Ensuring the Right Solution for You…

Flexible deployments installed on your own premises or managed fully by Semafone

Installing Semafone on your own premises ensures seamless integration with your existing infrastructure. This includes your telephony systems and any telephony integration, as well as the full range of contact center applications, from CRM to payment processing.

A hosted solution means that no hardware or software needs to be deployed within your organization. Access to Semafone is granted either through your payment gateway provider or via the Internet. If you are interested in deploying a hosted version of Semafone, please contact us now.

Our fully managed solution drastically simplifies the approach to PCI DSS compliance and relieves you of the burden of having to manage the infrastructure on your own premises.

Cardprotect – On-Premises Deployment

A simple way of deploying Semafone is to install it locally.

The ideal place to deploy the solution is the point where telephone calls enter the network. As a result, everything downstream of Cardprotect does not touch the card holder’s details, so all contact center applications and infrastructure are kept “out of scope” for PCI DSS. This produces high cost savings while fully protecting the entire contact center.

Semafone’s technology can be deployed with both TDM and SIP trunk types. Because Semafone only masks the DTMF tones while in Secure Mode as payments are taken, any IVRs or other applications used during the telephone call are unaffected.


Cardprotect – Managed CPE Deployment

A Flexible Approach for On-Premise Deployments

Semafone’s Managed CPE Services cut through the complexity to give you a robust and compliant infrastructure that keeps your customers’ card-not-present (CNP) transactions fully protected, while taking your network, SBC and contact center out of scope for PCI DSS.

Our services establish a ‘security guard’ at the border of your IP network that protects against attacks, delivers secure and reliable SIP trunking services and data connections, and establishes PCI secure zones that take your entire network out of PCI DSS scope.

To maximize your opportunity for descoping all elements of your network, Semafone’s Managed CPE Services feature a choice of flexible options. Select one service, or combine, to create a solution that exactly meets your business goals.

Semafone Managed CPE Services Diagram

A Flexible Approach to Integration

Application Integration

The level of integration is entirely up to you.

If you want to install the system as quickly as possible with a minimal integration, we can do so easily and rapidly. However, this approach may leave more of your infrastructure in contact with card data, and therefore, subject to all the controls required for PCI DSS compliance.

On the other end of the scale is complete integration. This requires a more sophisticated implementation, but results in a seamless system which is easier to use and can bring significant savings in PCI DSS compliance costs.


Telephony Integration

Semafone’s technology works on standard telephony equipment from your chosen supplier, including Avaya, Cisco, Genesys, Oracle – Acme Packet and many others.

The solution can operate in a variety of environments, including Integrated Services Digital Network (ISDN) and Session Initiation Protocol (SIP). Cardprotect is fully Payment Application Data Security Standard (PA-DSS) certified; and if you choose to install it on your own premises, it can reside either in your existing or its own PCI zone.


Payment Service Provider (PSP) Integration

Cardprotect is already integrated into many of the world’s best known Payment Service Providers. 

This means that our solution can relieve even more of the burden of PCI DSS compliance by directly transacting on your behalf, and simply passing you back the result of a transaction with detailed results.

Cardprotect’s flexible options enable merchants to allow or restrict different payment card types or schemes, based on business rules.

Cardprotect supports all types of transaction methods including Authorization or Authorization and Settle, refund scenarios, Address Verification Services (AVS), tokenization, and can separate out or aggregate as required.  Cardprotect supports submissions with any combination of PAN or Token, with or without CVC – just as your PSP might.


Tokenization Integration

Cardprotect works with the world’s best Tokenization services and vaults. We support many types on PSP provided Token as well as independent or 3rd party vaults. 

Semafone’s experienced team are capable of supporting our customers most advanced and multifaceted scenarios; we regularly simplify, descope and secure our customers most complex interactions, all whilst ensuring that industry best practice is followed as part of our project methodology.

We understand that our customers want to achieve many different objectives with Tokens, and understand the impact of using tokens with varying degrees of  complex attributes, such as post-transaction tokens, single or multi-use, time-based expiration, or format-preserved tokens. We work with you to determine the right tokenization process for your organization.