1-800 We Answer is Committed to Latest PCI DSS Security Upgrades
Multi-location Call Center continues to exhibit data security best practices
NEW YORK, August 11, 2011 1-800 We Answer, Inc. is committed to upgrading its technology at its New York Answering Service headquarters to ensure compliance with the Payment Card Industry Data Security Standard (PCI DSS). The company is vigilantly committed to surpassing PCI benchmarks. PCI DSS includes stringent requirements for data security, and assists organizations in preventing credit card fraud, protecting against invasive data security hacks, and decreasing vulnerability to other security threats. By closely monitoring data security, call centers and answering service providers evaluate their risks and have the opportunity to prevent data theft before a breach occurs.
Compliance with PCI DSS is mandatory for all businesses that accept, transmit or store any credit card data.
1-800 We Answer worked with SecurityMetrics, Inc. to complete a thorough audit of the IT department and operations in its answering service headquarters, and continues to conduct quarterly scans to ensure that the highest security standards are met. PCI DSS compliance is more complicated than completing a self-assessment questionnaire. Companies must contract with certified auditors who monitor client compliance with 12 points of PCI DSS:
- Configuring secure firewall protection
- Protecting data and systems and other access with unique passwords
- Protecting stored cardholder data
- Encrypting transmission of cardholder data across open, public networks
- Using and regularly updating anti-virus software
- Developing and maintaining secure systems and applications
- Restricting access to cardholder data only to those who need to know
- Assigning a unique ID to each person with computer access
- Restricting physical access to cardholder data
- Tracking and monitoring all access to network resources and cardholder data
- Regularly testing security systems and processes
- Maintaining a written information security policy for employees and partners.
Rigorous monitoring of PCI DSS is a call center’s first defense against intrusion and theft, since online debit and credit card fraud the card schemes are a constant threat to the entire industry.
1-800 We Answer’s answering service and call center network spans 11 locations and continues to grow through new acquisitions. The company has experienced rapid growth during the past four years and continues to upgrade its security and server technology in all of its call centers. Each location operates independently of other 1-800 WE ANSWER call centers, and companywide security is overseen by 1-800 WE ANSWER’s IT Director and support staff. Server independence protects against possible data breach incidents spreading throughout a Wide Area Network (WAN), or from an internal breach spreading through the network. At the same time, each account is assigned a secure backup location for contingency planning. Technology upgrades in each of the 1-800 WE ANSWER call center locations including updates to operator computer workstations, telephone equipment, LCD monitors, and headsets.
Data security measures go beyond technology to include employee application screening, training in privacy guidelines and call center best practices, all to ensure data security at every level of the company.
