Security
Security
Security
PCI Certified Level 1 Call Center
As a company, if you accept or process payment cards, the PCI Data Security Standards apply to you. If you take credit cards via inbound telemarketing, customer service or outbound telemarketing, you will need a PCI compliant call center, preferably a PCI Certified Level 1 call center.
It’s in the news continuously – consumer credit card data is hacked and stolen. In an effort to combat these threats, Visa, MasterCard, American Express, Discover and JCB created a set of standards known as the Payment Card Industry Data Security Standards (PCI DSS). PCI DSS is required for all entities that store, process, or transmit cardholder data, including call center vendors and outsourcers. These standards include technical and operational requirements for organizations accepting or processing payment transactions. PCI DSS helps a company to avoid potential severe penalties/fines or even lose their credit card processing arrangement if a breach were to occur.
Other potential liabilities:
- Loss of customer confidence
- Diminished Sales
- Fraud Loss
- Higher subsequent costs of compliance
- Go out of business
PCI Certified Level 1 Call Center
As a company, if you accept or process payment cards, the PCI Data Security Standards apply to you. If you take credit cards via inbound telemarketing, customer service or outbound telemarketing, you will need a PCI compliant call center, preferably a PCI Certified Level 1 call center.
It’s in the news continuously – consumer credit card data is hacked and stolen. In an effort to combat these threats, Visa, MasterCard, American Express, Discover and JCB created a set of standards known as the Payment Card Industry Data Security Standards (PCI DSS). PCI DSS is required for all entities that store, process, or transmit cardholder data, including call center vendors and outsourcers. These standards include technical and operational requirements for organizations accepting or processing payment transactions. PCI DSS helps a company to avoid potential severe penalties/fines or even lose their credit card processing arrangement if a breach were to occur.
Other potential liabilities:
- Loss of customer confidence
- Diminished Sales
- Fraud Loss
- Higher subsequent costs of compliance
- Go out of business
What does PCI Level 1 mean?
There are four levels of PCI compliance. If your organization processes more than 6 million credit card transactions per year (depending on the major credit card company you are working with), then your credit card processor will require you to take the necessary steps to become PCI Level 1. This level requirement will also apply to any vendors or 3rd party companies you use to store, process, or transmit cardholder data. So if you are required to be PCI Level 1, then you will need to make sure all your vendors including any outsourced telemarketing firms are considered a PCI Certified Level 1 Call Center.
What does PCI Level 1 mean?
There are four levels of PCI compliance. If your organization processes more than 6 million credit card transactions per year (depending on the major credit card company you are working with), then your credit card processor will require you to take the necessary steps to become PCI Level 1. This level requirement will also apply to any vendors or 3rd party companies you use to store, process, or transmit cardholder data. So if you are required to be PCI Level 1, then you will need to make sure all your vendors including any outsourced telemarketing firms are considered a PCI Certified Level 1 Call Center.
What it takes to become a PCI Certified Level 1 Call Center
Companies that want to be PCI Level 1 must have a yearly review done by a Qualified Security Assessor (QSA) company. The QSA completes a third party evaluation of the data capture, data storage, and that the data transmissions meet the PCI DSS standards set by the PCI Security Standards Council. The QSA will conduct penetration tests and vulnerability scans on all company servers to ensure credit card data is kept secure at all times. In addition, the third party QSA evaluates the recordkeeping of training conducted with employees as well as all policies and procedures related to security. If a gap is identified, the QSA will require the gap to be remediated to their satisfaction before awarding the Attestation of Compliance.
What it takes to become a PCI Certified Level 1 Call Center
Companies that want to be PCI Level 1 must have a yearly review done by a Qualified Security Assessor (QSA) company. The QSA completes a third party evaluation of the data capture, data storage, and that the data transmissions meet the PCI DSS standards set by the PCI Security Standards Council. The QSA will conduct penetration tests and vulnerability scans on all company servers to ensure credit card data is kept secure at all times. In addition, the third party QSA evaluates the recordkeeping of training conducted with employees as well as all policies and procedures related to security. If a gap is identified, the QSA will require the gap to be remediated to their satisfaction before awarding the Attestation of Compliance.
