What SpendSignoff reads from Klaviyo

SpendSignoff pulls three categories of data from the Klaviyo API: flow and campaign revenue attributed by Klaviyo so the operator can compare email-attributed revenue to the ad spend driving the same traffic; segment sizes from Klaviyo lists and segments so the operator can reference real audience sizes when drafting ad targeting changes; and metric event counts (placed orders, started checkout, viewed product) to cross-check conversion figures already in Google Ads or Meta.

All reads use a Klaviyo private API key scoped to read_only across the metrics, lists, segments, campaigns, and flows resources. SpendSignoff does not request write or full_access on any resource.

What the operator can do with Klaviyo data

• Ask: "What is the email-attributed revenue from the welcome flow for customers who also clicked a Google Ads brand ad last 30 days?" — answered from Klaviyo without leaving the chat.
• Draft a Meta audience change that references a specific Klaviyo segment size so you see the addressable scale in the approval diff.
• Flag when Klaviyo revenue per recipient is rising while Meta ROAS is falling — a signal that email is outperforming paid and the budget mix may need adjustment.
• Confirm whether a surge in Google Ads conversions corresponds to a Klaviyo flow trigger or is isolated to paid traffic.

Connect Klaviyo

Token handling and revocation

The Klaviyo API key is stored encrypted in the SpendSignoff vault under the same KMS envelope used for ad-platform tokens. Unlike OAuth tokens, Klaviyo private API keys do not expire automatically — SpendSignoff holds it until you disconnect.

To revoke access, disconnect from Accounts → [Klaviyo account] → Disconnect in SpendSignoff, then delete the key from Klaviyo under Account → Settings → API Keys. Deleting the key in Klaviyo alone is sufficient to cut access immediately; the SpendSignoff vault entry becomes inert.