Editorial & Advertiser disclosure

Global Banking and Finance Review is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

Finance

Posted By Gbaf News

Posted on July 29, 2014

NEW WHITE PAPER FROM ENCODED ON TELEPHONE CARD PAYMENTS AND PCI DSS

White Paper takes a look into card payments taken over the telephone, industry requirements and the merchant’s responsibilities

Encoded, a provider of secure automated payment solutions has published an easy to read white paper on the responsibilities of organisations and their contact centres when taking credit and debit card payments by telephone.  The paper covers the requirements of the Payment Card Industry Data Security Standard (PCI DSS), the real threats, payment products available to organisations, who is ultimately responsible for the loss of card data and the future of card payments.

Robert Crutchington, director of Encoded and main author of the white paper said, “Currently there is no equivalent to Chip & PIN or 3D secure for payments made over the telephone.  It is seen as the Achilles heel of the industry and fraudsters will use automated phone systems to test recently stolen cards with small transactions to identify active cards prior to making larger purchases.  Organisations or merchants, as they are known in the payments industry, have a duty of care to their customers to ensure that card details are not misused, lost or stolen.  This paper outlines the risks, PCI DSS requirements and myths facing merchants’ contact centres accepting card payments.”

Rob Crutchington

Rob Crutchington

Contributors to the white paper include Matthew Tyler, co-founder and chief executive of Blackfoot UK a leading information security, risk and compliance consultancy which provides Qualified Security Assessors (QSAs) to establish an organisation’s level of PCI DSS compliance.  Matthew said, “There is often confusion around what PCI compliance involves.  For example there is no such thing as a compliant solution, only companies and other legal entities can be described as PCI DSS compliant. Merchants can be mislead into thinking that buying an incorrectly named PCI compliant solution will protect them in the event of security breach – this most definitely isn’t the case.  This white paper explains in clear language what organisations accepting telephone payments need to know.”

The white paper includes a section entitled “Four things you probably don’t know about PCI DSS” covering where responsibility lies, who in the payment chain will get fined and by whom, there is no such thing as a PCI DSS compliant solution and the significance of the VISA Merchant Agent List.

Recommended for you

  • UK retailers to raise prices in response to budget tax hike, survey shows

  • UK stagflation risk adds pressure on Reeves after market volatility

  • UK business morale sank to 2-year low in late 2024, accountants say