PCI DSS stands for Payment Card Industry Data Security Standard and is a set of requirements which are designed to ensure that all companies that accept, process, store or transmit credit card information maintain a secure environment.
There are 12 broad requirements for PCI DSS compliance, which are grouped together under six headings as shown below. Each of these headings represents a whole raft of specific actions. For a more in-depth look at what is needed, The Security Standards Council have produced a reference guide.
If your business requires you to accept card transactions then you need to ensure that you are able to satisfy the requirements of PCI DSS in your own contact centre environment or work with a partner that has obtained accreditation. If your organisation is large enough and has the requisite skills in-house then it may be appropriate for you to obtain your own accreditation. But for many smaller businesses, there are good reasons for finding a partner who can do this work for you.
There are several reasons to consider finding a partner that can work with your contact centre rather than trying to go it alone.
The process can take up to a year to complete depending on your current level of data security.
There are benefits for any contact centre of working with a PCI DSS compliant partner. This is because the requirements for PCI DSS will take you at least 70% of the way to ensuring that your business complies with the GDPR regulations, which will begin to apply from May 2018.
Hostcomm’s payment solution is the first to offer a contact centre platform and agent-assisted payment IVR in one PCI-DSS certified package. Its integrated approach eliminates many of the costs that standalone payment IVR solutions must occur in order to descope your contact centre, improves payment closure rates, while also minimising your commitment of resources and allowing businesses to start taking secure payments immediately.