PCI SSC issues new guidance on payment card data and call recording
18 March 2011
The information supplement released today by the PCI SSC about the storage of sensitive card data in recorded telephone calls from the PCI SSC confirms the CallGuard approach. CallGuard is a technology for simply and quickly removing cardholder data from telephone calls before they are recorded.
Nadeem Hussain, Veritape’s Business Development Director says “Since Veritape’s launch of CallGuard in 2010, our customers have found it simple to automatically filter out cardholder data from their contact centre recordings. The CallGuard approach mirrors exactly the approach described in today’s PCI SSC statement, which clearly states that no sensitive authentication data should be stored in recorded phonecalls. CallGuard can also eliminate card data automatically from agents’ computer screens, eliminating the possibility of theft and also ensuring screen recording application are PCI DSS compliant.”
Today’s statement from the PCI SSC will impact companies which may be about to invest in technology to protect their call recordings. For an understanding of how the changes may affect your business, please contact Veritape.
About Veritape
Veritape’s CallGuard technology brings PCI DSS compliance to any call recording system, by eliminating cardholder data from customer conversations on-the-fly. Truly plug and play, CallGuard does not require integration with existing telephony, recording or IT architecture, and (crucially) doesn’t require any changes to a customer’s payment gateway. CallGuard helps contact center operators eliminate card data theft, and aids customer service, as the conversation between caller and agent is uninterrupted.
Veritape regularly provides specialist advice to banks and PCI industry groups. More information is available at www.callguard.co