PCI DSS Compliance
Elite Telecom is dedicated to bringing protection to your business and makes us one of a handful of companies offering cost effective and reliable PCI DSS Compliance solutions.
Assessing current offerings on the market to tackle mandatory PCI compliance requirements, we saw an opening for alternative solutions that mean you can record all calls whilst still taking sensitive card information from the customer. We call these Elite CardGuard and Elite CardGuard Pro.
We have met with many companies across the UK and found there was an issue between call recordings and the handling of customer card details. Many call centres and telemarketing operations found it essentially destructive to routine and processes to pause the call recording manually as the customer recites their details. Doing this means that the agent taking the call still hears the card details, leaving the customer at risk.
PCI - Don’t risk the cost of non-compliance
With many stories in the press over fraudulent call centre agents stealing customer data and overseas credit card scams, customers are now increasingly anxious about who they tell their details to – and rightly so.
The Financial Services Authority (FSA) introduced UK legislation requiring some companies to record and store all telephone conversations in a range of situations. However, the Payment Card Industry Data Security Standard (PCI DSS) stipulate that certain card data cannot be kept post authorisation. Equally, full personal account numbers cannot be kept without further protection measures.
This caused a huge risk for those organisations taking customer credit card details over the phone and recording full cardholder details. It is a violation of PCI DSS requirement 3.2 to store any sensitive authentication data including card validation codes and values after authorisation, even if encrypted. It was a catch 22 situation.
Should you be found to violate any of the requirements the penalties and fines adhered to your business could potentially be enough to put you out of business. Should credit card data be found to have been used fraudulently within your organisation you risk paying £15 per compromised card data, plus any additional costs rallied up per card. E.g. if you have 1.5m card details stolen you risk paying over £22m for card replacements plus any fees attained per card.
PCI Compliance Solutions
PCI Compliant call recording is on the top priority list of many businesses. Elite offer two products – Elite CardGuard and Elite CardGuard Pro to tackle this issue, meaning that you can record all calls and protect customer data.
Features & Benefits of PCI Compliance
- Consumers increasingly have ‘security anxiety’ – this resolves that and increases trust between your brand and the customer
- Security breach = branding and company catastrophe
- Good security = invaluable marketing tool
- Improved call handling and customer experience
- Offshore and outsource without security fears
- PCI DSS compliance is mandatory and this is one way to become fully compliant and save yourself legally
- Possible impacts on business agility
- CardGuard and CardGuard Pro both solve the call centre conundrum – what to do with call recording?
- Avoid huge penalties that could be enough to put you out of business
Our solutions not only enable your customers to make card payments conveniently and securely over the phone, but also via the web, SMS and with smartphones. By using our PCI DSS compliant automated payment solutions you can adhere to industry regulations, protect your business and give the customer trust in your operations. By protecting customers’ personal data we increase confidence, minimise the risk to business and safeguard the reputation of your brand.