Industry: Insurance Employees: 3,815 Revenue: £1 billion pa
Business: One of the top 50 insurance companies in the UK, the business maintains its mutual status which helps to differentiate the business from others. Today they have over 900,000 policyholders.
Challenge: To be able to reduce fraudulent claims and meet Payment Card Industry Data Security Standards (PCI DSS) to protect cardholder data when taking payments for policies over the telephone or internet.
Solution: CallGuard On-Site to remove cardholder data from call and screen recordings and prevent agents from seeing the card data.
- Achieving PCI DSS compliance
- Reduction in fraudulent claims
- Reducing the risk of fraud
This leading insurer was founded in 1910 and today is based in Stratford-upon-Avon, Warwickshire. In contrast to insurance companies owned by their shareholders, this insurer is owned by its 900,000+ policyholders.
They sell their policies through a network of around 690 agents working from over 300 offices around the UK. The majority of the 3,815 staff take payments for policies on a daily basis over the telephone and internet.
Each agency had its own phone solution in place which causes an issue for a business whose key channel of engagement is the telephone. In fact, there was also no call recording in place for quality, legal or training purposes. This aspect is critical in the insurance industry for handling complaints and reducing fraudulent claims. In fact, the business would often pay out even when they were sure they had false claims because there was no record of the policy conversations to enable them to verify a claimant.
In addition to this, the need to become compliant with the Payment Card Industry Data Security Standard (PCI DSS) became a necessity to allow the insurer to continue taking card payments over the telephone and internet while ensuring that their customer's payment data was kept secure.
Originally Eckoh implemented its agent-assisted secure payment solution – CallGuard On-Site - which removes cardholder data from call and screen recordings and prevents agents from seeing the details. This means that these three elements are no longer part of the scope for PCI DSS audit. As CallGuard requires no changes to systems, CRM or payment processes it is extremely simple and easy to deploy – having an instant impact.
Eckoh CallGuard forms part of the overall ICON communicate platform from Maintel, including Unified Communications from Mitel and recording from Red Box. Solutions from other suppliers were considered but these were rejected on the basis of the complexity and variety of the agency environments.
Following a three-month proof-of-concept exercise, where only the Eckoh/Maintel/RedBox solution was able to meet requirements, the solution was fully implemented and rolled out to over 3,000 users in over 300 agency offices.
What we liked about Eckoh’s solution was its simplicity. We didn’t have to change a thing – it was so easy. Now we’re proud to be reducing the risk of fraud for our customers’ data, our agents and our business. Major UK Insurer
The insurer’s agents can remain on the call and speak to the caller throughout the entire payment process providing not only reassurance but also offers opportunities to sell additional products and deepen the customer experience.
The business is now PCI DSS compliant for their telephone and internet payment services significantly reducing the risk of fraud
Fraudulent claims fell immediately during the proof-of-concept stage as the call recordings were being used to prove false claims.