Mastercard

Spending Pulse - Macroeconomic and Regional Near Real Time Retail Spend Data

SpendingPulse™ is a macroeconomic indicator of retail sales across all payment types., using advanced models to calculate total and sector level retail sales based on aggregate sales activity in the Mastercard payments network, survey-based estimates for other payment types, and is tuned for national and regional factors.

Features

• Customized content available on demand, updated weekly for 10 sectors
• Split by channel for insights into store and online sales
• Geographical interface to enable dynamic visualizations of performance benchmarks
• Updated weekly with daily data, 7 to 10 days lag
• Intuitive platform for easy access and set up
• Based on actual transactions on the Mastercard network
• Analysis by geography, KPI, time period and sector
• Uses algorithms and business surveys for absolute market values

Benefits

• Access customised interface to visualise performance benchmarks
• Daily insights from 2018 and near real time data updates
• Sales by KPI, channel (in store, online), region and time.
• Easy access - only email and user name required
• Easily export data to Excel
• Build forecasts for the oncoming 18 months
• Build out executive-level reports to capture retail macro trends
• Visualise and analyse pandemic impact

£50,000.00 a unit a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

• Modern Slavery statement

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at nabeel.irshad@mastercard.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

509600732413309

Contact

Nabeel Irshad
44 786 6165 112
nabeel.irshad@mastercard.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: Service support is during normal office hours only (Monday -Friday 0900-1700). Outages and maintenance will be communicated to clients with at least 24 hours notice.
• System requirements: Access via web interface using any standard browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Users may email their account manager for support, training requests and other related information. Responses will be provided within 48 hours. Service support is available during standard office hours (Monday - Friday 0900-1700)
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: No
• Onsite support: No
• Support levels: 1. Standard Support, as covered in the licence price: support is provided via email contact with either your product or account manager. This includes:; ; - initial platform on-boarding / training session for client users – normally a 60 minute discussion;; - a monthly technical and data interpretation support from the centralised SpendingPulse support team, estimated to last typically 30 minutes; - a Bi-Annual Insights presentation from a SpendingPulse Product Analyst, including a review of Client Usage, Value Creation, and additional applications; - access to best practice webinars, available on an occasional basis; ; 2. Insights and Executive package (available at additional cost to the standard pricing):; ; - two Mastercard-led analyses leveraging SpendingPulse insights to address a pertinent business question, e.g. comparison of own-brand performance versus sector, identification of opportunity times / geographies. Client presentation to key executives and agency stakeholders; - an annual executive briefing by a Mastercard senior analyst / economist on recent spending insights and trends relevant to the client
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Mastercard will provide up to 60 minutes training to a customer organisation within the first month after contract start. Account and product managers will maintain contact to ensure access to the platform is enabled during this first month. Off boarding similarly straightforward, with access coming to an end through the disabling of login credentials
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Clients have a right to their data already downloaded from the portal even following contract termination. After termination, however, the users' credentials will no longer be enabled for access.
• End-of-contract process: At contract end, clients will no longer able to access the service via web interface.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: No

Scaling

• Independence of resources: Our service is already scaled to global levels of demand. It is available across multiple European territories as well as North America. We will ensure appropriate capacity is held within the product to anticipate future levels of demand.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: Other locations
• User control over data storage and processing locations: No
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: In-house
• Protecting data at rest: Other
• Other data at rest protection approach: Data centres are fully air-gapped and accessible only to authorised personnel. For users working remote from office locations, VPN access is mandatory. Further detail is available upon request however is limited due to the sensitive nature of the assets and infrastructure we must safeguard.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Export to Excel is straightforward and is provided via an enabled button on the platform which provides for download of a CSV file to an appropriate location on the users' interface / laptop.
• Data export formats:
  • CSV
  • Other
• Other data export formats: .PDF
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: Private network or public sector network
• Data protection within supplier network: Other
• Other protection within supplier network: Data centres are fully air-gapped and accessible only to authorised personnel. For users working remote from office locations, VPN access is mandatory. Further detail is available upon request.

Availability and resilience

• Guaranteed availability: This service does not have a guaranteed availability level but has suffered no unplanned outages in the past two years of operation. Refunds will only be considered in exceptional circumstances, to be agreed by the account manager with the customer on a pro rated basis.
• Approach to resilience: Available on request
• Outage reporting: Information will be provided to clients prior to any planned service outage and on a reasonable endeavours basis if unplanned. Planned maintenance on average denies service for three hours every six months.

Identity and authentication

• User authentication needed: No
• Access restrictions in management interfaces and support channels: We provide login credentials to allow users to access the service. These will be enabled for the duration of the service contract. One set of login credentials will be provided per contract.
• Access restriction testing frequency: At least once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: Accredited by payment regulators across multiple territories.
• PCI DSS accreditation date: 01/01/2022
• What the PCI DSS doesn’t cover: Mastercard is fully accredited against PCI DSS requirements across the territories we operate in around the world.
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: – Center for Internet Security (CIS) Critical Security Controls for Effective Cyber Defense (CIS Controls); – American National Standards Institute/International Society of Automation (ANSI/ISA)-62443-2-1 (99.02.01)-2009; – International Organization for Standardization (ISO)/International; Electrotechnical Commission (IEC) 27001; – NIST Special Publication (SP) 800-53 Rev. 4 - NIST SP 800-53
• Information security policies and processes: – Center for Internet Security (CIS) Critical Security Controls for Effective Cyber Defense (CIS Controls); – American National Standards Institute/International Society of Automation(ANSI/ISA)-62443-2-1 (99.02.01)-2009; – International Organization for Standardization (ISO)/International; Electrotechnical Commission (IEC) 27001; – NIST Special Publication (SP) 800-53 Rev. 4 - NIST SP 800-53

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Change Control and Configuration Management will include a registered take back plan, a testing process, management approval, and updated documentation, in line with PCI DSS guidelines for the payment industry. More detail is available on request.
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Some limited further detail is available upon request but because of the sensitive nature of the business Mastercard conducts in the payment sphere we are not at liberty to provide detail publicly.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Some limited further detail is available upon request but because of the sensitive nature of the business Mastercard conducts in the payment sphere we are not at liberty to provide detail publicly.
• Incident management type: Undisclosed
• Incident management approach: Some limited further detail is available upon request but because of the sensitive nature of the business Mastercard conducts in the payment sphere we are not at liberty to provide detail publicly.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  Mastercard have committed to create a more sustainable and inclusive digital economy, with a pledge to reach net zero emissions by 2050. ; This goal builds upon our existing Greenhouse Gas (GHG) commitments that align with the Business Ambition for 1.5°C pledge. Mastercard is currently working towards its SBTi-approved goal to reduce total Scope 1 and 2 emissions by 38% and Scope 3 emissions by 20% by 2025 from a 2016 baseline. ; These targets reflect a long-term commitment by the company to monitor and implement best practices to reduce emissions across the business, drive operational energy efficiency, and further engage suppliers in value chain decarbonization. Progress already made towards these goals includes achieving 100% renewable electricity in 2020, reinforced by a commitment to RE100. ; Mastercard is also mobilizing its technology, expertise, and trusted global partnerships network to lead on collective climate action, through innovative initiatives such as the Greener Payments Partnership and the Priceless Planet Coalition. ; These are activities that will continue as we execute G Cloud contracts in the areas of customer activity.
• Covid-19 recovery:

  Covid-19 recovery

  Mastercard products and services are being used every day to understand the strength of the retail recovery in the high street, both amongst private organisations and public sector agencies with responsibility for town centres and wider economic performance. Mastercard prepaid economic stimulus cards have been issued in Northern Ireland, Jersey and across various municipalities across the UK to boost high street spending. Meanwhile our tourism data is being used by DMOs to understand how domestic tourism has supplanted international travel whilst borders have been disrupted by the pandemic. We anticipate similarly activities being undertaken using Mastercard resources to support post-pandemic growth and build resilience on the high street and across the SME sector.
• Tackling economic inequality:

  Tackling economic inequality

  Mastercard is at the hub of movement to develop financial technology with a social purpose, and we support new fintech propositions that are seeking to push back the boundaries that stand in the way of access to financial services. We take a firm stand on the theme of financial inclusion, whereby we will work as a priority with partners to ensure the digital economy, the ability to save and the ability to borrow are as widely available as possible. Indeed, such growth is an existential requirement for Mastercard, hence it is a business imperative we work in this way.; Mastercard provides customers and partners with training opportunities on the payments ecosystem, plus a range of tools to boost commercial returns within a secure cyber environment. Meanwhile Mastercard enables employee access to apprenticeship schemes to ensure it provides genuine lifelong professional development.
• Equal opportunity:

  Equal opportunity

  Mastercard follows many elements of best practice in the UK, including the following:; - appropriate channels for effective voice, such as trade union recognition; - investment in workforce development; - no inappropriate use of zero hours contracts; - action to tackle the gender pay gap and create a more diverse and inclusive workplace; - providing fair pay for workers (for example, payment of the real Living Wage); - offer flexible and family friendly working practices for all workers from day one of employment; - oppose the use of fire and rehire practices, both within its businesses and across its global supply chain; - late payment policies to ensure prompt payment of SME suppliers
• Wellbeing:

  Wellbeing

  We are committed to supporting our diverse and inclusive workforce across the globe. As part of that commitment, we offer generous benefit programs that are designed using global standards to ensure the financial, emotional, and medical safety of all our employees and their loved ones. We offer best-in-class benefits and programs to support the wellbeing of our employees, including quarterly meeting-free days; learning opportunities for leaders to manage their hybrid workforces; flexibility to work away from the office, and resources focused on mental and physical wellbeing.; Results from this approach are encouraging: Mastercard regularly comes in the top ten of favoured employers and is a top-rated employer on online employee review forums including Glassdoor.

Pricing

• Price: £50,000.00 a unit a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

• Modern Slavery statement

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at nabeel.irshad@mastercard.com. Tell them what format you need. It will help if you say what assistive technology you use.