Blog > PCI DSS

PCI DSS

Outsourcers and homeworkers need to be PCI DSS compliant too

Organizations taking payment over the phone, both private and public sector, are now rapidly embracing the regulatory requirement to ensure that card payments over the phone are secure. In the early days of tackling compliance, ‘clean rooming’ agents was a method used to ensure card numbers couldn’t be inadvertently stored or misused, by ensuring that …

Outsourcers and homeworkers need to be PCI DSS compliant too Read More »

If you don’t need the card data, don’t touch it!

Call centers, when it comes to PCI DSS compliance give the problem to someone else I have been a PCI DSS QSA for seven years now, and involved in the information security industry for 15. In that time I have assessed and advised all manner of customers, large and small, across various sectors and in various aspects …

If you don’t need the card data, don’t touch it! Read More »

How to make your call recordings PCI DSS compliant

It’s common practice nowadays for organizations to record telephone calls between staff and customers. This might be for quality control, for staff monitoring and training, or as part of customer service and complaints review. Indeed, in many industries (particularly financial services) the recording of calls is a regulatory requirement. Call recording throws up a number …

How to make your call recordings PCI DSS compliant Read More »

PCI DSS compliance – why does it matter and how can you ensure your call center is compliant?

PCI DSS (payment card industry data security standard) is a set of standards designed to ensure that any company which processes, stores or transmits credit card information does so securely. If you ever handle any credit or debit card payments over the phone in your contact center then PCI DSS applies to you, regardless of …

PCI DSS compliance – why does it matter and how can you ensure your call center is compliant? Read More »