Industry: Retail Employees: 7,000 Revenue: £1.3billion
Business: The UK’s largest Multi-Channel supplier of trade tools, workwear, plumbing and electrical essentials. It’s been operating for 30 years dispatching tens of thousands of parcels every week.
Challenge: To achieve PCI DSS compliance to reduce the risk of fraud, secure sensitive data while not compromising their award-winning customer care.
Solution: Patented CallGuard secure payment solution for achieving and maintaining PCI DSS compliance.
- PCI DSS compliant 24x7x365
- Speedy implementation
- Sensitive data is not exposed
- Significantly reduced risk of fraud
- Agent retains full control
The retailer’s contact centre handles around 40,000 calls every week, talking to around 2 million customers per year. With an emphasis on putting customers at the heart of their business, the 350 contact centre agents take orders, process payments, handle queries and offer advice.
Customer Service is a top priority and the business is proud of their award-winning contact centre. To ensure continuous service and security, they needed a method to make it PCI DSS compliant. Many customers would pay by phone – verbally relaying credit card details to an agent who typed them into the core systems.
With thousands of calls coming in from customers, it was imperative that the business increase voice channel security without compromising their reliable, personalised and uninterrupted customer service.
The retailer chose CallGuard Hosted which completely removes phone payments from PCI DSS audit
scope. CallGuard Hosted is a fully managed service, allowing advisors to accept card payments, without card details entering the contact centre environment.
The service enables advisors to remain on the phone with the caller and guide them verbally through the payment process. When a caller types their card details into their handset the DTMF tones are intercepted by CallGuard and replaced with monotones, allowing call recording to continue with no implications to PCI DSS compliance. As only masked card numbers are shown on the Advisor’s CallGuard web panel, they can stay in contact throughout the call to assist the customer in the event of any difficulty.
Numeric data isn’t seen, heard, transcribed or recorded and agents are able to stay on the phone with customers for the duration of each call.
We wanted to ensure that all our payment processes remain as secure as possible, including transactions through our contact centre. CallGuard fulfils this need perfectly and enables us to take payments from customers over the phone in a PCI DSS compliant way, without compromising the customer experience. Director of Customer Operations, Major UK Retailer
Eckoh rolled out CallGuard in a very short time, ensuring PCI DSS compliance and fraud mitigation. The solution helps to reduce real business risk while providing a secure payment environment for its customers.
Agents are not burdened with data that they do not need to see, and the organisation has greater control over the information that their customer-facing staff have access to.
This assures its customers’ data is protected. By using Eckoh as their PCI DSS Compliant Service Provider, the business has avoided a long and detailed part of the compliance process. In fact, CallGuard is now the standard solution across the wider group for taking payments over the phone and has been rolled out to a further three contact centres. - more than doubling the number of customer conversations secured.
CallGuard provides a seamless customer experience while adhering to the PCI DSS. Customers can now ask questions about products, services and delivery and pay securely over the phone.