDK partner apps disclosed location-data sharing); (b) consent specifically permitting the use the operator licenses the data for (advertising analytics + site selection + trade-area analysis are typically permitted; combining with healthcare-visit inference may not be permitted); (c) consent that has not been withdrawn (the vendor honors opt-out + propagates opt-out through their panel); (d) consent that has been refreshed per the vendor’s panel-refresh policy. The Capture skill enforces this through the per-vendor DPA + SCC library that operator counsel maintains (the same library the buyer-state-aware BANT scoring sibling skill and the firmographic-enrichment sibling skill share). Every per-vendor data refresh writes to the WORM audit trail with the per-vendor DPA version + SCC version + consent provenance attestation pointer + operator counsel acknowledgment. If a vendor’s consent provenance attestation lapses (vendor changes panel-sourcing methodology + operator counsel has not yet attested the new methodology), the Capture skill refuses to ingest new data from that vendor until operator counsel attests the new state. If FTC + state-AG enforcement action against a vendor surfaces (X-Mode and Mobilewalla style), the orchestration layer can quarantine all data licensed from the affected vendor pending operator-counsel review of the operator’s downstream-use exposure.
What compliance does the per-event gate enforce, and how does it map to FTC mobile-location enforcement, CCPA/CPRA sensitive PI, GDPR Article 9, per-vendor consent provenance, and CPNI + SOC 2 + ISO 27001 + FTC Health Breach Notification Rule?
Five anchors. Anchor 1: FTC Section 5 mobile-location-data enforcement. The 2024 FTC settlements with X-Mode/Outlogic (January 2024) and Mobilewalla (December 2024) establish that the FTC views unauthorized collection or sale of sensitive-location data as a Section 5 violation. The Massachusetts AG v X-Mode 2024 settlement reinforces this at the state level. Other state AGs (California, New York, others) have signaled similar enforcement priorities. The gate enforces per-vendor consent provenance attestation (Anchor 4) and refuses to ingest data from vendors whose consent provenance does not survive operator-counsel review against the FTC enforcement standard. Anchor 2: CCPA/CPRA Section 1798.121 sensitive PI opt-out + state-comprehensive-privacy patchwork sensitive-PI definitions. CPRA explicitly classifies precise geolocation as sensitive PI requiring opt-out, and the state-comprehensive-privacy patchwork (Connecticut CTDPA, Texas DPSA, Virginia CDPA, Colorado CPA, Utah CPA, Oregon, Tennessee, Montana, Indiana, Iowa, Florida, Delaware, additional states in effect) variously classifies precise geolocation as sensitive PI with similar opt-out obligations. California Electronic Communications Privacy Act (CalECPA) adds additional protections for location data in the criminal-procedure context. Maryland Online Data Privacy Act (effective 2025) explicitly limits collection + processing of sensitive location data. The gate enforces per-state sensitive-PI opt-out checks against the operator consent-management vendor (OneTrust + TrustArc + Ketch + Securiti + BigID) before any per-individual data flows from this skill into downstream skills that would link the data to an identified person. Anchor 3: GDPR (Regulation 2016/679) Article 9 special categories + Article 6 lawful basis + ePrivacy Directive 2002/58/EC + EU Data Act (2024) + Digital Services Act. Precise location data can infer special-category information (health visits to medical facilities, religious affiliation through worship-location patterns, political opinion through political-event attendance, sexual orientation through specific establishment visits). The CJEU has held that combining seemingly non-sensitive data points can produce special-category insights, putting the burden on the controller to enforce Article 9 protections before such combination occurs. The gate refuses to permit downstream combinations that would produce Article 9 special-category insights without operator-counsel-approved explicit consent or other Article 9(2) basis. EU Data Act (2024) adds B2B data-sharing obligations + sensor-data rules. Anchor 4: Per-vendor consent provenance verification + per-vendor DPA + SCC + per-vendor data-source-provenance attestation + CPNI (47 CFR Part 64 Subpart U) when location data derived from cellular carrier data. Cellular-carrier-derived location data (AirSage, Streetlight historically sourced carrier-based data; current carrier-data licensing requires CPNI compliance) triggers CPNI rules — the operator must have the carrier’s CPNI attestation that the data was disclosed under permitted CPNI exceptions and not from prohibited customer-content-disclosure paths. The gate enforces per-vendor CPNI attestation where applicable. Anchor 5: SOC 2 Type II + ISO 27001 + ISO 42001 + NIST SP 800-218A + FTC Health Breach Notification Rule (16 CFR Part 318) when foot-traffic data correlates with healthcare visits. SOC 2 + ISO 27001 control evidence covers the ingestion + normalization + emission infrastructure as part of the operator data-platform security boundary. ISO 42001 covers the AI/ML components of normalization + cross-vendor reconciliation. FTC Health Breach Notification Rule (16 CFR Part 318) covers operators of personal health records and HIPAA non-covered health-data handlers (which a foot-traffic operator becomes if it links visit data to medical-facility visits in a way that could be classified as health data); breach notification obligations apply with the FTC + affected individuals + media (for breaches affecting 500+ residents of a state). Broader gate also enforced: ADA Title III + WCAG 2.2 AA for any operator-facing dashboard surfaces + NIST AI RMF for the normalization classifier governance via policy-as-code (OPA Rego + AWS Cedar + Casbin + Cerbos + Oso). WORM audit trail (AWS S3 Object Lock + GCS retention + Azure Blob immutable + Snowflake Time Travel) with per-statute retention (FTC 7yr + state-AG variable + GDPR 6yr + CCPA 3yr + CPNI per-FCC + SOC 2 audit-cycle + IRS 7yr + state variable) per operator counsel policy.
What does the engagement look like across Tier 1 → Tier 2 → Tier 3, and what does the Tier 3 reporting cycle commit to?
Tier 1 AI Readiness Assessment (2-3 weeks, diagnostic): audits the operator current foot-traffic posture against the 3-skill bundle + 5-anchor compliance gate + per-vendor consent provenance attestation status; deliverable is a gap-pack report identifying which foot-traffic vendors lack current per-vendor DPA + SCC + consent provenance attestation, which sensitive-PI opt-out propagation paths are missing, which CPNI obligations apply where, which FTC Health Breach Notification exposures exist if any, which normalization steps are absent, which downstream skill emissions are inconsistent, and a recommended remediation sequence for Tier 2. Tier 2 AI Swarm Setup Sprint (4-8 weeks): builds the 3-skill bundle on the territory agent, wires foot-traffic + mobility-data vendors (operator-chosen Placer.ai + SafeGraph + Foursquare + Cuebiq + Unacast + Veraset + Esri + Nielsen Spectra + AirSage + Streetlight + Tamoco + Inrix), commercial-real-estate vendors (CoStar + LoopNet + Reonomy), geospatial tooling (PostGIS + ArcGIS + Mapbox + Carto + Kepler.gl + Deck.gl + Uber H3 + Google S2 + MaxMind + Digital Element), demographic enrichment (Esri Business Analyst + Nielsen + Experian + Acxiom + IXI), warehouse + reverse-ETL, clean-room platforms (AWS Clean Rooms + Snowflake Data Clean Rooms + InfoSum + Habu + LiveRamp Safe Haven), consent management, policy-as-code, WORM-storage, runs 30-day shadow + canary period before flipping to enforce-mode. Tier 3 Fractional CMO with AI Swarm (6-month minimum, 1-2 days/wk embedded): continues operating with weekly per-vendor data-feed health checks, monthly per-vendor DPA + SCC + consent provenance freshness audits, quarterly cross-vendor normalization recalibration, quarterly COVID-baseline-adjustment refresh, quarterly per-state sensitive-PI policy refresh with operator counsel, quarterly compliance evidence packages. Tier 3 reporting is a 6-workstream pre-engagement-baseline reporting cycle (per-vendor data-feed health + cross-vendor normalization calibration trend + per-jurisdiction sensitive-PI opt-out propagation completeness + per-vendor consent provenance freshness + cross-skill emission acknowledgment completeness + WORM audit-trail completeness) measured against the operator’s pre-engagement baseline. Each workstream surfaces trend direction and the gap to operator-defined targets. Reporting carries explicit caveats: foot-traffic + mobility-data vendor SLA + per-vendor panel-methodology changes + per-state-comprehensive-privacy statute amendments + FTC location-data enforcement developments + state-AG enforcement signals + CalECPA + Maryland Online Data Privacy Act implementing guidance + GDPR + EU Data Act implementing regulation + CJEU case-law on sensitive-data inference + CPNI rule changes + FCC enforcement + FTC Health Breach Notification Rule implementing guidance sit outside Completions control. Attorney-client privilege preservation across per-vendor DPA + SCC library + per-vendor consent provenance attestation library + per-state sensitive-PI policy library + CPNI attestation records + FTC Health Breach Notification Rule applicability analysis is maintained per operator counsel policy.
Who owns the foot-traffic vendor relationships, the consent provenance attestation library, the normalization model, and the audit trail?
Operator owns every artifact. The foot-traffic + mobility-data vendor subscriptions (Placer.ai + SafeGraph + Foursquare + Cuebiq + Unacast + Veraset + Esri + Nielsen Spectra + AirSage + Streetlight + Tamoco + Inrix — operator chooses subset) all run under operator billing on operator-controlled accounts. The commercial-real-estate vendor subscriptions (CoStar + LoopNet + Reonomy) run under operator billing. The demographic enrichment subscriptions (Esri Business Analyst + Nielsen + Experian + Acxiom + IXI) run under operator billing. The geospatial tooling (PostGIS + ArcGIS + Mapbox + Carto + Kepler.gl + Deck.gl + Uber H3 + Google S2 + MaxMind + Digital Element) runs under operator infrastructure + licenses. The clean-room platforms (AWS Clean Rooms + Snowflake Data Clean Rooms + InfoSum + Habu + LiveRamp Safe Haven) run under operator account. The consent-management vendor (OneTrust + TrustArc + Ketch + Securiti + BigID) runs under operator account. The per-vendor DPA + SCC + consent provenance attestation library lives in operator counsel repo, counsel-maintained. The per-state sensitive-PI policy library lives in operator counsel repo. The CPNI attestation records (where cellular-carrier-derived data applies) live in operator counsel repo. The FTC Health Breach Notification Rule applicability analysis lives in operator counsel repo. The normalization model code, cross-vendor reconciliation code, COVID-baseline-adjustment library, confidence-attribution tagging code, and Emit-stage routing code all live in operator code repo. The WORM audit trail lives on operator-controlled cloud storage (AWS S3 Object Lock + GCS retention + Azure Blob immutable + Snowflake Time Travel). The policy-as-code policies (OPA Rego + AWS Cedar + Casbin + Cerbos + Oso) live in operator code repo, counsel-aligned. Completions owns the orchestration knowledge — how to design the per-vendor capture pipeline against post-2024 FTC enforcement, how to wire per-vendor consent provenance verification with operator counsel’s actual DPA + SCC library, how to design cross-vendor normalization for the operator’s actual panel mix, how to compose per-state sensitive-PI opt-out with the operator consent-management vendor, how to wire CPNI attestation where cellular-carrier-derived data applies, how to design cross-skill emission against the operator-chosen event broker — and that knowledge transfers under the Tier 3 transition path (30-60 days at engagement end with full hand-off of the capture pipeline, the normalization model, the COVID-baseline-adjustment library, the per-vendor consent provenance wiring, the cross-skill emission code, and the compliance evidence-package generation playbook). Completions credentials revoke on engagement-end.
Engage Completions
Start with the AI Readiness Assessment (Tier 1, 2-3 weeks): audit of current foot-traffic posture against the 3- skill bundle + 5-anchor compliance gate + per-vendor consent provenance attestation status. Hand off to Tier 2 AI Swarm Setup Sprint (4-8 weeks): build the 3-skill bundle on the territory agent, wire foot-traffic + mobility-data + commercial-real-estate + geospatial + demographic-enrichment + warehouse + reverse-ETL + clean-room + consent-management + policy-as-code + WORM-storage, run 30-day shadow + canary before flipping to enforce-mode. Continue under Tier 3 Fractional CMO with AI Swarm ( 6-month minimum, 1-2 days/wk embedded).
Related reading
- Done-for-you customer change event emission (sibling architecture — Emit-stage event broker shared with this skill)
- Done-for-you deterministic + probabilistic identity resolution (sibling architecture — customer-graph downstream subscriber)
- Fractional CMO with AI Swarm (Tier 3 engagement that operates the foot-traffic ingestion cycle)