If you don’t work inside the contact center or security industry then you might not recognize the acronym PCI DSS, but this is a really important acronym. It stands for Payment Card Industry Data Security Standard and is an important information security standard for any organization that handles the major payment cards.
Compliance to the PCI DSS standards are important for any company that handles payment card information – including contact centers – so I’m pleased to say that Teleperformance Indonesia has been audited and proven to fully comply with the PCI DSS.
The six main areas of information and data control detailed by the PCI DSS are:
1. Build and Maintain a Secure Network and Systems
2. Protect Cardholder Data
3. Maintain a Vulnerability Management Program
4. Implement Strong Access Control Measures
5. Regularly Monitor and Test Networks
6. Maintain an Information Security Policy
This set of card payment standards came about because all the major card companies used to have their own security standards. Although they were generally similar, it proved to be extremely difficult for merchants to comply to the standards defined by MasterCard and then a different set of expectations from Visa. This also made it almost impossible to create a security audit that would cover every type of major payment card.
In 2004, the major card companies came together, including Visa, MasterCard, American Express, Discover, and JCB. They created a common set of standards, defined as the PCI DSS, and created infrastructure around the standards so that merchants can be audited. It is essential in most cases for merchants to prove that they are using PCI DSS to protect customer card payment data – if there is a data breach and a merchant was not complying to the standards then the card companies can apply severe penalties.
Companies working with Teleperformance in Indonesia can rest assured that our team already complies to the PCI DSS – in fact our security standards go even further. If you have any questions about contact center security just leave a comment here or get in touch via my LinkedIn profile.