Semafone is closely monitoring the global impact of the coronavirus and is taking all precautionary measures to protect our staff and to maintain operations. Read More
There is currently no impact on our business, and we have robust contingency plans in place to ensure the safety of our employees and continuity of our operations for all our customers should the virus spread at an increased rate. If you have any questions, please contact your account manager.
We have issued country specific guidance on travel to all employees and are monitoring threat levels and reissuing guidance accordingly.
Installing Cardprotect Voice+ on your own premises ensures seamless integration with your existing infrastructure. This includes your telephony systems and any telephony integration, as well as the full range of contact centre applications, from CRM to payment processing.
Our cloud solution means that no hardware or software needs to be deployed within your organisation. Access to Cardprotect Voice+ is granted either through your payment gateway provider or via the Internet.
Our fully managed solution drastically simplifies the approach to PCI DSS compliance and relieves you of the burden of having to manage the infrastructure on your own premises.
When Cardprotect is deployed in the cloud by the chosen carrier the entire contact centre premises can be taken out of scope for PCI DSS compliance.
All Cardprotect Voice+ features and functions are available in the cloud, and a secured connection is used to integrate with applications in remote locations.
Semafone’s technology is supported by all carrier solutions and is designed to match each carrier’s levels of resilience and availability.
Using a cloud version of Cardprotect Voice+, the incoming calls delivered by the carrier will never contain any payment card details. Semafone’s technology integrates directly with the payment provider, keeping the contact centre – and everything associated with it – out of scope for PCI DSS compliance. This produces the greatest cost savings by not having a PCI zone on premise at all.
A simple way of deploying Semafone is to install it locally.
The ideal place to deploy the solution is the point where telephone calls enter the network. As a result, everything downstream of Cardprotect Voice+ does not touch the card holder’s details, so all contact centre applications and infrastructure are kept “out of scope” for PCI DSS. This produces high cost savings while fully protecting the entire contact centre.
Cardprotect Voice+ can be deployed with both TDM and SIP trunk types. Because Cardprotect Voice+ only masks the DTMF tones while in SecureMode as payments are taken, any IVRs or other applications used during the telephone call are unaffected.
A Flexible Approach for On-Premise Deployments
Cardprotect Voice+’s Managed CPE Services cut through the complexity to give you a robust and compliant infrastructure that keeps your customers’ card-not-present (CNP) transactions fully protected, while taking your network, SBC and contact centre out of scope for PCI DSS.
Our services establish a ‘security guard’ at the border of your IP network that protects against attacks, delivers secure and reliable SIP trunking services and data connections, and establishes PCI secure zones that take your entire network out of PCI DSS scope.
To maximise your opportunity for descoping all elements of your network, Cardprotect Voice+’s Managed CPE Services feature a choice of flexible options. Select one service, or combine, to create a solution that exactly meets your business goals.
The level of integration is entirely up to you.
If you want to install the system as quickly as possible with a minimal integration, we can do so easily and rapidly. However, this approach may leave more of your infrastructure in contact with card data, and therefore, subject to all the controls required for PCI DSS compliance.
On the other end of the scale is complete integration. This requires a more sophisticated implementation, but results in a seamless system which is easier to use and can bring significant savings in PCI DSS compliance costs.
Cardprotect Voice+ works on standard telephony equipment from your chosen supplier, including Avaya, Cisco, Genesys, Oracle – Acme Packet and many others.
The solution can operate in a variety of environments, including Integrated Services Digital Network (ISDN) and Session Initiation Protocol (SIP). Cardprotect Voice+ is fully Payment Application Data Security Standard (PA-DSS) certified; and if you choose to install it on your own premises, it can reside either in your existing or its own PCI zone.
Cardprotect Voice+ is already integrated into many of the world’s best known Payment Service Providers.
This means that our solution can relieve even more of the burden of PCI DSS compliance by directly transacting on your behalf, and simply passing you back the result of a transaction with detailed results.
Cardprotect Voice+’s flexible options enable merchants to allow or restrict different payment card types or schemes, based on business rules.
Cardprotect Voice+ supports all types of transaction methods including Authorisation or Authorisation and Settle, refund scenarios, Address Verification Services (AVS), tokenisation, and can separate out or aggregate as required. Cardprotect Voice+ supports submissions with any combination of PAN or Token, with or without CVC – just as your PSP might.
Cardprotect Voice+ works with the world’s best Tokenisation services and vaults. We support many types on PSP provided Token as well as independent or 3rd party vaults.
Semafone’s experienced team are capable of supporting our customers most advanced and multifaceted scenarios; we regularly simplify, descope and secure our customers most complex interactions, all whilst ensuring that industry best practice is followed as part of our project methodology.
We understand that our customers want to achieve many different objectives with Tokens, and understand the impact of using tokens with varying degrees of complex attributes, such as post-transaction tokens, single or multi-use, time-based expiration, or format-preserved tokens. We work with you to determine the right tokenisation process for your organisation.