S&P Global Market Intelligence LLC

Credit Analytics

A comprehensive solution for credit risk analysis. Credit Analytics models produce Probability of Default, Credit Scores broadly aligned with credit ratings from S&P Global Ratings and Loss Given Default for companies globally. RiskGauge Reports provide instant business credit reports for millions of companies, driven by robust private company data.

Features

• RiskGauge™ Model: Holistic credit risk assessment combining multiple risk dimensions
• Prepopulate financials using Capital IQ’s public and private company database
• Qualitative Overlay: apply fully automated qualitative credit risk assessment
• Macro-scenario model: stress test credit risk using forward-looking macro scenarios
• Outputs: standalone, parental support, PD% (PiT adjustments & term structure)
• Bond Implied Scores: measure credit risk of corporate bond issuers
• LossStats model: estimates Loss Given Default (LGD) and ultimate recovery
• Batch-Scoring: tool to efficiently score entire portfolios at once
• Paysense Model: calculates the expected delinquency of trade payables
• RiskGauge™ Reports: Instant business credit reports for millions of companies

Benefits

• Benchmark to customisable industry, country and index peer groups
• Transparency into key default drivers, and ability for scenario analysis
• Onboard new customers, and monitor large portfolios with ease
• Dashboards, Alerts and Excel integration for ongoing credit risk monitoring
• Identify early-warning signs of credit deterioration using Market Signal PD
• Impute financial ratios or score companies with no financials available
• Conduct scenario analysis based on predefined or custom macroeconomic scenarios
• WhitePapers: transparent documentation outlining model approach and validation
• Credit Risk Pricing for loan or bond pricing
• Support from a dedicated Credit Product Specialist

£25,950 a licence

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at dpearcey@spglobal.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

332609459868000

Contact

Daniel Pearcey
+447967785826
dpearcey@spglobal.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Extension to Capital IQ platform. Credit Analytics leverages Capital IQ platform infrastructure, providing a user interface to the models. Credit Analytics includes partial access to Capital IQ features and datasets.; ; Capital IQ is a web-based platform requiring no software installation. Plugin (installable) allows Credit Analytics to be used within Excel.
• Cloud deployment model: Private cloud
• Service constraints: Not Applicable
• System requirements:
  • Platform accessible via Windows, MAC and Linux OS through web-browser
  • Microsoft Edge (compatible web browser, latest version recommended)
  • Google Chrome (compatible web browser, latest version recommended)
  • Mozilla Firefox (compatible web browser, latest version recommended)
  • Adobe Acrobat Reader (for reading PDF files)
  • Windows 8/8.1, 10, 11, Windows Server 2008 R2 (Office Plug-in)
  • Office 2010 SP2+, 2013, 2016, Office 365 (Office Plug-in)

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: S&P Market Intelligence maintains 24/7, 365 days per year help desks around the world, including specialised client support groups in London, New York, and Hyderabad (India).; ; One such specialist group is the Credit Client Support Team, a specialised credit risk product team with a sub-team based in London. Dedicated full-time client support employees are based in: New York, Denver, London, Hong Kong, Singapore, Tokyo, Melbourne, Manila and Islamabad. Contact options for the Client Support Help Desk are available via “Contact Us” in the Capital IQ Platform providing instant access to a live Client Support Associate.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: Evaluation Methods Used: Heuristic review using Lighthouse for Google Chrome and axe® Dev Tools for Google Chrome, and axe® Accessibility Linter for Microsoft Visual Studio, along with NVDA as the screen reader along with the testing done by a Visually impaired personnel.
• Onsite support: Onsite support
• Support levels: All support outlined below is fully complimentary, within a Credit Analytics subscription:; · 24/7 Client Support Team: We maintain 24/7, 365 days per year help desks available via Phone, Chat, and Email. Each Client Support case raised through the above channels automatically creates a ticket which is logged in our internal tracking system. A case number is provided to the user for tracking purposes, and resolution follows strict escalation processes with associated response times to ensure prompt resolutions.; · Assigned Relationship Manager - A named individual, primarily responsible for the management of the contract, and coordinate all trainings and workshops on behalf of other SPGMI support groups. ; · Credit Product Specialist support to specific workflow requests, case-studies, and methodology discussions.; · Customer Support Team to provide ongoing trainings and support, for which there are no limits to number, or size of group.; · Self Service Help-Site is accessible via Capital IQ Help. This Help-Site includes New User Training (bite-sized learning videos, quick-reference guides, tips, full user guides); Whitepapers; User-Guides; Database of Help Articles; FAQs; Office Plug-in guides; Webinars (include both Platform Training Webinars and Thought Leadership Webinars where Credit Risk is an ongoing topic.); Tech Support guides – common Troubleshooting.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Training is provided for content, functionality and/or workflow, and available both during onboarding phase and at any time during the subscription. There is no limit to user platform training. The assigned Relationship manager will action all training requests upon client request. Training can be offered for all teams, smaller groups, or specific individuals. This will ensure that new joiners can be onboarded quickly with tailored training based on their level of knowledge. Training will be provided by the Relationship Manager, Customer Success Team, and/or Credit Product Specialist dependent on the agenda and depth of focus. Training can be offered virtually, or on-site where feasible. A self-service Help-Site will be accessible to all users individually through the platform. This Help-Site includes New User Training (bite-sized learning videos, quick-reference guides, tips, full user guides); Whitepapers; User-Guides; Database of Help Articles (search bar to filter); FAQs; Office Plug-in guides; Webinars (includes both Platform Training Webinars and Thought Leadership Webinars where Credit Risk is an ongoing topic.); Tech Support guides (common troubleshooting).
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: When the contract ends, users can extract their data from S&P Global by following the data extraction process outlined by the Sales Operations Team. This process typically involves submitting a data extraction request, specifying the data they need, and providing the necessary details for retrieval. The Sales Operations Team will then work with the user to ensure a smooth and secure transfer of their data. It is important for users to communicate their data extraction requirements in a timely manner to ensure a seamless transition. ; ; Once we no longer have a legitimate business need to process your personal information/data, we follow our applicable information governance policies, procedures and standards and retain your information for as long as necessary to accomplish the purpose for which it was collected, following which we either delete or anonymize your personal information/data, or if deletion or anonymization is not possible, then we pseudonymize and/or securely store your personal information and isolate it from any further processing until deletion is possible.
• End-of-contract process: Our contracts will be subscription based and the termination covers as part of our agreement. Please note that there will not be any additional cost. S&P Global has a detailed Exit Strategy document and process. There is a policy for deletion of data in the hosted environment that is followed up written notification of the termination of contracts. S&P Global have a company policy around the deletion of documents and this is reviewed annually. In general, we use several methods to wipe data. These methods are employed dependent on classification of data present on the system. Data is destroyed by overwriting, degaussing, or physical destruction.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: WCAG 2.1 AA or EN 301 549
• API: Yes
• What users can and can't do using the API: Option 1 – Office Plugin, which requires installation. Credit Analytics can then be used within Excel, which connects to the models via a back-end API. There is no need for the client to set up the API, as once installed the Plugin provides a user interface within Excel for assisted formula building, workflow tools, and to access a pre-built template library. This is fully included within the Credit Analytics Desktop Services subscription.; ; Option 2 - S&P Capital IQ API offers fast, secure access to our extensive data sets on demand, and freedom from the overhead of processing bulk feeds or warehousing data on site. Using the API, developers can build client library applications that use secure web services to dynamically access our data sets or bypass the client libraries and make requests using web service direct. Credit Analytics Prescores are available in the Capital IQ API, for which API client libraries are provided for .NET and Java. In addition to using the API libraries, developers can also communicate directly through web services via REST/JSON. ‘On-the-fly' Scoring (i.e., model inputs driven by client) is available via Webservice API. Developers Guide, User Guide and, Mnemonics, and Properties lists are available upon request.
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Since each user has an individual login, they can use the following options to tailor their own platform experience. For some customisations such as saved Screens, Watchlists, and Alerts customisations can also be shared across team(s) within the client’s organisation. ; ; Settings: such as display settings to apply across the platform. ; Dashboards: Customised dashboards/landing pages; widgetised and can be linked to custom lists and Credit Analytics display settings. Lists: 'Watchlists' of companies that can be linked to widgets, Credit Risk Dashboard, Batch-Scoring, reports, charts, Screening, and other platform tools, as well as email alerts. ; Alerts: Customised email alerts can be linked to lists and Credit Analytics risk thresholds to trigger Alerts when breached. ; Screening Tool: powerful database-filtering and results-display tool, which can use a combination of Company Data, Fundamentals, Credit Analytics scores, Transactions, and Key Developments to render relevant results lists. ; Charting Tool: build bespoke charts using Capital IQ data. ; MS Office Plugin: can link the product to Excel, Word & PPT. Report Builder: collate information from across Capital IQ to create bespoke reports. ; Data Exports: data can be exported for manipulation in various customisable formats, including Excel & PDF.

Scaling

• Independence of resources: Our Technical Support Teams and Platform Maintenance Teams are constantly monitoring platform usage, and the platform is supported by a multitude of servers to ensure that even at peak usage across active users, there is no detrimental effect to individual users of the service.; ; We employ various strategies to manage and optimize our infrastructure, including load balancing, scalable architecture, and continuous monitoring. These measures help us distribute the workload efficiently, allocate resources effectively, and identify and resolve any performance issues promptly. Additionally, we regularly conduct capacity planning exercises to anticipate and accommodate future growth in user demand.

Analytics

• Service usage metrics: Yes
• Metrics types: We can provide detailed usage metrics (number of platform clicks) by team, user, and product/module. The Relationship Manager will discuss usage regularly as part of managing the client/vendor relationship and provide usage reports upon request.
• Reporting types: Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: Other locations
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
  • Other
• Other data at rest protection approach: Encryption at rest provides data protection for stored data (at rest). Encryption at rest is designed to prevent unauthorized users from accessing the unencrypted data by ensuring the data is encrypted on disk. In addition to satisfying compliance and regulatory requirements, encryption at rest provides defense-in-depth protection. Attacks against data at-rest include attempts to obtain physical access to the hardware on which the data is stored, and then compromise the contained data. Encryption solutions must be applied to servers, desktop computers, thumb drives, mobile devices (phones, tablets, laptops) and Cloud storage. AES 256 based encryption is used for data protection.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Credit Analytics results can be exported in Excel, Word, and PDF formats. For dynamic linking, the Excel Plugin can be used. This removes the need to export data, as data and analytics can be pulled directly into Excel.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • MS Word
  • PDF
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • Excel - list uploads, such as long company lists.
  • Excel - Proprietary data uploads through use of Plugin.

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • Other
• Other protection between networks: To protect data between the buyer's network and S&P Global's network, several security measures are in place. These include: Encryption: Data is encrypted using industry-standard protocols such as SSL/TLS to ensure secure communication. ; ; Firewalls: Robust firewalls are implemented to monitor and control network traffic, preventing unauthorized access to sensitive data. ; ; Access Controls: Strict access controls are enforced, ensuring that only authorized personnel can access and manage data. ; ; Intrusion Detection and Prevention Systems: Advanced systems are in place to detect and prevent any unauthorized access attempts or suspicious activities.
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • Other
• Other protection within supplier network: SPGI manages network interfaces including gateways, routers, firewalls, or encrypted tunnels implemented within a security architecture (e.g., routers protecting firewalls or application gateways residing on protected subnetworks). S&P Global's' Network Security Standard Policy defines the minimum requirements necessary for providing appropriate access controls over the SPGI network infrastructure. This standard applies to all Company owned or leased network devices, and all third-party service provider devices connected to or used to connect to the Company network for any purpose.

Availability and resilience

• Guaranteed availability: We do not include service level agreements and/or offer refunds based on agreed Key Performance Indicators. We will use reasonable efforts to provide prior notice for any planned maintenance.; We have IT and business continuity management policies in place to maintain platform availability 24/7. Data centers are staffed and/or monitored 24 hours a day, seven days a week and are equipped with redundancy and contingency features. Data centers are located in sufficiently diverse locations to mitigate against any single event causing full disruption. This ensures that any unforeseen downtime to platforms is minimal. Planned maintenance activities of the systems are communicated by showing up banner messages on the platform site for clients. Maintenance activities are well planned and usually conducted over the weekend when platform usage will be at its lowest. In any case, the platform is usually still accessible during these periods, though sometimes in read-only mode. Further information can be provided upon request.
• Approach to resilience: Available on request
• Outage reporting: In accordance with contractual commitments or regulatory obligations, the Company may have to report InfoSec or Data Incidents to clients or customers. ; ; S&P Global has a robust incident management process in place to report and address any outages or service disruptions. When an outage occurs, the incident management team is immediately notified and begins investigating the issue. The team communicates updates and progress through various channels, including email notifications, status updates on the S&P Global website, and direct communication with affected users. Additionally, S&P Global may utilize automated monitoring systems to detect and report outages in real-time. This allows for prompt resolution and keeps users informed throughout the process. The incident management team works diligently to minimize the impact of outages and restore service as quickly as possible.

Identity and authentication

• User authentication needed: Yes
• User authentication: Other
• Other user authentication: S&P Global authenticates users when they access the service through a combination of username/password authentication and multi-factor authentication (MFA).
• Access restrictions in management interfaces and support channels: According to S&P Global's 'User Provisioning and Access Controls Standard', All users must have an account provisioned via the Corporate Simple Access identity management facility before being granted access to any other SPGI system or application. Users are only given those privileges and entitlements necessary to perform their functions. Access rights are not activated before authorization procedures are completed. Similarly, All access are immediately revoked for users who terminated employment. Authorized users are assigned group and role membership, and account access authorizations (e.g., privileges) and other attributes for each account.
• Access restriction testing frequency: At least once a year
• Management access authentication: Other
• Description of management access authentication: S&P Global authenticates users when they access the service through a combination of username/password authentication and multi-factor authentication (MFA).

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: S&P Global’s Information Security policies and standards are based on the best practices recommendations for information security management as published in ISO/IEC-27002 and NIST 800 Standards.
• Information security policies and processes: SPGI’s Information Security Program mission is to protect customer information and the company’s reputation and brand through well established, uniform security practices while complying with legal requirements and industry best practices. This is accomplished by having a centralized accountability function with the goal of enhancing the company’s ability to: predict security events and their relative impact to SPGI environments; prevent attacks by augmenting the enterprise security posture; detect attacks that have evaded preventative measures; respond to security events for timely remediation; and improve/update the group’s capabilities and resiliency. The Chief Information Security Officer (CISO) manages and coordinates SPGI’s Information Security Program. The CISO reports to SPGI’s Chief Information Officer (CIO) who is a member of the Operating Committee and reports to the President and Chief Executive Officer (CEO) of SPGI.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: We follow robust configuration and change management process. The components of S&P Global's services are tracked throughout their lifetime using a configuration management database (CMDB). The CMDB maintains record of components, including hardware, software, and network devices. Each component is assigned a unique identifier and its attributes, such as version, configuration settings, and dependencies, are documented. This allows for accurate tracking and management of components throughout their lifecycle. Before implementing any changes, S&P Global assesses them for potential security impact. This assessment involves evaluating the security implications of the proposed changes, including any potential vulnerabilities or risks that may arise.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: S&P Global's Network Vulnerability Assessment Standard is designed to identify risks affecting the infrastructure of the organization and provide actionable advice to efficiently and effectively address the risk. The Network Vulnerability assessment identifies both patch-related and configuration-related vulnerabilities. Scans occur both within and without the environment. All applications will go through the threat modeling, static vulnerability assessments, dynamic vulnerability assessments (for web applications and web APIs), and manual and penetration tests if deemed necessary, during the SDLC.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: S&P Global has Cyber Incident Response Program that is managed by the Information Security Monitoring & Cyber Incident Response Team (“CIRT”) in conjunction with the Security Operations centre (SOC) where security analysts monitor security events 24x7 and escalate validated or suspicious security incidents for further probing and invoke Incident Management Procedure as necessary. The CIRT is responsible for triaging, responding to and resolving security incidents. The Cyber Incident Response Plan is intended to include all necessary processes, procedures, internal and external communication strategies, provisions for business continuity, and steps to limit disruptions in service. This plan is rehearsed annually.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: The Cyber Incident Response Team (CIRT) along with Privacy/Legal team is responsible for engaging the necessary business, risk management, compliance stakeholders, customers, employees, and regulators based on the nature of the incident, legal requirements, and industry practices in accordance with the Cybersecurity Incident Response Plan. In accordance with contractual commitments or regulatory obligations, the Company may have to report InfoSec or Data Incidents to clients or customers.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  The risks and impacts of climate change pose a substantial threat to communities and ecosystems worldwide. At S&P Global, we recognize that we must do our part to address this growing crisis, as the wellbeing of our people and business is inextricably linked to the health of the communities where we live and work. In 2021, we announced our goal of achieving net-zero emissions by 2040, which included near-term 2025 targets validated by the Science Based Targets initiative (SBTi). Our approach is informed by the latest climate science aimed at limiting global warming to 1.5°C and aligns with best practice of avoiding and lowering greenhouse gas (GHG) emissions by carefully tracking and disclosing our performance, implementing energy reduction initiatives and transitioning to low-carbon energy sources. For our impact report, please refer to the link - https://www.spglobal.com/en/who-we-are/corporate-responsibility/impact-report/index For our TCFD report, please refer to the link - https://www.spglobal.com/en/who-we-are/corporate-responsibility/tcfd-report-2023.pdf

  Covid-19 recovery

  The S&P Global Foundation responded by channeling $4.5 million in global grants for COVID-19 relief efforts, supporting first responders, helping the hungry, providing medical supplies and meeting other critical needs, as well as providing critical aid for small businesses to help address the strain of economic uncertainty. • We provided hospitals and governments free access to Panjiva supply chain data relating to ventilators and personal protective equipment. • Across the globe, S&P Global team members responded too, volunteering their time and donating funds to the S&P Global Foundation to help meet the needs of their local communities. In India, during a lockdown period, our CRISIL team used their corporate kitchen to serve 10,000 meals per day to Mumbai’s most vulnerable. And in the U.S., colleagues in our California, Colorado and New York offices got to work, 3D-printing face shields for local healthcare workers. For more details, please refer to the link - https://www.spglobal.com/en/who-we-are/corporate-responsibility/cr-spotlight-covid-19

  Tackling economic inequality

  The S&P Global Supplier Diversity Program provides fair and equal procurement opportunities for all capable, competitive suppliers. We welcome companies managed or led by members of all underrepresented groups, including women, veterans and other historically disadvantaged populations, to apply. Partnering with diverse suppliers is one way that we are living out our overall commitment to fostering a diverse, equitable and inclusive workplace and community. Please refer https://www.spglobal.com/en/who-we-are/diversity-equity-inclusion/supplier-diversity

  Equal opportunity

  S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law.

  Wellbeing

  S&P Global provides colleagues with a comprehensive, competitive benefits package that includes a host of programs, resources, and incentives to enable informed decisions and healthy lifestyles. Our global benefits differ from country to country, but specific offerings include flexible work environments and programs designed to promote our people’s physical, financial, mental, and emotional health. To support a safe and healthy work environment, the company maintains a rigorous management system. Our facilities worldwide follow internally and externally audited occupational health and safety policies in line with ISO 45001 and ISO 14001 standards. All of our office locations follow ISO 45001, with our London office formally certified in ISO 45001. Of our office area, 49% is covered by ISO 14001 standards. For more details, please visit - https://www.spglobal.com/en/who-we-are/corporate-responsibility/impact-report/our-people/employee-health-safety-and-wellbeing.

Pricing

• Price: £25,950 a licence
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Free trial available upon request. ; Free trial length: Two weeks.; Includes full product access, and no usage caps.
• Link to free trial: Please email dpearcey@spglobal.com

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at dpearcey@spglobal.com. Tell them what format you need. It will help if you say what assistive technology you use.