Mastercard

Mastercard Spending Pulse Next Generation macroeconomic regional near real time retail spend data

Mastercard Spending Pulse Nexty Generation is a macroeconomic indicator of retail sales across all payment types, using advanced models to calculate total and sector level retail sales based on aggregate sales activity in Mastercard payments networks, survey-based estimates for other payment types, and is tuned for national and regional factors.

Features

• Daily forecasts available 12 months into the future, refreshed monthly
• Split by channel for insights into store and online sales
• Segment & industry performance based on near real time spend
• Geographical interface to enable dynamic visualisations of performance benchmarks
• Updated weekly with daily data, 10 to 12 days lag
• Intuitive platform for easy access and set up
• Based on actual transactions on the Mastercard network
• Analysis by geography, KPI, time period and sector
• Macroeconomic insights content from experts; Available in platform and newsletter

Benefits

• Access customised interface to visualise performance benchmarks
• Daily insights from 2018 and near real time data updates
• Sales by KPI, channel (in store, online), region and time.
• Easy access - only email and user name required
• Easily export data to Excel
• Build forecasts for the oncoming 18 months
• Build out executive-level reports to capture retail macro trends
• Visualise and analyse macroeconomic event impact

£43,000 a unit a year

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at nabeel.irshad@mastercard.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

610890481128166

Contact

Nabeel Irshad
44 786 6165 112
nabeel.irshad@mastercard.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: Service support is during normal office hours only (Mon-Fri 0900-1700).
• System requirements: Access via web interface using any standard browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Users may email their account manager for support, training requests and other related information. Responses will be provided within 48 hours. Service support is available during standard office hours (Mon-Fri 0900-1700)
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: No
• Onsite support: No
• Support levels: 1. Standard Support, as covered in the licence price: support is provided via email contact with either your product or account manager . This includes:; - initial platform on-boarding / training session for customer users – normally a 60 minute discussion;; - a monthly technical and data interpretation support from the centralised Spending Pulse support team, estimated to last typically 30 minutes.; - a Bi-Annual Insights presentation from a Spending Pulse Product Analyst, including a review of customer Usage, Value Creation, and additional applications.; - access to best practice webinars, available on an occasional basis.; 2. Insights and Executive package (available at additional cost to the standard pricing):; - two Mastercard-led analyses leveraging Spending Pulse insights to address a pertinent business question, e.g. comparison of own-brand performance versus sector, identification of opportunity times / geographies. customer presentation to key executives and agency stakeholders.; - an annual executive briefing by a Mastercard senior analyst / economist on recent spending insights and trends relevant to the customer.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Mastercard will provide up to 60 minutes training to a customer organisation within the first month after contract start. Account and product managers will maintain contact to ensure access to the platform is enabled during this first month. Off boarding similarly straightforward, with access coming to an end through the disabling of login credentials
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Customers have a right to their data already downloaded from the portal even following contract termination. After termination, however, the users' credentials will no longer be enabled for access.
• End-of-contract process: At contract end, customers will no longer able to access the service via web interface

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: WCAG 2.1 A
• API: No
• Customisation available: No

Scaling

• Independence of resources: Our service is already scaled to global levels of demand. It is available across multiple European territories as well as North America. We will ensure appropriate capacity is held within the product to anticipate future levels of demand.

Analytics

• Service usage metrics: Yes
• Metrics types: Available on request but will typically include number of logins, for example.
• Reporting types: Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: Other locations
• User control over data storage and processing locations: No
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: In-house
• Protecting data at rest: Other
• Other data at rest protection approach: Data centres are fully air-gapped and accessible only to authorised personnel. For users working remote from office locations, VPN access is mandatory. Further detail is available upon request however is limited due to the sensitive nature of the assets and infrastructure we must safeguard.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Export to Excel is straightforward and is provided via an enabled button on the platform which provides for download of a CSV file to an appropriate location on the users' interface / laptop.
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: Private network or public sector network
• Data protection within supplier network: Other
• Other protection within supplier network: Data centres are fully air-gapped and accessible only to authorised personnel. For users working remote from office locations, VPN access is mandatory. Further detail is available upon request

Availability and resilience

• Guaranteed availability: This service does not have a guaranteed availability level but has suffered no unplanned outages in the past two years of operation. Refunds will only be considered in exceptional circumstances, to be agreed by the account manager with the customer on a pro rated basis
• Approach to resilience: Available on request
• Outage reporting: Information will be provided to customers prior to any planned service outage and on a reasonable endeavours basis if unplanned. Planned maintenance on average denies service for three hours every six months.

Identity and authentication

• User authentication needed: No
• Access restrictions in management interfaces and support channels: We provide login credentials to allow users to access the service. These will be enabled for the duration of the service contract. We provide logins per user
• Access restriction testing frequency: At least once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: Accredited by payment regulators across multiple territories.
• PCI DSS accreditation date: 01/01/2024
• What the PCI DSS doesn’t cover: Mastercard is fully accredited against PCI DSS requirements across the territories we operate in around the world.
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: – Center for Internet Security (CIS) Critical Security Controls for Effective Cyber Defense (CIS Controls).; – American National Standards Institute/International Society of Automation (ANSI/ISA)-62443-2-1 (99.02.01)-2009.; – International Organisation for Standardisation (ISO)/International; Electrotechnical Commission (IEC) 27001.; – NIST Special Publication (SP) 800-53 Rev. 4 - NIST SP 800-53.
• Information security policies and processes: – Center for Internet Security (CIS) Critical Security Controls for Effective Cyber Defense (CIS Controls).; – American National Standards Institute/International Society of Automation (ANSI/ISA)-62443-2-1 (99.02.01)-2009.; – International Organisation for Standardisation (ISO)/International; Electrotechnical Commission (IEC) 27001.; – NIST Special Publication (SP) 800-53 Rev. 4 - NIST SP 800-53.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Change Control and Configuration Management will include a registered take back plan, a testing process, management approval, and updated documentation, in line with PCI DSS guidelines for the payment industry. More detail is available on request
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Some limited further detail is available upon request but because of the sensitive nature of the business Mastercard conducts in the payment sphere we are not at liberty to provide detail publicly.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Some limited further detail is available upon request but because of the sensitive nature of the business Mastercard conducts in the payment sphere we are not at liberty to provide detail publicly.
• Incident management type: Undisclosed
• Incident management approach: Some limited further detail is available upon request but because of the sensitive nature of the business Mastercard conducts in the payment sphere we are not at liberty to provide detail publicly.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Mastercard have committed to create a more sustainable and inclusive digital economy, with a pledge to reach net zero emissions by 2050. ; This goal builds upon our existing Greenhouse Gas (GHG) commitments that align with the Business Ambition for 1.5°C pledge. Mastercard is currently working towards its SBTi-approved goal to reduce total Scope 1 and 2 emissions by 38% and Scope 3 emissions by 20% by 2025 from a 2016 baseline. ; These targets reflect a long-term commitment by the company to monitor and implement best practices to reduce emissions across the business, drive operational energy efficiency, and further engage suppliers in value chain decarbonisation. Progress already made towards these goals includes achieving 100% renewable electricity in 2020, reinforced by a commitment to RE100. ; Mastercard is also mobilising its technology, expertise, and trusted global partnerships network to lead on collective climate action, through innovative initiatives such as the Greener Payments Partnership and the Priceless Planet Coalition. ; These are activities that will continue as we execute G Cloud contracts in the areas of customer activity.

  Covid-19 recovery

  Mastercard products and services are being used every day to understand the strength of the retail recovery in the high street, both amongst private organisations and public sector agencies with responsibility for town centres and wider economic performance. Mastercard prepaid economic stimulus cards have been issued in Northern Ireland, Jersey and across various municipalities across the UK to boost high street spending. Meanwhile our tourism data is being used by DMOs to understand how domestic tourism has supplanted international travel whilst borders have been disrupted by the pandemic. We anticipate similarly activities being undertaken using Mastercard resources to support post-pandemic growth and build resilience on the high street and across the SME sector.

  Tackling economic inequality

  Mastercard is at the hub of movement to develop financial technology with a social purpose, and we support new fintech propositions that are seeking to push back the boundaries that stand in the way of access to financial services. We take a firm stand on the theme of financial inclusion, whereby we will work as a priority with partners to ensure the digital economy, the ability to save and the ability to borrow are as widely available as possible. Indeed, such growth is an existential requirement for Mastercard, hence it is a business imperative we work in this way.; Mastercard provides customers and partners with training opportunities on the payments ecosystem, plus a range of tools to boost commercial returns within a secure cyber environment. Meanwhile Mastercard enables employee access to apprenticeship schemes to ensure it provides genuine lifelong professional development.

  Equal opportunity

  Mastercard follows many elements of best practice in the UK, including the following:; - appropriate channels for effective voice, such as trade union recognition.; - investment in workforce development.; - no inappropriate use of zero hours contracts.; - action to tackle the gender pay gap and create a more diverse and inclusive workplace.; - providing fair pay for workers (for example, payment of the real Living Wage).; - offer flexible and family friendly working practices for all workers from day one of employment.; - oppose the use of fire and rehire practices, both within its businesses and across its global supply chain.; - late payment policies to ensure prompt payment of SME suppliers.

  Wellbeing

  We are committed to supporting our diverse and inclusive workforce across the globe. As part of that commitment, we offer generous benefit programs that are designed using global standards to ensure the financial, emotional, and medical safety of all our employees and their loved ones. We offer best-in-class benefits and programs to support the wellbeing of our employees, including quarterly meeting-free days; learning opportunities for leaders to manage their hybrid workforces; flexibility to work away from the office, and resources focused on mental and physical wellbeing.; Results from this approach are encouraging: Mastercard regularly comes in the top ten of favoured employers and is a top-rated employer on online employee review forums including Glassdoor

Pricing

• Price: £43,000 a unit a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at nabeel.irshad@mastercard.com. Tell them what format you need. It will help if you say what assistive technology you use.