High-Level Logical and Integration Diagram

This diagram illustrates a high-level architecture for a rewards and segmentation platform designed to securely process client data on-premises while integrating with external points providers and centralized services for enhanced functionality. Below is a detailed description of each component:

1. Customer Interaction Layer

• Customer Gateway: Acts as the entry point for customers, accessible via mobile applications or websites. It facilitates communication between customers and the backend services.

• Customer: End users interacting with the system through web or mobile apps to view rewards, redeem points, or access promotions.

2. Client's On-Premises Infrastructure

• Points Providers Middleware:

  • Integrates with external points providers like L360, MRS, and Siebel through secure APIs or direct database connections.

  • Synchronizes points data with the on-premises modules for further processing.

• Rewards Catalogue:

  • Contains customer-specific details such as:

    • Personal Identifiable Information (PII): First Name, Last Name, National ID (NID), Birth Date.

    • Points accumulation and redemption history.

  • This database is customizable, single-tenant, and hosted securely on-premises to meet client-specific requirements.

• Calculation and Rules Engine:

  • Processes customer data to compute points based on predefined business rules.

  • Business rules can include thresholds, bonus points, or special promotions tailored to the client’s needs.

• Segmentation Engine:

  • Dynamically groups customers or entities into segments based on attributes like points thresholds, transaction history, or behavioral patterns.

  • Helps in targeted campaigns, personalized recommendations, and customer retention strategies.

3. External Integration with Points and Voucher Providers

• Points Providers: Includes systems such as L360, MRS, and others for retrieving or updating customer points balances.

• Voucher Providers: Integrates with external providers for managing coupons, gift cards, and other physical or digital rewards.

• Secure Gateway: All interactions with external providers occur through a secure gateway, ensuring encrypted data transfer and adherence to IP whitelisting and throttling policies.

4. Centralized Services (DSQ Centralized Services)

• DSQ Core Services: Hosted in a virtual private cloud (VPC) to manage various functionalities through microservices, including:

  • Roles Engine: Manages access control and roles for internal systems.

  • Internal API Gateway: Facilitates secure communication between internal services.

  • Identity Service: Ensures authentication and authorization for users and systems.

• Service Components:

  • Segmentation Service: Groups users or entities into actionable categories based on real-time or batch data.

  • Campaigns Service: Drives targeted campaigns using segmented data.

  • Gift Cards, Discounts, and Travel Services: Supports integration with external vendors for redeemable items.

  • Automation Service: Handles event-based triggers like sending notifications or applying rewards automatically.

• Queue Service: Manages asynchronous processing of events and data flow across the system.

5. Security and Networking

• VPN Connection: A secure channel between the client’s on-premises system and centralized services, ensuring data privacy.

• DMZ (Demilitarized Zone):

  • Hosts the External API Gateway for safe interaction with external systems.

  • Includes layers like Authentication, Data Sanitizing, and IP Whitelisting to ensure security and integrity of data exchange.

6. Data and Analytics

• The system is supported by various data tools and components for performance, logging, and analytics:

  • Buckets and Big Query Analysis: For scalable data storage and analysis.

  • Caching: Ensures faster retrieval of frequently accessed data.

  • Metrics Collection: Gathers performance metrics for monitoring and optimization.

  • Artifacts and Logs Collection: Stores application builds and operational logs for debugging and compliance.

7. Outputs

• Customer Engagement: Customers can redeem points, view their rewards, and interact with campaigns through the platform.

• Operational Insights: Provides actionable data for the merchant center and operations center for better decision-making.

• Personalized Offers: Segmented data allows clients to run targeted campaigns and deliver customized offers through various channels.

This architecture is designed to be scalable, secure, and modular, allowing seamless integration with multiple providers while maintaining strict data privacy on the client’s premises.