Custom attributes: the data design that decides what your program can do

Three principles that do the work of a hundred style-guide rules:

Attributes are derived data, not raw data. Don't create an attribute for every column in your data warehouse. Create attributes for the specific segmentation and personalisation decisions the lifecycle program actually needs to make. "user_is_premium_tier" is useful. "user_plan_internal_id" is clutter. The warehouse is the source of truth; the ESP holds the derived view the program actually uses. Reverse-ETL copying every column is how you end up with 300 attributes and no one who knows which ones are live.

Every attribute has a defined update path. How does this attribute get set? How does it get updated? Who owns it? Attributes without a maintenance plan go stale silently, and silent staleness is the worst kind — the data looks fine right up until it produces a wrong send.

Retire aggressively. An attribute with no active campaigns using it is clutter. Audit quarterly. Remove anything unused. The cost of keeping them isn't zero — they confuse future teammates, bloat the data model, and slowly turn "let me check" into a 40-minute forensic exercise.

Without a convention, attribute names become a free-text mess. Two people name the same concept three different ways and six months later nobody knows which one updates. The convention that works for most programs:

[domain]_[entity]_[property]_[aggregation]

Examples:

• subscription_plan_tier — user's current subscription tier

• commerce_order_count_lifetime — total orders ever

• commerce_order_count_90d — orders in the last 90 days

• engagement_email_open_count_30d — email opens in the last 30 days

• preference_category_primary — user's top category

The domain prefix groups related attributes in ESP dropdowns. The aggregation suffix ("_lifetime", "_90d", "_count") makes the data shape obvious at a glance. Pick snake_case and stick to it — camelCase and snake_case mixed in the same instance is a recipe for bugs when authors misremember which format applies to which attribute. See the Braze naming conventions guide for the broader naming framework this fits into.

Not every attribute is equally important. Sort them into tiers with different maintenance standards:

Tier 1 — Core attributes. Used across many campaigns. Updated frequently. Central to segmentation. subscription_tier, lifetime_order_count, last_engagement_date. These get reliable update pipelines and continuous monitoring. If one of these breaks, it's a fire — multiple programs are now lying.

Tier 2 — Program-specific attributes. Used by one or two specific programs. birthday_month for birthday emails. preferred_frequency for frequency management. Owned by the specific program. Retired when the program retires.

Tier 3 — Computed or temporary attributes. Derived at send time or for a one-off campaign. Usually better handled via Liquid or segment logic at send time rather than persisted as an attribute.

Every attribute needs a defined update mechanism, and the right mechanism depends on what the attribute drives:

Real-time (event-driven). Updated the moment a user action occurs. Fast but requires event pipelines. Best for attributes that drive immediate triggers — "user_is_in_cart" has to be right within seconds or the cart-abandon flow fires on the wrong population.

Batch (nightly or hourly). Computed in the warehouse and pushed to the ESP on a schedule. Acceptable lag for most segmentation — lifetime_order_count, preferred_category — because nobody notices if the number is 12 hours old. Requires reverse-ETL or similar pipeline.

Send-time (computed via Liquid or similar). Computed when the email sends. Nothing stored. Most flexible; requires catalogue or data availability at send time, and a set of decisions about what happens when the catalogue is missing.

Document which mechanism each attribute uses. When something appears wrong, the first question is "when was this last updated, by which pipeline?" Programs without that documentation spend hours on debug sessions that should have taken three minutes. Over-refreshing wastes pipeline resources; under-refreshing causes wrong sends — neither is free.

Stale attributes. An attribute that was useful in 2024 no longer updates. Campaigns still filter on it. Results are wrong. Fix: quarterly audit, confirm update pipelines are still running, retire anything no longer maintained.

Multiple sources of truth. Two attributes tracking the same thing — "subscription_status" and "is_subscriber" — updated by different pipelines, disagreeing in subtle ways. Fix: designate one as source of truth. Remove or compute the other from it.

Attribute sprawl. 300+ attributes, most unused, nobody knows which ones matter. Fix: audit and retire. Establish a creation-approval process for new attributes so new sprawl doesn't immediately replace the old sprawl.

Privacy-sensitive data over-stored. Detailed personal data (full birthdate, address, income) stored when only a derived attribute (age_bracket, city, plan_tier) is needed. Fix: store the minimum needed for lifecycle. Keep raw data in the warehouse where privacy controls are stronger and access is audited.

Retire safely. The three-step version: audit all campaigns and segments referencing the attribute, remove or redirect those references, wait 30 days of no usage, then delete. Removing the attribute before cleaning up references breaks campaigns in production; don't skip step one. How many attributes should a program have at all? As few as enable the decisions you need to make. Most programs operate comfortably with 30–80 active attributes. Above 200 is usually sprawl territory — the number matters less than the attribute-to-usage ratio. Every attribute should have at least one active campaign or segment referencing it, or it shouldn't exist.

treats attribute hygiene as part of the quarterly program audit. Most programs discover 20–40% of their attributes are stale or duplicated the first time they actually run it.