The latest thinking from Eckoh

Is your PCI DSS strategy killing your agility?
Tuesday, 13 August 2019

Contact centers must protect customer card data — but the wrong PCI DSS strategy can hold back your business. Sometimes, only a security rethink will give you the freedom to thrive.

Rethinking campaign 3 killing agility 900

As we explored in recent blogs, card-not-present (CNP) crime is a growing issue that's impacting contact centers and the strategy of deploying expensive Band Aids will create its own problems.

But attempting to keep up with the shifting sands of PCI DSS compliance using multiple methods can also have a deadening effect on customer-facing organizations. Instead of shaping your operation around the customer experience, security issues can start to dominate and stifle your business.

Here are three ways this can manifest itself:

Effect #1: PCI DSS issues can play havoc with your IT roadmap
Once your contact center environment — IVR, switch, payment service provider, network — are embedded into your compliance process, it becomes problematic to change them when new regulations are introduced. You have to redo the plumbing and wiring again at great expense in terms of time and money, which could use up money that would be better spent on IT projects that add real value to your business.

Effect #2: PCI DSS fears prohibit home-working agents
Hiring remote agents gives organizations the sought-after skills and flexibility they need to deliver the quality experience that customers demand today, especially during busy spells and outside regular office hours. However, a multi-solution approach to PCI DSS compliance creates security and training challenges that are difficult to overcome for home workers, leaving fewer choices and less flexibility in staffing your contact centers. This could prove a costly hindrance to delivering outstanding customer service. 

Effect #3: PCI DSS worries mean you're reluctant to innovate
Today's consumers want the extra choice and convenience of using new channels, such as making secure payments via Web Chat sessions with agents. They like the idea of using Apple Pay and other e-Wallets. Consumers see this as part of a friction-free experience where they take control. But this can present a security threat to cautious organizations. What they really need is a PCI DSS strategy that will enable new payment channels to be adopted easily as new opportunities arise. If you can't offer this, then a competitor will.

DIY compliance narrows your options
What's clear is that attempting to manage PCI DSS compliance and contact center security yourself — using a patchwork of point solutions — starts to stifle business performance and flexibility.

Managing PCI DSS compliance can become a dangerous distraction. It can start to devour more resources, more time and more focus, when the real battleground is the customer experience.

A much better way is to take a step back and rethink the issue. What organizations really need most is a strategy that takes away the threat fraud and also liberates them to focus on adding real value.

Wondering how it's done?
Discover how to protect yourself against fraud in the contact center in the best way possible by downloading your copy of Why you need to rethink your PCI DSS strategy.

Inside, you'll find nine reasons why change is needed — and how you can embrace an approach that lifts the security burden off your team. Rather than holding you back, your PCI DSS strategy can then enable you to innovate and offer new payment options that please customers and help to win their loyalty.

If you'd like to know more give us a call on 866 258 9297 or drop us an email at This email address is being protected from spambots. You need JavaScript enabled to view it. 

About the Author

Tony Porter

Tony Porter

Head of Global Marketing Tony has over 30 years’ experience in sales, marketing and business development and currently leads these activities for Eckoh in both the US and UK markets and across all sectors. Tony’s role focuses on helping contact centers to improve their customer engagement, making them convenient and secure for consumers to use. He understands the challenges organizations face around PCI DSS compliance and how to make the Omnichannel contact center experience a satisfying reality. He is a regular speaker at events on topics such as PCI DSS, GDPR, contact center technology, IVR solutions, self-service, secure payments, marketing and business development.

Connect with us on LinkedIn

Tweets by @Eckoh

Eckoh (@Eckoh)

Eckoh (@Eckoh)

Ineffective solutions could be wasting your time and money. What are these ineffective solutions and what can you do to fully de-scope your contact centre. Read the latest blog and find out how to prevent the risk of fraud and the impact of data breaches.…
Eckoh (@Eckoh)

Eckoh (@Eckoh)

In the fourth part of our 'Contact centre of the future' series, Ashley Burton, Head of Product at Eckoh, reveals how customers will make purchases via the Contact Centre in our latest blog. Click the link and find out more..… #payments
Eckoh (@Eckoh)

Eckoh (@Eckoh)

In the third part of our 'Contact centre of the future' series, Ashley Burton, Head of Product at Eckoh, reveals what you need to know about the Contact Centre Managers of the future in our latest blog. Click the link and find out more..… #contactcentre