Telephone voice recording solutions are essential for recording agent-customer interactions and associated telephony and screen data. However, in this new age of cyber crime and identity theft, the inevitable emergence of strict regulations to help protect sensitive customer data has resulted in many organizations being forced to scramble to update or replace their existing phone audio recorder solutions in order to adhere to the latest legislative guidelines.
The PCI-DSS, a set of comprehensive requirements for enhancing payment account data security, was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. International, to help facilitate the broad adoption of consistent data security measures on a global basis. Announced in January 2010, PCI-DSS requirement 3.2 states that organizations must not store sensitive authentication data subsequent to authorization – even if encrypted. Sensitive authentication data consists of magnetic stripe (or track) data, card validation code or value, and PIN data. This data is deemed particularly sensitive as it can be used by to generate fake payment cards and create fraudulent transactions.
The PCI-DSS regulations are requiring organizations that handle credit card transactions over the phone to delete all archived recordings that contain sensitive authentication data. In order to comply with these new regulations, many organizations are having to delete all of these verbal receipts because the process of listening to the contents of potentially hundreds of thousands of call recordings would be cost prohibitive and labor intensive. Unfortunately, the many calls that do not contain sensitive data will also be deleted – calls that should be retained for quality assurance (QA) purposes and liability management.
VPI’s rules-driven call logging software solution enables organizations to maintain PCI compliance by identifying the calls that cannot be accessed and archived due to data sensitivity issues as well as those that can be safely archived for use in QA and liability management. The VPI CAPTURE PRO call recording software solution leverages unique desktop screen analytics that can detect events and data directly from application screens – such as an employee entering sensitive credit card authentication data into a field on screen – and tags them to the recorded interactions. This enables automated classification for deletion of all audio and video recording files containing sensitive authentication data and helps ensure compliance with the latest PCI-DSS regulations. And as an added bonus, VPI's phone audio recorder makes valuable non-sensitive data related to the interaction – such as call date/time, call direction, Customer ID, Agent ID, sales or collections amount, number of transfers, and hold time – is still kept and made available in interactive reports for analysis into key business issues and opportunities. For more information on VPI’s compliance call logging software solution, visit: http://www.VPI-corp.com/PCI
In addition to offering highly advanced screen analytics capabilities, VPI's phone call logger provides built-in end-to-end data encryption and key management, file watermarking, and detailed audit log reporting. Cost-effective and very affordable, VPI solutions enable organizations to gain a lasting advantage – with open standards and service oriented architecture, the VPI telephone voice recording solution has the flexibility to grow and evolve in order to adapt to your changing environment. VPI customers benefit from unsurpassed versatility and ROI as the unified platform supports virtually any PBX – digital or analog, TDM or VoIP, individually or blended – with a unified interface and industry standard file formats.