What is Mastercard?

Mastercard is a global payment technology company that operates the payment network connecting merchants, acquiring banks, and card-issuing banks. Like Visa, Mastercard does not issue cards directly — it provides the infrastructure and rules for processing transactions.

What Is Mastercard?

Mastercard Incorporated is a global payment technology company that operates one of the world's largest electronic payment networks. Like Visa, Mastercard does not issue cards itself -- it provides the network infrastructure that connects cardholders, merchants, issuing banks, and acquiring banks to facilitate secure, fast card transactions worldwide.

Mastercard processes billions of transactions each year across more than 210 countries and territories. In the UK, Mastercard is the second-largest card network after Visa, with its cards issued by most major banks and building societies for both consumer and business use.

How the Mastercard Network Works

Mastercard's global network -- known as Banknet -- processes transactions through the same three-stage flow used by all major card networks:

Authorisation: The merchant's payment gateway sends the transaction to Banknet, which routes it to the cardholder's bank. The bank checks the card details, available balance or credit, and fraud indicators, then returns an approval or decline in approximately 1-2 seconds
Clearing: Mastercard facilitates the exchange of transaction details between the issuing and acquiring banks, confirming the final amount after any adjustments (such as tips or currency conversion)
Settlement: Net amounts are calculated and funds are transferred between banks. The merchant receives the payment (minus fees) and the cardholder's account is debited

Banknet can process more than 5,000 transactions per second and provides the reliability that merchants and cardholders depend on for everyday payments.

Mastercard Card Types

Mastercard Debit

Debit cards on the Mastercard network are linked to the cardholder's bank account. Payments are deducted directly from the available balance. In the UK, Mastercard Debit is widely issued by banks and challenger banks alike.

Mastercard Credit

Credit cards on the Mastercard network provide a revolving credit facility. Cardholders can spend up to their credit limit and repay monthly, with interest charged on outstanding balances.

Mastercard Prepaid

Prepaid Mastercard cards are loaded with funds in advance and not linked to a bank account. They are popular for travel, budgeting, and situations where a traditional bank account is unavailable.

Mastercard Commercial

Business cards, corporate cards, and purchasing cards designed for company spending. These include expense management features, reporting tools, and customisable spending limits.

Mastercard Security Features

Mastercard has developed a thorough suite of security technologies:

Mastercard Identity Check Mastercard's implementation of 3D Secure 2 / SCA for online payments. It uses biometrics, one-time passcodes, and risk-based analysis to authenticate cardholders
CVC2 The three-digit security code (Mastercard uses the term CVC) on the back of the card, used for card not present verification
Mastercard Digital Enablement Service (MDES) Tokenisation technology that replaces card numbers with unique tokens for digital wallets and online payments
Decision Intelligence AI-powered real-time fraud detection that analyses transaction patterns, location data, device information, and hundreds of other signals to identify suspicious activity
EMV chip: Chip-and-PIN technology for secure in-person payments
Mastercard Cyber Secure A programme that helps banks and merchants identify and assess cyber risk across their digital ecosystems

Mastercard's Role in PCI DSS

Mastercard is a founding member of the PCI Security Standards Council and operates its own compliance programme -- the Mastercard Site Data Protection (SDP) programme. This programme defines:

Transaction volume thresholds for merchant and service provider levels
Compliance validation requirements for each level
Penalties for non-compliance and data breaches
Registration requirements for service providers

Mastercard's SDP requirements are broadly aligned with Visa's CISP programme, and in practice, PCI DSS compliance satisfies both. However, Mastercard has its own chargeback monitoring programme (the Excessive Chargeback Programme) with specific thresholds and penalties that merchants must be aware of. Mastercard defines an excessive chargeback merchant as one with more than 100 chargebacks and a chargeback ratio above 1.5% in a given month.

Mastercard and Telephone Payments

Mastercard cards are frequently used for telephone payments across the UK. Like all card brands, Mastercard classifies telephone payments as MOTO (Mail Order / Telephone Order) transactions. Key characteristics include:

MOTO transactions are exempt from Strong Customer Authentication
Mastercard Identity Check (3DS2) does not apply to MOTO transactions
The merchant bears full liability for fraud-related chargebacks
CVC2 verification is the primary security check for telephone payments
Interchange rates for MOTO may differ from e-commerce or point-of-sale rates

Mastercard requires all merchants to protect cardholder data in accordance with PCI DSS, and this applies fully to telephone payment environments. Contact centres processing Mastercard payments must ensure that card data is secured throughout the call -- from the moment it is captured to the point of authorisation -- and that no card data is stored in call recordings, agent notes, or any other system after the transaction is complete.

Mastercard vs Visa

From a cardholder's day-to-day perspective, Mastercard and Visa function almost identically. Both are accepted at the same merchants, both process transactions in seconds, and both offer similar security features. The main differences are:

Interchange rates Rates can vary between the two networks for specific transaction types and merchant categories
Cardholder benefits Premium cards on each network may offer different travel insurance, purchase protection, or reward programmes (set by the issuing bank, not the network itself)
Processing technology Both networks are highly reliable, with slightly different architectures (VisaNet vs Banknet)

For merchants, accepting both Visa and Mastercard is standard practice in the UK -- refusing either would mean turning away a significant proportion of potential customers.

How Paytia Uses This

Paytia fully supports Mastercard debit and credit card payments through its secure telephone payment platform. When a Mastercard holder makes a payment over the phone, their card details are captured via the phone keypad, masked by DTMF suppression, and transmitted securely to the payment gateway for authorisation through the Mastercard Banknet network.

Paytia's PCI DSS Level 1 certification satisfies Mastercard's Site Data Protection programme requirements. Merchants using Paytia can process Mastercard telephone payments in full compliance with both PCI DSS and Mastercard's own security standards, with no card data exposure in the contact centre environment.

Telephone Payments PCI DSS Compliance

Frequently Asked Questions

Is Mastercard the same as Visa?

No, they are separate companies with independent payment networks, but they function very similarly. Both process card transactions between banks, both are accepted at most UK merchants, and both offer debit, credit, and prepaid cards. The choice of Visa or Mastercard is usually made by your bank when they issue your card.

Can I use a Mastercard for phone payments?

Yes. Mastercard debit and credit cards work for telephone payments. You provide your card number, expiry date, and CVC code, and the transaction is processed through the Mastercard network. Secure telephone payment solutions let you enter these details on your phone keypad rather than reading them aloud to an agent.