PCI COMPLIANCE FOR CALL RECORDING

APPROACHES TO PCI COMPLIANT CALL RECORDING

DOWNLOAD OUR BEST PRACTICE GUIDE ATWWW.BUSINESSSYSTEMSUK.CO.UK/PCI

AUTOMATED PAUSE & RESUMEWhen agent enters payment details on screen, a trigger is generated to stop the recording.

ENCRYPTION“Sensitive Authentication

Data, a key part in card transactions, cannot be stored whether encrypted or not.”

AUDIO MASKINGAn audio tone is inserted over the call but not compliant as data is still retained.

PASSWORD PROTECTING YOUR RECORDERDoes not satisfy requirement 3.2 stipulating no personal ID info should be captured.

MANUAL PAUSE & RESUME“Organisations must

remove sensitive authentication data from recordings withno manual intervention by your staff.”

DTMF BASED PAYMENT COLLECTIONCaller keys in their credit card details via phone handset with phone system passing details directly to payment application.

AUTOMATED MUTE & UNMUTESimilar to pause and resume but mutes the recording rather than stops it so you don’t have 2 separate unlinked recordings.

Initially £3,500 - £65,000

Now up to £250,000

UK credit card fraud reached £388M in 2012 representing a 14% INCREASE

CONSEQUENCES of non compliance

If you process

payments by PHONE and RECORD these calls

– your call recorder must

be PCI compliant to help

fight fraud

PCI CFOR CALL

UK credit card fraud reachedUK credit card fraud reachedUK credit card fraud reached

in in in 2012 representing a

If you process If you process If you process If you process If you process If you process

payments by

and

– your call recorder must

be PCI compliant to help

fight fraud

If you process If you process If you process

MONTHLY FINES

COMPLIANT

NON COMPLIANT