Click here to load reader
Upload
business-systems-uk-ltd
View
291
Download
0
Embed Size (px)
Citation preview
PCI COMPLIANCE FOR CALL RECORDING
APPROACHES TO PCI COMPLIANT CALL RECORDING
DOWNLOAD OUR BEST PRACTICE GUIDE ATWWW.BUSINESSSYSTEMSUK.CO.UK/PCI
AUTOMATED PAUSE & RESUMEWhen agent enters payment details on screen, a trigger is generated to stop the recording.
ENCRYPTION“Sensitive Authentication
Data, a key part in card transactions, cannot be stored whether encrypted or not.”
AUDIO MASKINGAn audio tone is inserted over the call but not compliant as data is still retained.
PASSWORD PROTECTING YOUR RECORDERDoes not satisfy requirement 3.2 stipulating no personal ID info should be captured.
MANUAL PAUSE & RESUME“Organisations must
remove sensitive authentication data from recordings withno manual intervention by your staff.”
DTMF BASED PAYMENT COLLECTIONCaller keys in their credit card details via phone handset with phone system passing details directly to payment application.
AUTOMATED MUTE & UNMUTESimilar to pause and resume but mutes the recording rather than stops it so you don’t have 2 separate unlinked recordings.
Initially £3,500 - £65,000
Now up to £250,000
UK credit card fraud reached £388M in 2012 representing a 14% INCREASE
CONSEQUENCES of non compliance
If you process
payments by PHONE and RECORD these calls
– your call recorder must
be PCI compliant to help
fight fraud
PCI CFOR CALL
UK credit card fraud reachedUK credit card fraud reachedUK credit card fraud reached
in in in 2012 representing a
If you process If you process If you process If you process If you process If you process
payments by
and
– your call recorder must
be PCI compliant to help
fight fraud
If you process If you process If you process
MONTHLY FINES
COMPLIANT
NON COMPLIANT