A large global provider of insurance, annuities, and employee benefit programs with 90 million customers.

A large global provider of insurance, annuities, and employee benefit programs with 90 million customers.


Industry: Insurance - Life Employees: 49,000 Revenue: $61.67 billion

Business: A large global provider of insurance, annuities, and employee benefit programs with 90 million customers.

Challenge: To meet their overall PCI DSS requirements for processing credit card transactions while their consumers were on the phone

Solution: CallGuard, deployed on-premise for phone agent payments and IVR payments.


  • PCI DSS compliance and reduced audit scope
  • Savings of millions through retaining existing systems
  • Customer satisfaction with the simplicity and security of the solution


Founded over 150 years ago, this client is among the largest global providers of insurance, annuities, and employee benefit program. Through its subsidiaries and affiliates, they hold market-leading positions in the US, Japan, Latin America, Asia's Pacific region, Europe and the Middle East. They serve 90 of the largest Fortune 500 companies through multiple data centers and over 7,000 customer service agents located in many contact centers.


Due to handling customer payments over the phone and IVR the client needed to comply with the Payment Card Industry Data Security Standard (PCI DSS) for processing such transactions. Customers were calling the contact center to make payments over the phone with the contact center agents or through an on-premise IVR.

The client recognized that removing as much of the contact center from the scope of the PCI DSS audit would be the simplest solution. However, their immediate priority was to find a solution that would work with their Avaya phone system and its encryption process which was out of PCI DSS scope and avoid an upgrade that would cost several million dollars.


Eckoh has delivered its CallGuard solution as the simplest way to resolve the client's challenge.

CallGuard intercepts the payment data before it enters the client's networks and environment (including their PBX systems). Regardless of any weakness in a specific component, the data cannot be stolen or compromised if it's not there to begin with.

The solution was implemented across all data centers with no APIs and no impact on their internal processes or third-party token vault process. This resulted in a quicker install since they did not need APIs and application development changes


When a major insurance business chose CallGuard, it gained more than just PCI DSS compliance. Their customer satisfaction increased dramatically through the solution's simplicity and security, saving millions of dollars in the process.
  • Achieved PCI DSS compliance and audit scope significantly reduced
  • CallGuard is now the default payment capture method input for their permanent token provider when capturing new payment data information.
  • No agents are exposed to payment data, no payment data is stored or traverses their networks
  • Savings of US$ millions from not having to replace their Avaya system and eliminating excessive carrier trunks no longer active, but being billed
  • Increase in customer satisfaction through the simplicity of the system and their reassurance that their data was protected
  • The IVR was also de-scoped, allowing customers to continue using it, but in a more secure manner

Looking Forward

As a solution unique to Eckoh, we recognize that this example is likely a challenge many other enterprise organizations struggle with when they begin tackling payment security within their contact centers. Some organizations may even feel like their only option is to either deploy hardware on-premise – likely disrupting long-term cloud transformation strategies – or only achieve partial PCI DSS de-scoping.

As a result, the methodology innovated for The Client is now part of the Eckoh architecture. In fact, multiple other clients have also taken advantage of this solution, allowing them to maintain their existing telephony architecture while maintaining the strictest possible standard for payment security.

To learn more about how Eckoh secures payments across all engagement channels, reach out to one of our trusted advisors.

Get in Touch

Eckoh understands retail and hospitality — and we’ve got the right solutions to help. Get in touch and we’ll be glad to discuss your challenges and opportunities.

Contact US 1

Trusted by brands

Eckoh AS 187259285