SecureLoop
πŸ’³ Corporate Cards Β· FBT Β· Spend Compliance

Corporate Card Monitoring That Lives Inside Your M365

SpendGuard watches every corporate card transaction for FBT exposure, policy breaches, and fraud β€” running inside your existing Microsoft 365 tenant. No new software to buy, no new logins for your team, and your transaction data never leaves your environment.

Book a free health checkGeneral fraud detection

Free 3-month health check Β· Setup from $3,500 fixed price Β· Running from $599/month

Microsoft 365AzurePower BIXero Β· MYOB Β· SAP ConcurFBT complianceATO audit trail
$82KAverage ATO FBT audit liability for SMEs
100%Of transactions scored β€” not just a sample
30 daysTypical go-live from health check
0New logins required for your team
⚠️ ATO Focus Area 2025–26

The ATO is actively auditing FBT on corporate cards

Three risk areas have converged for Australian businesses with corporate card programmes in 2025–26, making proactive monitoring essential rather than optional.

01

FBT actual method β€” the savings are real, but so is the risk

The actual method for entertainment FBT can cut your liability dramatically compared to the 50/50 split method β€” but it requires contemporaneous records of who attended, the business purpose, and the cost per head. Most businesses keep none of this at the time of the transaction. SpendGuard captures it automatically at point of expense.

02

ATO data matching β€” your card data is already with them

The ATO receives corporate card data from major banks under data matching programmes. If your FBT lodgement does not reconcile with that data, you are already flagged before any audit commences. The question is whether your records can defend the position.

03

Policy breaches are a board governance issue, not just an admin problem

Repeated spend policy breaches β€” personal purchases on company cards, unapproved vendor use, split transactions to avoid approval thresholds β€” are increasingly treated as a control failure at board level, not just an HR matter. Finance teams need systematic evidence that controls are working.

Businesses that can demonstrate real-time monitoring with a full audit trail are in a fundamentally different position in an ATO review than those relying on monthly reconciliation or spot checks.

What SpendGuard monitors

Four detection modules. One managed service.

πŸ“‹

Policy Checker

Every transaction is scored against your spend limits, approved merchant categories, and approval matrix. Personal spend MCCs, split transactions designed to avoid approval thresholds, and out-of-policy vendors are flagged in real time before the reconciliation cycle.

🧾

FBT Detector

Automatically identifies entertainment, meal, and benefit transactions subject to FBT. Captures attendee counts and business purpose at point of expense to support the actual method. Tracks the April–March FBT year and generates RFBA data for payroll integration.

πŸ”Ž

Fraud Scoring

Every transaction receives a 0–100 risk score built on velocity anomalies, after-hours patterns, personal spend merchant codes, and transaction splitting signatures. High composite scores surface immediately for finance team review β€” not at month-end.

🏒

Supplier Check

New or unregistered vendors are automatically flagged for approval before spend continues. Detects procure-to-pay leakage where card spend bypasses the approved vendor register. Screens against your approved supplier list on first transaction with any new merchant.

Data sovereignty

Your data stays in your Microsoft 365 tenant

Most expense monitoring tools require you to send transaction data to their cloud environment. SpendGuard is different. The detection engine runs in SecureLoop's Azure tenant, but your transaction data never leaves your Microsoft 365 environment.

🏦

Card data ingested

Xero, MYOB, SAP Concur, Basiq bank feeds, or OFX/CSV dropped to a SharePoint folder β€” data lands in your M365 tenant.

β†’
βš™οΈ

Detection runs via API

The SpendGuard Engine calls your data via an API subscription key β€” results and risk scores are written back to your Power BI dataset.

β†’
πŸ“Š

Alerts in your Power BI

Your finance team sees alerts, FBT summaries, and dashboards in Power BI β€” inside your existing Microsoft 365 licence.

Transaction data is processed and stored within Australia. Read-only access is used at all times β€” SpendGuard cannot initiate, modify, or cancel any payment or transaction.

Pricing

Fixed price. No surprises.

One setup fee, one monthly subscription based on your cardholder count. No per-transaction charges, no annual contracts on day one.

Starter

$599/month

Up to 20 cardholders

  • All four detection modules
  • Power BI dashboard (6 pages)
  • Xero or MYOB integration
  • FBT actual method tracking
  • Email alerts
  • Monthly review call
Start with health check
Most Popular

Business

$1,199/month

21–60 cardholders

  • All four detection modules
  • Power BI dashboard (6 pages)
  • Xero, MYOB, or SAP Concur
  • FBT actual method + RFBA export
  • Real-time Slack/Teams alerts
  • Fortnightly review call
  • Custom policy rules
Start with health check

Enterprise

$2,199/month

61–200 cardholders

  • All four detection modules
  • Power BI dashboard (6 pages)
  • All integrations inc. Basiq CDR
  • Full FBT reporting package
  • Real-time alerts + webhook
  • Weekly review call
  • Custom approval matrix
  • Priority support SLA
Start with health check
Setup fee: $3,500 (one-time) β€” includes M365 integration, Power BI deployment, policy configuration, and team onboarding. Delivered in 30 days. Start with a free health check β€” send us 3 months of CSV card exports and we will show you exactly what we find before you commit to anything.
Built for

Whoever is responsible for card spend accuracy

CFOs and Finance Managers

  • Real-time visibility across all cardholders β€” no monthly reconciliation delays
  • FBT liability quantified per transaction, not just at year-end
  • Board-ready evidence that spend controls are working
  • ATO audit trail maintained automatically

Finance Teams

  • Alerts surface exceptions before they become a problem
  • Policy breaches flagged at transaction β€” not at reconciliation
  • FBT attendee data captured at point of expense, not chased later
  • Month-end close faster with fewer surprises

Business Owners

  • Know immediately if a card is being misused
  • Stop paying for personal expenses accidentally charged to the business
  • Protect against supplier fraud and P2P leakage
  • Systematic monitoring your accountant and board can point to
Free health check

See what's hiding in 3 months of card data

Export 3 months of corporate card transactions from your expense system or bank β€” we run them through the SpendGuard engine and return a plain-English report showing:

🧾

FBT exposure estimate

How much FBT liability is sitting in your entertainment and meal spend, and what the actual method would save versus your current approach.

⚠️

Policy breach count

How many transactions in those 3 months would have been flagged by a standard corporate card policy β€” and the dollar value they represent.

πŸ”΄

Fraud risk flags

Any transactions with high fraud risk scores β€” velocity anomalies, personal spend patterns, or split transaction signatures in your actual data.

🏒

New vendor exposure

A count of merchant relationships that would not pass a first-use supplier check, and what categories they fall into.

No commitment. No software to install. Just send us the CSV and we do the rest.

Book the free health check
Common questions

Frequently asked questions

What accounting systems does SpendGuard connect to?

SpendGuard connects to Xero (OAuth 2.0), MYOB AccountRight and Business, and SAP Concur. It also supports Basiq CDR API for direct Australian bank feeds and an OFX/CSV ingest path via a SharePoint drop zone for any system that can export transactions. Email receipts can also be processed via a shared M365 mailbox.

Do we need to buy any new Microsoft licences?

No. SpendGuard is built on Microsoft 365 and Power BI, which most businesses with 20+ employees already have. If you have Microsoft 365 Business Standard or higher, you likely have everything needed. We confirm licence requirements in the free health check.

How does the FBT actual method tracking work?

When a cardholder submits an entertainment or meal expense, SpendGuard prompts them to capture the number of attendees and business purpose at that point β€” not two weeks later when nobody remembers. The engine calculates the FBT liability per transaction under the actual method and accumulates these across the April–March FBT year. At year-end you have a complete, defensible FBT register.

Does our transaction data leave our environment?

No. Transaction data is processed and stored within your Microsoft 365 tenant. The SpendGuard Engine in SecureLoop's Azure calls your data via API β€” results and risk scores are written back to your Power BI dataset. Raw transaction data never leaves your M365 environment.

What happens when a transaction is flagged?

Flagged transactions generate an alert with full context β€” the transaction details, why it was flagged, the risk score, and the cardholder's transaction history. Your finance team reviews the alert in Power BI or via email/Teams notification, then marks it as legitimate, requiring follow-up, or escalated. Every decision is logged in the audit trail.

How long does setup take?

Standard onboarding is 30 days across four phases: connection and data validation (week 1), policy configuration and baseline calibration (week 2), Power BI deployment and alert configuration (week 3), and team training and go-live (week 4).

What does the free health check involve?

Export 3 months of corporate card transactions from your expense system or bank portal as a CSV β€” we run it through the SpendGuard engine and return a report showing your FBT exposure estimate, policy breach count, fraud risk flags, and new vendor exposure. No software to install, no commitment required.

Is SpendGuard a software product or a managed service?

Managed service. SecureLoop operates SpendGuard β€” you do not manage the infrastructure, tune the detection rules, or maintain the integrations. You get the dashboards, alerts, and review calls. Detection rules need ongoing calibration to remain effective, and that calibration is included in the monthly fee.

See what's in your card data before the ATO does

Book a free 30-minute call. We will walk through the health check process, show you a live demo of the Power BI dashboards, and give you a fixed-price quote based on your cardholder count.

Book the free health checkGeneral fraud detection

Brisbane QLD Β· Serving all of Australia Β· Fixed-price setup from $3,500