Skip to main content
Mastercard Data & Services

Additional Terms

By sending a registration email message, the Client accepts and agrees to be bound by the following provisions. The reference to the “Client” shall mean an institution which will access and use the Services.

1. Products/Services

1.1. Mastercard will provide to Client and/or its Affiliates the products or services described in this bulletin (“Services”), pursuant to the terms and conditions of the bulletin. “Affiliate” means, with respect to a Party, a legal entity with regard to which such Party controls, directly or indirectly, the management and policies or the appointment of the majority of the directors of such legal entity, or that such Party is under such control by, or that is under such common control with such Party.

1.2. Mastercard will ensure that all Services be performed by qualified individuals in a professional and workmanlike manner. Mastercard may also use the services of third parties (“Mastercard Suppliers”) or its Affiliates in providing the Services.

1.3. All insights, reports, and other materials provided by Mastercard in connection with the Services (“Deliverables”) may be developed using data, databases, systems, tools and information contained in the Mastercard Data Warehouse, which is comprised of information provided by third parties and may contain certain errors, omissions or inaccuracies. Subject to Section 1.5, Mastercard shall have no responsibility for any errors, omissions or inaccuracies in the underlying data from the Mastercard Data Warehouse or data otherwise provided by or on behalf of Client or any third party.

1.4. Mastercard is not providing the Deliverables as investment advice. Mastercard is not, and Client agrees that Mastercard is not, providing legal or financial advice in connection with any Services or Deliverables. Client acknowledges and agrees that Mastercard is not providing any legal advice in connection with any Service and is making no representation or warranty about Mastercard’s business operations.

1.5. Client is responsible for: (i) obtaining all consents, information and materials necessary from third parties for Mastercard to provide the Services; and (ii) Client’s use of and/or operation of all Deliverables as well as its implementation of any advice or recommendations provided in connection with the Services. Client represents and warrants that: (i) its provision of any data, including Personal Data further defined below (“Client Data”) to Mastercard or a Mastercard Supplier, or such party’s receipt of Client Data from the Client or another party, in connection with the Services, and (ii) the use, analysis, and processing of such Client Data by Mastercard (and Mastercard Suppliers) to perform the Services as set forth in the bulletin, are permitted under (x) all applicable laws and regulations, and privacy policies or other statement or disclosure to which such Client Data is subject, and (y) the terms of Client’s contracts with its customers, contractors, suppliers or other third parties.

1.6. After receipt of a Deliverable, Client shall have thirty (30) business days to provide Mastercard with written notice if the Deliverable reasonably does not comply with the specifications set forth in the bulletin. In such event, Mastercard will re-perform the Services to bring the Deliverables in conformance with the specifications set forth in the bulletin within a reasonable period of time and Client shall reasonably cooperate with Mastercard for any such re-performance.

2. License and Use of Deliverables

2.1. Mastercard hereby grants to Client a perpetual, fully paid-up, nontransferable, non-exclusive license to use the applicable Deliverables, in each case, (x) without the right to resell, assign, transfer or sublicense such Deliverables in any way, and (y) solely for Client’s internal business purposes, relinquishing Mastercard of any liability for Client’s use of such Deliverables.

2.2. Client retains ownership of Client Data and any other confidential information it provides to Mastercard. Mastercard shall be free to use for any purpose any ideas, concepts, general skills, know-how or techniques resulting from or acquired or used in the course of or arising out of the performance of the Services. All Deliverables provided by Mastercard to Client pursuant to the Services, as well as all materials, concepts, processes and methodologies employed by Mastercard or a Mastercard Supplier in connection with the Services, are and will remain the sole and exclusive property of Mastercard (or such Mastercard Supplier).

2.3. Client shall not use the data analytics or insights in the Deliverables in a manner so as to reverse engineer or aid any other party to reverse engineer the data contained in the Deliverables, and shall not remove any identification, copyright or proprietary or other notices from the Deliverables, or any copies thereof. Client shall not use any Deliverable in a manner that would violate any applicable law, regulation, or third party rights.

2.4. Client grants Mastercard a worldwide, fully paid-up license to copy, display and use Client’s name and logo (“Client Marks”): (i) as necessary to perform Services; (ii) to identify Client as a customer of Mastercard and its Affiliates on its website and marketing materials; and (iii) with Client’s prior written approval, to issue publicity or announcements concerning Mastercard’s engagement with the Client for the purpose of a case study or investor relations announcements. Client warrants and represents to Mastercard that Client owns all right, title, and interest in and to Client’s Marks and has the authority to license to Mastercard the rights granted hereunder. Except as otherwise set out in this bulletin, each Party will obtain the written consent of the other Party prior to the issuance of any press release, announcement or any other form of publicity, concerning the bulletin.

3. Compliance with Laws

3.1. The Parties shall ensure that their respective obligations under this bulletin and business activities related thereto are performed in accordance with all applicable laws and regulations, including, but not limited to, all applicable anti-bribery and corruption laws including the U.S. Foreign Corrupt Practices Act, the UK Bribery Act, and other applicable laws. Client shall not export, directly or indirectly, any Deliverables acquired from Mastercard under this bulletin to any country for which the U.S. Government or any agency thereof at the time of export requires an export license or other government approval without first obtaining such license or approval.

3.2. The Parties will comply with: (i) all applicable international, federal, state, provincial and local laws, rules, regulations, directives and governmental requirements relating in any way to the privacy, confidentiality or security of Personal Data, as defined below, including, without limitation: EU General Data Protection Regulation 2016/679; California Consumer Privacy Act (Cal. Civ. Code 1798.100 et seq.); the Gramm-Leach-Bliley Act; laws regulating unsolicited email communications; security breach notification laws; laws imposing minimum security requirements; laws requiring the secure disposal of records containing certain Personal Data; and all other similar international, federal, state, provincial, and local requirements, and (ii) the Payment Card Industry Data Security Standards, in each case, to the extent they apply to the Services. Subject to any applicable law, Client agrees that Mastercard may transfer data to any country in which any Mastercard Affiliate does business.

4. Indemnification; Limitation of Liability

4.1. Each party shall defend, indemnify and hold harmless the other party, and its employees, officers, agents, Affiliates, representatives, and contractors from and against any claims, demands, loss, damage or expense (including reasonable attorneys’ fees) relating to or arising solely out of third party claims: (i) relating to such indemnifying party’s acts of gross negligence or willful misconduct in connection with its performance under this bulletin, or (ii) in the case of Client, third party claims relating to the use of Deliverables or combination, modification or use of the Deliverables with materials not provided by Mastercard or materials required by Client to be included in the Deliverables.



4.4. Except with respect to Client’s breach of the license in Section 2.1, the maximum aggregate liability of any Party arising out of or relating to the bulletin, whether it arises by statute, contract, tort or otherwise, shall not exceed the value of the Services and Deliverables in the bulletin; provided, however that such limitation shall not apply to the indemnity provided by such Party in Section 4.1.

5. Confidentiality

5.1. “Confidential Information” means any information, Deliverables, insights, Client Data, Mastercard Supplier data, reports, data, materials, processes, methodologies and concepts, in whatever form embodied (e.g., oral, written, electronic) owned by Mastercard or Client, including Personal Data and any non-public information about individuals or consumers of Mastercard or Client and/or their Affiliates, no matter how or by what party such information, materials, or concepts were transmitted, where such information is transmitted or collected in the course of the performance of a Party’s obligations under this bulletin. “Personal Data” means any information relating to an identified or identifiable individual, regardless of the media in which it is contained.

5.2. During the Term and for a period of seven (7) years thereafter (except for non-public information about individuals or consumers of Mastercard and/or Client, which shall be maintained in confidence indefinitely), the Party receiving Confidential Information (“Receiving Party”) from the other Party (“Disclosing Party”) shall maintain the Confidential Information in strict confidence and shall: (i) use Confidential Information only as authorized in accordance with the bulletin; (ii) not copy any Confidential Information except as authorized in accordance with the bulletin; (iii) not disclose Confidential Information to any third party except as expressly permitted in writing by the Disclosing Party and then only if such third party has executed a confidentiality, privacy and data protection obligations no less restrictive than those set forth herein; and (iv) limit dissemination of Confidential Information to employees or Mastercard Supplier with a “need to know” and who are subject to confidentiality, privacy and data protection obligations no less restrictive than those set forth herein.

5.3. Except with respect to Personal Data, Confidential Information shall not include any information which: (i) is already in the public domain at the time of disclosure through a source other than the Receiving Party; (ii) enters the public domain after disclosure through no fault of the Receiving Party; (iii) is already known to the Receiving Party at the time of disclosure (as evidenced by written records); (iv) was independently developed by the Receiving Party without use of or reference to any Confidential Information (as evidenced by written records); or (v) is subsequently disclosed to the Receiving Party by third parties having no obligation of confidentiality to the Disclosing Party.

5.4. Upon the written request of the Disclosing Party, the Receiving Party shall securely destroy or render unreadable or undecipherable, each and every original and copy in every media of all Confidential Information in the Receiving Party’s possession, custody or control (with certification of destruction). The foregoing shall not apply to the extent information must be retained pursuant to applicable legal or regulatory requirements or for purposes of the Receiving Party’s commercially reasonable disaster recovery procedures, provided such information shall continue to be subject to Section 5. 5.

6. Platform Terms

If and to the extent the bulletin includes the Client's use of of Mastercard's and/or its vendors’ technology platforms that are identified as platforms and/or made available by Mastercard in connection with the services provided by Mastercard to Client through the bulletin (“Platform”), the below provisions will control in the event of any conflict with the other provisions of this bulletin. By sending a registration email message, Client accepts and agrees to be bound by the following provisions:

6.1. Platform Access. Subject to these terms and conditions and, in the bulletin, Mastercard grants Client a limited, non-sublicenseable, non-exclusive, non-transferable right to permit its authorized users to access the Platform(s) for the purposes and term set forth in the bulletin. Client’s use of a Platform is subject to the restrictions and limitations set out in the bulletin, which may limit the amount and type of data and users and the Client’s permitted territory of use. Mastercard will host and retain physical control of the Platform(s) and will provide Client’s authorized users with access to use a Platform. A Platform is not considered a deliverable, and no rights in or related to a Platform are deemed granted under the section above. For any Platform, the only deliverables will be the tangible reports and output specific to Client. Mastercard may, at any time, suspend or terminate the Client’s access to the Platform(s) at its discretion in the event of a breach by Client of these terms and conditions and/or the bulletin and in the event that the Client’s access to the Platform(s) is suspended as aforesaid, Mastercard will not be obligated to return any Confidential Information in its possession, custody or control to the Client.

6.2. Usage. Client will use a Platform only for its own internal purposes and by Users. Client will not:
a. Use a Platform or its outputs either directly or as a service bureau for any third party;
b. Sublicense, distribute, transfer, or otherwise make available to any third party (including any contractor, franchisee, or agent) access to or use of a Platform without Mastercard’s prior written consent (which may be conditioned on such third party executing an agreement with Mastercard);
c. Access or use (or permit the access or use of) a Platform in order to: (i) build a similar or competitive product or service (or contract with a third party to do so); or (ii) build a product using similar ideas, features, functions or graphics of a Platform; or (iii) copy any features, functions or graphics of or in a Platform; or
d. Derive specifications from, reverse engineer, reverse compile, modify, disassemble, translate, record, or create derivative works based on a Platform.

6.3. Users. Client shall limit its authorized users only to employees, agents/contractors or who are bound in writing to maintain the confidentiality of a Platform unless otherwise agreed in writing by Mastercard. Client will provide Mastercard the information necessary to enable Mastercard to establish usernames for authorized users. Client will appoint one or more administrative users to manage Client’s user accounts. Client is responsible for:
a. Maintaining the confidentiality of all usernames and passwords; and
b. The acts and omissions of any person to whom it provides or permits access to a Platform. Mastercard may suspend or terminate access for any user who violates the bulletin or this section.

6.4. Client Data. Client will be solely responsible for any Client Data provided to Mastercard for use in a Platform. Client agrees that the timely provision of access to a Platform shall be dependent upon Client providing the required Client Data under the bulletin.

6.5. Support. Mastercard will support a Platform through regular maintenance procedures, such as monitoring of servers, review of disk space usage and database fragmentation, addition of commercially available security patches and upgrades, and review of event log files. Mastercard may update a Platform from time to time in its sole discretion as part of its ongoing mission to improve such Platform.

6.6. Client Responsibility. Client acknowledges and agrees that, with respect to its use of a Platform, the purchase and installation of appropriate computer and communication equipment and the appropriate operating systems and all connectivity is the sole cost and responsibility of Client. Client shall institute security measures necessary to safeguard any remote access to a Platform from unauthorized access by persons other than its authorized users. Client shall notify Mastercard immediately and assist Mastercard in remedying any instance of unauthorized access to, or use of, a Platform.

6.7. Ownership. Mastercard retains all right, title, and interest in and to all current and future versions of all Platforms (including any algorithms, documentation, data models, and user interfaces therein or related thereto) and any other know-how, processes, techniques, concepts, methodologies, tools, or intellectual property Mastercard uses in performing hereunder, even if provided or developed as a result of performing services related to a Platform and all technology, algorithms, and data models relating thereto, even if provided or developed as a result of performing under the bulletin for Platforms. All of the foregoing will be deemed Mastercard Confidential Information. Client’s rights to use any Platform are strictly limited to those granted in the bulletin for Platform(s), and all rights in a Platform not expressly granted to Client are reserved to Mastercard.

6.8. Modifications. Client may, from time to time, request modifications or customizations to a Platform. Mastercard, in its sole discretion, shall determine whether to perform such modifications or customizations and, if so, any such modifications or customizations, and related fees and charges, shall be set forth in the separate mutually executed statement of work, and all resulting modifications and customizations shall remain the property of Mastercard.

6.9. Feedback. Client may, from time to time, provide suggestions, comments, feedback or other input to Mastercard with respect to a Platform, Mastercard may freely use such feedback as it sees fit in perpetuity, entirely without obligation or restriction of any kind on account of intellectual property rights or otherwise, provided that Client is not identified as the source of such feedback.

6.10. Claim. If a Platform is or, in Mastercard’s opinion, likely to become the subject of any infringement-related claim, Mastercard will use its reasonable efforts to:
a. Procure the right for Client to continue to use such Platform or
b. Replace or modify such Platform so that it is no longer subject to a claim, but is functionally equivalent in all material respects. If neither (a) nor (b) is commercially reasonable, Mastercard may terminate any affected bulletin and refund to Client any prepaid but unused fees thereunder. This section states Mastercard’s entire liability, and Client’s exclusive remedy, with respect to any claim of infringement of the intellectual property rights of a third party.

7. General Terms

7.1. No Advice. Client agrees and acknowledges that Mastercard will not provide any legal, regulatory or compliance advice in the course of provision of Services, which shall be the sole responsibility of the Client. Mastercard may provide certain proposed materials and make certain recommendations in connection with the Services. Client acknowledges and agrees that the Deliverables, including the recommendations suggested by Mastercard in connection with the Service, do not constitute legal or investment advice and Mastercard does not otherwise warrant that execution of any recommendations or guidelines contained in the Deliverables will result in compliance with applicable laws or will be up to date, complete or accurate at the time of any such execution. Client is responsible for reviewing and evaluating the appropriateness of these same materials and recommendations, as well as any decisions made or actions taken by Client in response to such proposed materials and recommendations to Client, against Client’s risk-tolerances and/or other criteria. Mastercard makes no warranty or guarantees that: (i) any assessment and recommendations arising from the Services will be effective; or (ii) the Services may provide statistically significant results with respect to any analysis, whether as a result of the fact that relevant data does not support the drawing of statistically significant results or because the data was corrupted, inaccurate, or incomplete in any way.

7.2. Applicable Standards. Mastercard and Client acknowledge and agree that the analyses and data included in the Services shall be subject to all relevant laws and regulations for each applicable country, as well as Mastercard’s contractual obligations and internal confidentiality, privacy, and data analytics guidelines and policies (“Applicable Standards”). In no event will Mastercard be obligated to supply or share any information or data which Mastercard determines, in its sole discretion, would cause Mastercard to be in violation of any such Applicable Standards. Mastercard reserves the right, in its sole discretion, to apply adjustments in order to achieve conformance with such Applicable Standards.

7.3. Notice. Any notice shall be in writing and shall be addressed to the Party entitled to such notice at the Party’s registered address and shall be given by an overnight courier delivery service. Written notice may include email notice (provided the Party receiving such notice acknowledges receipt).

7.4. Force Majeure. Neither Party shall be liable for loss or damage or be deemed to be in default under this bulletin if its failure to perform its obligations results from or is attributable to any act of God, natural disaster, fire, strike, embargo, war, threat of terrorism, insurrection, strike, riot or other cause or circumstance beyond the reasonable control of the Party; provided however that the foregoing shall not excuse any failure to exercise diligence by a Party to minimize the scope, extent, duration and adverse effect of any such delay in performance, on the other Party.

7.5. Waiver. A failure or delay of either Party to enforce any provision of or exercise any right under this bulletin shall not be construed to be a waiver.

7.6. Severability. If any provision of this bulletin is held by a court of competent jurisdiction to be unenforceable or invalid in any respect, such unenforceability or invalidity shall not affect any other provision, and this bulletin shall then be construed as if such unenforceable or invalid provisions had never been part thereof.

7.7. Headings. The captions are included for convenience only and shall not affect the meaning or interpretation of the terms of this bulletin.

7.8. Survival. All representations and warranties, and all commitments: (i) to indemnify, defend, hold harmless, or (ii) relating to confidentiality, limitations on liability, rights and obligations upon termination, and jurisdiction, and any other provision by its nature that is meant to survive shall survive any termination of this bulletin.

7.9. Assignment. This bulletin cannot be assigned by the Client.

7.10.        Entire Agreement. This bulletin evidence the entire agreement and understanding between Mastercard and Client with respect to the transactions contemplated in the bulletin and supersedes all prior agreements, representations, statements, negotiations and undertakings between the Parties, whether oral or written, concerning such transactions, except in respect of any fraudulent misrepresentations made by either Party.

7.11.        Governing Law Jurisdiction. The bulletin and the respective rights and obligations of the Parties shall be governed by the laws of the applicable Governing Law Jurisdiction without reference to its conflict-of-laws or similar provisions that would mandate or permit application of the substantive law of any other jurisdiction. The courts located in the applicable Governing Law Jurisdiction shall have the exclusive jurisdiction over any actions or disputes related to these terms and conditions and/or the bulletin.

7.12. Remedies. Unless otherwise expressly provided herein, any remedies stated herein are non-exclusive. In addition to these remedies, the Parties shall be entitled to pursue any other remedies that they may have at law or in equity.

7.13. Mastercard Entity. “Mastercard” means the party identified in the table below based on the applicable Territory and is referred to in these Terms as “Mastercard”. “Governing Law Jurisdiction” means the jurisdiction indicated in the table below which corresponds to the applicable Mastercard entity.


MarketMastercard EntityAddressGoverning Law Jurisdiction
Any market in the Europe RegionMastercard Europe SA198/A Chaussée de Tervuren, 1410 Waterloo, BelgiumBelgium
Any market in the Asia/Pacific RegionMastercard Asia/Pacific Pte. Ltd.3 Fraser Street, DUO Tower #17 - 21/28, Singapore 189352Singapore
Any market in the Canada RegionMastercard Canada ULC121 Bloor St. East, Ste 600, Toronto, Canada M4W 3M5Province of Ontario and the federal laws of Canada
Any market in the United State RegionMastercard International Incorporated2000 Purchase Street, Purchase, New York 10577New York
Any market in the Latin America and the Caribbean Region (except Argentina and Brazil)Mastercard International Incorporated2000 Purchase Street, Purchase, New York 10577New York
BrazilMastercard Brasil Soluções de Pagamento Ltda.Av. Nações Unidas, 14171, Crystal Tower, 20° andar, São Paulo, BrasilCity and State of São Paulo and laws of Brasil
ArgentinaMastercard Cono Sur, S.R.L.Plaza Porteño 1, Olga Cossettini 771, 2º piso, Buenos Aires, Argentina, C1107CDATribunais Comerciais Nacionais de la Ciudad de Buenos Aires and laws of Argentina
Any market in the Middle East and Africa RegionMastercard Asia/Pacific Pte. Ltd3 Fraser Street, DUO Tower #17 - 21/28, Singapore 189352Singapore