Veritape Ltd.

Alkrington Hall, Alkrington, Manchester, M24 1WD, UK
tel. +44 (0) 845 899 5500 fax. +44 (0) 8458 99 55 11
website: www.veritape.com

Print This Page

How does PCI DSS affect my business?

If your business takes card payments over the telephone, implementing PCI DSS will help protect you and your customers against fraud. If PCI DSS is ignored, you could be fined, and ultimately merchant service privileges could be withdrawn, resulting in a significant loss of business.

The implications of non-compliance are far reaching. UK call centres which breach the guidelines (in other words, by storing unedited audio files containing credit card details) are contributing to a huge reservoir of sensitive card data and a rise in hacking incidents is creating unnecessary risk. Consumers have every right to be concerned, and are increasingly demanding reassurance that their cards details are safe when making purchases over the telephone.

To prove PCI DSS compliance, you can either:

  • self-certify using the ‘SAQ’ self-assessment questionnaire, or
  • pay a QSA (Qualified Security Assessor) to audit you

If you are a Level 1 merchant, you have to use a QSA, as only Levels 2,3 and 4 can self-assess.

Engaging a QSA is very expensive and time-consuming. Hence, for Level 2, 3 and 4 merchants, taking call recordings completely out of scope with Veritape CallGuard may make the difference between having to employ a QSA (and go through a huge audit process) or not.

Find out how you can become compliant for your call recordings.

 

© Veritape Ltd 2009