Voxeo is proud to announce today that we’re bringing Level 1 PCI-compliance capabilities to multiple data centers in the United States and Europe for hosted applications that are built in line with PCI compliance best practices. Now, for compliant applications on the Voxeo hosted cloud, merchants, banks and callers using automated-self service systems can rest assured that any sensitive credit card or financial information that passes through the Voxeo network will be protected to the highest standards of compliance to the Payment Card Industry Data Security Standard (PCI-DSS). PCI Level 1 certification is the highest certification a merchant or service provider can receive, and can only be received after an independent audit of network architecture, security policies and development procedures. Voxeo established its first PCI-compliant platform in 2008 and first audited Level 1 compliance in 2011, providing a secure cloud environment for European clients.
Subsequently, we fast-tracked a PCI-compliant solution for a secure cloud environment in the US in response to customer demand. A typical implementation might require 6-12 months of remediation, but In reference to the process, Andrew Cannata, the managing director for the independent PCI compliance auditor for Voxeo, spoke highly of Voxeo’s implementation: “Due to the innovative, customer-driven, and highly skilled team that Voxeo employs, they were able to establish a PCI-compliant environment in just over three months. This speaks to the technical expertise and dedication to a secure, PCI compliant, environment.” Voxeo also provides the tools necessary to build PCI compliance into applications. Prophecy and VoiceObjects provide built-in mechanisms that allow clients to isolate and secure credit card data and create applications ready to deploy into our PCI-compliant hosting environment.
For companies, the risks of a data breach are significant. Reputation damage is likely, as account breaches often command national news and reverberate far beyond the compromised accounts. The financial cost can also be severe: according to a 2010 report by Symantec Corporation and the Ponemon Institute, the average organizational cost of a data breach was about $7.2 million, and about $214 per compromised record. With the risk of breaches unlikely to abate, the ability to build and deploy IVR solutions that minimize these risks is critical. For more information, you can visit our website to learn more about bank and financial IVR applications, or for a free, no-obligation trial of Prophecy or VoiceObjects.