Important COVID-19 update Read More

Case Studies

Proving our solutions work

Children’s Hospital
Securing patients' personal and payment data when they’re most vulnerable
Securing patients' personal and payment data when they’re most vulnerable


Industry: Healthcare    Employees: 9,090   Turnover: $1.59 billion

Business: Large US hospital system for children seeks to ensure they take their patients’ cardholder data as seriously as they do their health.

Challenge: To achieve and maintain PCI DSS compliance to reduce risk of fraud and impact of data breaches.   

Solution: CallGuard for agent-assisted payments and PCI DSS compliance.


  • Speedy implementation
  • No sensitive data is available for criminals to steal
  • Agent and customer remain in contact throughout the interaction.


The organisation is a large US hospital system for children. It comprises three hospitals, seven urgent care centers and 27 neighbourhood locations across south eastern USA looking after children under the age of 21. Their 70-strong call center manages over eight million calls each year.

For more than 100 years they have held steadfast to a single core mission - to make kids better today and healthier tomorrow.

Their treatments range from asthma to cancer, diabetes, cardiac problems, fractures and surgery.


The hospital has a strong commitment to engagement with customers and patients. Their contact center takes payments on account for donations, gift shop orders, registration fees, classes and tuition.

They wanted to show that they had extended their care to patients’ and customers’ data and payment security by achieving compliance with Payment Card Industry Data Security Standard (PCI DSS). The hospital regularly takes payments from patients and customers over the phone so needed a simple, yet robust, solution that would not create difficulties alongside its existing systems.

The hospital intends to demonstrate that their strong care ethic is replicated in the care they put into their customer engagement by embracing telephone payments while being mindful of their customers’ data security. They found that Eckoh’s solution to this was the most robust available and provides their patients and customers with confidence and trust.

Large US Children’s Hospital demonstrates their strong care ethic by embracing PCI DSS compliance for telephone payments – ensuring data security and customer confidence.


Eckoh provide its CallGuard Audio Tokenization solution which eliminates any card data from entering the hospital’s infrastructure. This ensures compliance with PCI DSS and provides the hospital with peace of mind. In addition, and crucially, it will not require changes to existing IT applications, payment vendors or existing relationships which keeps disruption and implementation costs and resources to a minimum.

CallGuard also significantly reduces the potential for card data theft, prevents employees from being exposed to card data and completely removes payments systems and processes from the audit scope of PCI DSS.

Unlike other secure payments systems, Eckoh’s tokenization completely removes the need for merchants to make expensive or extensive changes to any existing IT infrastructure.

The solution was developed for all Card-Not-Present payments, not just those made over the phone, and its ease of implementation is a major attraction.


The hospital is now able to provide customer reassurance that their patient and payment card data is secure. It reduces the risk of fraud and protects both the provider, their patients and their customers against a data breach because there is no useful information available to thieves.

Customers and patients now have a greater engagement experience which will, in turn, bring benefits such as an increase in both revenue and donations – helping them to maintain their vital and long-standing support and care of the young.


Get in touch today

Get in touch today and find out how the Eckoh Experience Portal can change your customer engagement for the better.

book a demo

Get In Touch