BT Inbound Contact UK Service Schedule Annex 1 Secure Contact - Payment Card Industry Compliance
|
|
- Curtis Allen
- 8 years ago
- Views:
Transcription
1 SERVICE SCHEDULE ANNEX 1 CONTENTS 1. SERVICE DESCRIPTION 2. ORDERING AND DELIVERY OF THE SERVICE 3. FAULT MANAGEMENT 4. SERVICE LEVEL AGREEMENT 5. DDI NUMBERS 6. AGENT INTERFACE AND NETWORK ACCESS 7. PAYMENT SERVICE PROVIDER (PSP) INTEGRATION 8. REPORTING 9. CARDHOLDER DATA STANDARDS 10. GENERAL TERMS 11. DEFINITIONS 1 of 7
2 1. SERVICE DESCRIPTION In order to process Cardholder Data in a PCI DSS compliant way, Calls into a Customer Contact Centre will be handled in accordance with the following process: i) If no Cardholder Data details are required during the Call, the Agent will not be required to activate the Service. ii) iii) iv) If Cardholder Data details are required, the Agent will activate the Service via the Web Panel (or the CRM if API is used). The Service provides a whisper ID to the Agent who will enter this into the Web Panel on their desktop (or their CRM if API is used) along with any Customer details required for the transaction. The Agent then asks the Caller to enter the Cardholder Data details using their telephone keypad to generate DTMF tones. v) The Service intercepts the DTMF tones as sensitive information or Cardholder Data.and false/synthetic tones are passed on to the Agent to indicate progress and visual progress indicators are given on the Web Panel (or CRM if API is used). vi) vii) viii) ix) If the Caller is unable to use DTMF, then the Agent can override this and allow the Caller to enter Cardholder Data using speech recognition. In such cases, the Caller s Cardholder Data details are not heard by the Agent and progress is reflected on the Web Panel (or CRM if API is used). The Cardholder Data is sent to the Customer s PSP to authorise the payment and the Agent receives confirmation that this has happened via the Web Panel (or CRM if API is used). Once the Cardholder Data entry is complete, this is shown on the Web Panel (or CRM if API is used) The Agent can converse with the Caller during the Call and can assist in the event of any difficulty entering Cardholder Data information. 2. ORDERING AND DELIVERY OF THE SERVICE 2.1 The Customer will order the Service from BT via the Order Form. 2.2 The Service Start Date will be finalised once BT and the Customer have agreed and completed the Service Specification. 2.3 Before the Service is provided to the Customer, the Customer shall have the right to carry out Acceptance testing. Such Acceptance shall not be unreasonably withheld by the Customer. 3. FAULT MANAGEMENT 3.1 The Customer may report technical faults with the Service to BT via the 24 hour helpdesk on of 7
3 3.2 When report a fault with the Service, the Customer will be required to provide the following information: i) a contact name; ii) contact number; iii) the time and date of the Call; iv) Calling line identity and dialled number; and v) a description of the fault in as much detail as possible. 3.3 Faults raised by the Customer will be processed by BT and allocated a Severity Level. BT will aim to respond to and resolve faults in accordance with the following Service Levels. Fault Severity Level Initial Response Time Target Fix Time Critical (24/7 Support) 4 Hour 5 Hours High 2 Business Hours 6 Business Hours Medium 2 Business Hours 4 Business Days Low 24 Business Hours 28 Business Days 3.4 Fault Severity Level Definitions Critical i) affect all Calls; and/or ii) cause unavailability of Service. and/or iii) prevent Callers being routed to the Customer s Site. High i) affect more than 10% of Calls at any time; and/or ii) cause the absence of a significant function of the Service (e.g the inability to take payment or Calls not being forwarded or DTMF not being recognised correctly). Medium i) affect more than 1% of Calls at any time: and/or ii) cause the absence of a significant function of the Service (e.g the inability to take payment or Calls not being forwarded or DTMF not being recognised correctly). Low i) affect 1% or less than 1% of Calls; or ii) affect more than 1% of Calls but do not cause the absence of any significant function of the Service (e.g cosmetic changes to the Service which do not affect the ability for Calls to be made to obtain the relevant information). 3.5 Once a fault is resolved, BT will advise the Customer via the Nominated Contact. 3 of 7
4 3.6 Following fault resolution, BT will, where appropriate, assess whether any changes need to be made to the Service. Where BT considers that changes do need to be made to the Service, BT will produce a report detailing the steps that need to be taken to prevent a recurrence of the fault which will be forwarded to the Customer for approval prior to implementation. 4. SERVICE LEVEL AGREEMENT 4.1 Where BT does not deliver the Service by the Service Start Date, the Customer shall be entitled to receive compensation in accordance with clause 3 of the Inbound Service Schedule save that compensation will only apply where the delays are attributable to events solely within BTs reasonable control. 4.2 Where BT does not resolve a fault within the above Service Levels the Customer shall be entitled to receive compensation in accordance with clause 3 of the Inbound Service Schedule save that compensation will only apply for faults which: i) affect all Calls; and ii) prevent operation of the Customer s entire Service; and iii) are attributable to events solely within BTs reasonable control. 4.3 BTs responsibility to provide Service (and liability to provide compensation) will only apply in relation to the following points of demarcation: i) The point of receipt of the Call at a BT exchange ii) the Web Panel (or the CRM if API is used). iii) The web access point for the Customers PSP for the provision of payments iv) The external interface to the Customers accounting system (If applicable for reconciliation purposes). 5. DDI NUMBERS 5.1 All Calls which may result in Cardholder Data being disclosed must use the Platform and BT will provide a set of DDI numbers to the Customer that Calls must be distributed to. 5.2 The Customer will provide to BT details of the terminating DDI numbers for the Calls to be delivered. 6. AGENT INTERFACE AND NETWORK ACCESS 6.1 Subject to clause 6.2 below, BT will provide the Customer with either a customised Web Panel or an API. 6.2 In order to access either the Web Panel or the API, the Customer and its Agents will require internet access to BT s web servers. Where modifications are required on both the Platform and the customer s firewalls to access such web servers, BT will provide details of any modifications that may be required. Any modifications required shall be at the Customer s expense. 7. PAYMENT SERVICE PROVIDER (PSP) INTEGRATION 4 of 7
5 7.1 In order to collect Payments Card Data, the Customer will need to be contracted with their chosen PSP. 7.2 Where BT is not integrated with the Customer s PSP, then the Customer may Instruct BT to integrate with a new PSP and pay BT an additional set up cost as detailed in the Order Form. 8. REPORTING 8.1 BT will provide Reporting relating to the Service to the Customer via a secure web page. 8.2 Reporting data will be retained for a rolling 12 month period. 9 CARDHOLDER DATA SECURITY STANDARDS 9.1 BT warrants and represents that it has complied with all applicable requirements necessary to be considered PCI DSS compliant at Tier 1 status and has performed all steps necessary to validate its compliance with PCI DSS by a Qualified Security Assessor (QSA). 9.2 BT agrees that it is responsible for the security of all Cardholder Data in its possession including responsibility for all actions involved in Processing the Cardholder Data. 9.3 BT agrees that all Relevant Supplies coming within the scope of the Service will be performed by BT. 9.4 BT shall ensure that the Relevant Supplies conform to the PCI DSS set out at: and such later versions or guidance and advisories which the PCI Security Standards Council may issue. 9.5 BT shall promptly notify the Customer on becoming aware of any non-compliance or receiving any allegation of non-compliance with PCI DSS and the steps it is taking to remedy such non-compliance. 9.6 Any breach of this clause by BT shall be deemed to be a material breach of this Service and subject to Clause 7 of the Conditions, BT shall indemnify the Customer from and against any costs, losses, damages proceedings, claims, expenses or demands incurred or suffered by the Customer which arise as a result of such breach. 9.7 BT shall allow the Customer or its authorised representatives reasonable access to premises, systems and records containing any relevant Information as is reasonably necessary to assess BT's compliance with this clause. 10. GENERAL TERMS 10.1 Notwithstanding the provisions of Clause 9.1(c) of the Conditions, if BT or the Customer is unable to perform, or is delayed in performing, any obligation under this Service because of any of the events detailed in clauses 9.1(a) or 9.1(b) of the Conditions and the period of delay exceeds 30 days, the Customer or BT may terminate this Service in whole or part by written notice to the other. 11 DEFINITIONS Acceptance 5 of 7 written acknowledgement by the Customer that Supplies, or
6 Agent API Application Cardholder Data Cardholder Data Environment CRM Customer Contact Centre DDI DTMF Helpdesk Nominated Contact Nominated BT Service Manager part of them, have been completed in accordance with this Service, subject to any deficiencies stated in such acknowledgement. "Accept" and "Accepted" shall be construed accordingly. the person at the Customer Contact Centre who converses with the Caller. the Application Programming Interface which is integrated with the CRM by the Customer and used by the Agent to activate the Service (where applicable). a speech recognition or interactive voice response software program. the Primary Account Number (PAN) together with any or all of the following items which may be retained with the PAN:- Cardholder Name, Service Code and Expiration Date (as those terms are commonly understood in the payment card industry). that part of the network or business operations that possess Cardholder Data or Sensitive Authentication Data. the Customer Relationship Management web interface used by the Customer. the Contact Centre that is operated by the Customer. Direct Dial In. Dual Tone Multi Frequency signalling. the 24 Hour helpdesk provided by BT which the Customer will use to report faults with the Service. the contact in BT and the Customer who will receive information relating to the Service. the person in BT to whom the Customer can discuss changes relating to the Service. PCI Payment Card Industry. PCI DSS the Payment Card Industry Data Security Standards issued by the PCI Security Standards Council ('the Council') from time to time and set out at Platform the platform provided by BT to enable the Service to be delivered to the Customer. PSP Payment Service Provider. Processing any processing, collection, transmission, managing or storing by any means and in any type of media including paper, or voice recording, or digital images in which Cardholder Data is held, such as hard disk drives, floppy disks, and credit /debit card receipts on which the full PAN is printed. Relevant Supplies those elements of the Supplies which include the formal or informal Processing of BT Customers' Cardholder Data forming the "cardholder data environment" Reporting a web based Management Information tool provided by BT to enable the Customer to view, and download to Excel, reports 6 of 7
7 Sensitive Authentication Data Service Service Levels Service Specification Severity Level Supplies Tier 1 Web Panel for a given date range. includes the following:- Full Magnetic Stripe Data, or CAV2/CVC2/CW2/CID, or PIN/PIN Block (as those terms are commonly understood in the payment card industry). the service provided by BT to enable the Customer to reduce or eliminate the handling of Cardholder Data by Agents and be compliant with PCI DSS. the service levels detailed in clause 4 of this Service Schedule Annex. the technical specification for the Service to be provided by BT. the severity level of a fault detailed in paragraph 3.4 of this Service Schedule Annex. all components, materials, tools, test equipment, Service Specification, documentation, firmware, Software, instructions and guidelines, spares and parts and things to be provided to the Customer pursuant to this Service together with all Information this Service requires be supplied to or performed for the Customer. merchants who process more than six million payment card (debit or credit card) transactions each year, and must meet the 12-step PCI DSS and undergo external attestation. the web panel customised by BT for use by the Customer and used by the Agent to activate the Service (where applicable). 7 of 7
Guidance Notes PCI DSS Compliance as it relates to Call Recording
Guidance Notes PCI DSS Compliance as it relates to Call Recording Published by DMA Contact Centres & Telemarketing Council First edition Contents Disclaimer...2 1. Background...3 2. The fundamental storage
More informationWhite paper. How to take your contact centre out of scope for PCI DSS. Reducing cost and risk in credit card transactions for contact centres
White paper How to take your contact centre out of scope for PCI DSS Executive summary With 77 per cent of UK companies admitting to a security breach (Source: The Ponemon Institute, 2009), and up to 97
More informationInformation Sheet. PCI DSS Overview
The payment card industry (PCI) protects cardholder data through technical and operations standard set by its Council. Compliance with PCI standards is mandatory. It is enforced by the major payment card
More informationYour Compliance Classification Level and What it Means
General Information What are the Payment Card Industry (PCI) Data Security Standards? The PCI Data Security Standards represents a common set of industry tools and measurements to help ensure the safe
More informationPCI Compliance. Top 10 Questions & Answers
PCI Compliance Top 10 Questions & Answers 1. What is PCI Compliance and PCI DSS? 2. Who needs to follow the PCI Data Security Standard? 3. What happens if I don t comply? 4. What are the basic requirements
More informationPCI PA - DSS. Point XSA Implementation Guide. Atos Worldline Banksys XENTA SA. Version 1.00
PCI PA - DSS Point XSA Implementation Guide Atos Worldline Banksys XENTA SA Version 1.00 POINT TRANSACTION SYSTEMS AB Box 92031, 120 06 Stockholm, Tel. +46 8 566 287 00 www.point.se Page number 2 (16)
More informationJigsaw24 Support Contract Terms & Conditions
Version 1.1 Jigsaw24 Support Contract Terms & Conditions These conditions together with the provisions of the Agreement or a Scope of Work (SOW) are the only contractual terms upon which Jigsaw Systems
More informationUSER AGREEMENT FOR: ELECTRONIC DEALINGS THROUGH THE CUSTOMS CONNECT FACILITY
USER AGREEMENT FOR: ELECTRONIC DEALINGS THROUGH THE CUSTOMS CONNECT FACILITY CONDITIONS OF USE FOR ELECTRONIC DEALINGS THROUGH THE CUSTOMS CONNECT FACILITY Between: the Commonwealth of Australia, acting
More informationPCI Compliance Top 10 Questions and Answers
Where every interaction matters. PCI Compliance Top 10 Questions and Answers White Paper October 2013 By: Peer 1 Hosting Product Team www.peer1.com Contents What is PCI Compliance and PCI DSS? 3 Who needs
More informationSection 3.9 PCI DSS Information Security Policy Issued: June 2016 Replaces: January 2015
Section 3.9 PCI DSS Information Security Policy Issued: June 2016 Replaces: January 2015 I. PURPOSE The purpose of this policy is to establish guidelines for processing charges on Payment Cards to protect
More informationTERMS AND CONDITIONS FOR PAYMENT CARDS SERVICING
TERMS AND CONDITIONS FOR PAYMENT CARDS SERVICING 1. TERMS AND DEFINITIONS 1.1. Authorisation is a query to check Card validity and availability of corresponding funds on the Card s account. 1.2. Card means
More informationCRM in a Day Support Services Agreement
CRM in a Day Support Services Agreement Agreement Number: Start Date: Renewal Date: Minimum Term: This Agreement sets forth the terms and conditions under with CRM in a Day shall support the Microsoft
More informationPayment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire A and Attestation of Compliance
Payment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire A and Attestation of Compliance Card-not-present Merchants, All Cardholder Data Functions Fully Outsourced Version 3.0 February
More informationUO Third Party Credit Card Processing Request
UO Third Party Credit Card Processing Request To protect customer cardholder data and comply with Payment Card Industry (PCI) rules, Third Party Service Providers and Payment Applications used to process
More informationFrequently Asked Questions
PCI Compliance Frequently Asked Questions Table of Content GENERAL INFORMATION... 2 PAYMENT CARD INDUSTRY DATA SECURITY STANDARD (PCI DSS)...2 Are all merchants and service providers required to comply
More informationRothschild Visa Card Terms and Conditions
Rothschild Visa Card Terms and Conditions These Rothschild Visa Card Terms and Conditions (June 2010 edition) are in addition to and supplemental to the Bank s standard Terms and Conditions (October 2007
More informationPerfectForms End-User License Agreement
PerfectForms End-User License Agreement 2011 PerfectForms Page 1 of 12 Contents 1. DEFINITIONS... 4 2. GRANT OF RIGHTS... 4 3. FEES... 5 4. CONFIGURATION... 5 5. INTELLECTUAL PROPERTY... 5 6. TERM AND
More informationAgcess Visa Card Terms and Conditions
You should read carefully these Terms and Conditions and the Finance Conditions for the relevant Linked Facility and retain them for future reference. Copies of each of the documents can be made available
More informationRekoop Limited Standard Terms of Business
Rekoop Limited Standard Terms of Business 1 Copyright 2012, rekoop Limited 1. DEFINITIONS... 3 2. BASIS OF AGREEMENT... 6 3. PROVISION OF THE SOFTWARE AND SERVICES... 6 4. TERM... 6 5. ACCESS AND SECURITY...
More informationCAL POLY POMONA FOUNDATION. Policy for Accepting Payment (Credit) Card and Ecommerce Payments
CAL POLY POMONA FOUNDATION Policy for Accepting Payment (Credit) Card and Ecommerce Payments 1 PURPOSE The purpose of this policy is to establish business processes and procedures for accepting payment
More informationInformation Technology
Credit Card Handling Security Standards Overview Information Technology This document is intended to provide guidance to merchants (colleges, departments, organizations or individuals) regarding the processing
More informationPayment Card Industry (PCI) Data Security Standard. Attestation of Compliance for Self-Assessment Questionnaire C-VT. Version 2.0
Payment Card Industry (PCI) Data Security Standard Attestation of Compliance for Self-Assessment Questionnaire C-VT Version 2.0 October 2010 Attestation of Compliance, SAQ C-VT Instructions for Submission
More informationService Schedule for BT Mobile Device, Application, Content and E-mail Management
Service Schedule for BT Mobile Device, Application, Content and E-mail Management 1. SERVICE DESCRIPTION General Description 1.1. The Service is a suite of software products and includes: Mobile Application
More informationService Schedule for BT MeetMe with Dolby Voice
Service Schedule for BT MeetMe with Dolby Voice 1. INTERPRETATION The following definitions shall apply, in addition to those in the Conditions for BT Conferencing Services. Account means the identifier
More informationMerchant Gateway Services Agreement
Merchant Gateway Services Agreement This Merchant Gateway Services Agreement ( Agreement ) is made as of, 20 ( Effective Date ), by and between American POS Alliance, LLC ( Reseller ) and the merchant
More information"Broadband Voice Telephone Adapter" a broadband voice telephone adapter or BT Voyager 220V which may be bought from BT.
Terms and Conditions 1. Definitions 2. Providing the Service 3. Managing the Service 4. Monitoring Calls 5. Customer Equipment 6. Misusing the Service 7. Security 8. Intellectual Property Rights 9. Intellectual
More informationTERMS AND CONDITIONS OF PAYMENT CARD ACQUIRING SERVICES AGREEMENT Valid from 16.02.2015
TERMS AND CONDITIONS OF PAYMENT CARD ACQUIRING SERVICES AGREEMENT Valid from 16.02.2015 1. DEFINITIONS 1.1 Settlement Day a day on which the Bank is open for general banking operations. Generally, the
More informationpaypoint implementation guide
paypoint implementation guide PCI PA-DSS Implementation guide 1. Introduction This PA-DSS Implementation Guide contains information for proper use of the paypoint application. Point Transaction Systems
More informationConditions of Service SkyMesh Phone Table of contents
Conditions of Service SkyMesh Phone Table of contents Clause Page 1. THE PHONE SERVICE 1 1.1 Applicable terms and conditions 1 1.2 Service options 1 2. INTERPRETATION AND DEFINITIONS 1 2.1 Interpretation
More informationSmart Meters Programme Schedule 2.5. (Security Management Plan) (CSP South version)
Smart Meters Programme Schedule 2.5 (Security Management Plan) (CSP South version) Schedule 2.5 (Security Management Plan) (CSP South version) Amendment History Version Date Author Status v.1 Signature
More informationWhat are the PCI DSS requirements? PCI DSS comprises twelve requirements, often referred to as the digital dozen. These define the need to:
What is the PCI standards council? The Payment Card Industry Standards Council is an institution set-up by American Express, Discover Financial Services, JCB, MasterCard Worldwide and Visa International
More informationInternet and Phone Banking. Terms and Conditions and Important Information
Internet and Phone Banking Terms and Conditions and Important Information Effective Date: 20 March 2013 This booklet sets out terms and conditions for Bank of Melbourne Internet and Phone Banking, along
More informationFLEXITY SOLUTIONS INC. Terms of Service
1 Term of Service FLEXITY SOLUTIONS INC. Terms of Service For the purpose of these Terms of Service ( Terms of Service ), they set out the rights, obligations and limitations of FlexITy Solutions ( FlexITy
More informationPayment Card Industry Data Security Standard (PCI DSS) Q & A November 6, 2008
Payment Card Industry Data Security Standard (PCI DSS) Q & A November 6, 2008 What is the PCI DSS? And what do the acronyms CISP, SDP, DSOP and DISC stand for? The PCI DSS is a set of comprehensive requirements
More informationBT Inbound Contact global (formerly CCS International) Service Annex to the General Service Schedule
1 Definitions Page 1 of 6 The following definitions apply, in addition to those in the General Terms and Conditions and the General Services Schedule of the Agreement. Caller means the person calling the
More informationInternet Banking Terms and Conditions
Internet Banking Terms and Conditions These Terms and Conditions apply to the use by you, the customer, of the Internet banking service provided by us, ICICI Bank Limited, Bahrain Branch (the Bank ). They,
More informationCOMPUTER AND INFORMATION TECHNOLOGY MANAGED SERVICES AGREEMENT
COMPUTER AND INFORMATION TECHNOLOGY MANAGED SERVICES AGREEMENT This Computer and Information Technology Services Agreement is made as of the day of, between Crown Networking Consultants, Inc. (CNC Inc.),
More informationVersion: 0.102c. Date: 17 th December 2013. Information Supplement:
Version: 0.102c Date: 17 th December 2013 Information Supplement: Protecting Telephone-based Payment Card Data Information provided here does not replace or supersede requirements in the PCI Data Security
More informationSOFTWARE DEVELOPMENT AGREEMENT
SOFTWARE DEVELOPMENT AGREEMENT THIS AGREEMENT dated the day of 20. BETWEEN: AND: ACN of (the Customer ; 1iT Pty Ltd ACN 092 074 247 of 41 Oxford Close West Leederville (the Contractor. BACKGROUND A. The
More informationPayment Card Industry Data Security Standards
Payment Card Industry Data Security Standards January 19, 2011 Marc S. Reisler, Holland & Knight Copyright 2011 Holland & Knight LLP All Rights Reserved Data Breaches Remain a Serious Concern PCI Standards
More informationService Schedule 6 - Cloud Services Terms & Conditions
Service Schedule 6 - Overriding provisions All quotations are made and all orders are accepted subject to these conditions ( these Schedule Terms ) and our Active Support Contract Framework Terms. In the
More informationPOLICY NAME : MERCHANT (PCI) POLICY AND PROCEDURES ACCEPTING CREDIT/DEBIT CARD PAYMENTS
Publication Date 2009-08-11 Issued by: Financial Services Chief Information Officer Revision V 1.0 POLICY NAME : MERCHANT (PCI) POLICY AND PROCEDURES ACCEPTING CREDIT/DEBIT CARD PAYMENTS Overview: There
More informationUniversity of Liverpool
University of Liverpool Card Payment Policy Reference Number Title Version Number 1.0 Document Status Document Classification FIN-001 Card Payment Policy Active Public Effective Date 03 June 2014 Review
More informationWorldpay s guide to the Payment Card Industry Data Security Standard (PCI DSS)
Worldpay s guide to the Payment Card Industry Data Security Standard (PCI DSS) What is PCI DSS? The 12 Requirements Becoming compliant with SaferPayments Understanding the jargon SaferPayments Be smart.
More informationSWEDBANK AS TERMS AND CONDITIONS FOR PAYMENT CARDS SERVICING Valid from 01.12.2014
SWEDBANK AS TERMS AND CONDITIONS FOR PAYMENT CARDS SERVICING Valid from 01.12.2014 1. TERMS AND DEFINITIONS 1.1 Account is a current account of the Merchant specified in the Agreement. 1.2 Agreement is
More informationMEDICAL-OBJECTS SOFTWARE LICENCE AGREEMENT
MEDICAL-OBJECTS SOFTWARE LICENCE AGREEMENT YOU ARE ABOUT TO ENTER INTO A LEGAL AGREEMENT WITH MEDICAL- OBJECTS PTY LTD ( MEDICAL-OBJECTS ). BY USING ALL OR ANY PORTION OF THE SOFTWARE IN ANY WAY YOU ACCEPT
More informationThe Community Mutual Group Visa Credit Card Conditions of Use
The Community Mutual Group Visa Credit Card Conditions of Use The Community Mutual Group, Hunter Mutual, New England Mutual and Orana Mutual are trading names of Community Mutual Ltd: ABN 21087650360 :
More informationPCI Compliance. Reducing cost & risk in Credit Card Transactions for Contact Centres V1.0
PCI Compliance Reducing cost & risk in Credit Card Transactions for Contact Centres V1.0 Contents Executive Summary 3 PCI DSS and the battle against card fraud Introduction 4 PCI DSS Requirements PCI DSS
More informationHow to Take your Contact Centre Out of Scope for PCI DSS. Reducing Cost and Risk in Credit Card Transactions for Contact Centres
How to Take your Contact Centre Out of Scope for PCI DSS Reducing Cost and Risk in Credit Card Transactions for Contact Centres 1 2 Contents 4 Executive Summary 6 PCI DSS Background 8 PCI DSS What s Involved
More informationPayment Card Industry (PCI) Data Security Standard
Payment Card Industry (PCI) Data Security Standard Attestation of Compliance for Self-Assessment Questionnaire D Service Providers For use with PCI DSS Version 3.1 Revision 1.1 July 2015 Section 1: Assessment
More informationAAPT Business Reach Voice
AAPT Business Reach Voice Service Schedule An Inbound Voice Solution This Service Schedule forms part of the Agreement between Us and You and cannot be used as a standalone agreement. Any terms defined
More informationICC UNIFORM RULES FOR CONTRACT BONDS
ICC UNIFORM RULES FOR CONTRACT BONDS issued as ICC publication No. 524, adopted by the ICC Executive Board on 23 April 1993, come into effect on 1 January 1994 Copyright 1993 International Chamber of Commerce.
More informationCITY OF SAN DIEGO ADMINISTRATIVE REGULATION Number 95.51 PAYMENT CARD INDUSTRY (PCI) COMPLIANCE POLICY. Page 1 of 9.
95.5 of 9. PURPOSE.. To establish a policy that outlines the requirements for compliance to the Payment Card Industry Data Security Standards (PCI-DSS). Compliance with this standard is a condition of
More informationCERM2513.46 NEGOTIATING FRAMEWORK NEGOTIATED DISTRIBUTION SERVICES. 1 July 2015
CERM2513.46 NEGOTIATING FRAMEWORK NEGOTIATED DISTRIBUTION SERVICES 1 July 2015 Contents 1. National Electricity Rules... 3 2. Negotiated Distribution Services... 3 3. Application of this Negotiating Framework...
More informationModule 5 Software Support Services TABLE OF CONTENTS. Version 3.1
1 Module 5 Software Support Services TABLE OF CONTENTS Version 3.1 1. AGREED TERMS AND INTERPRETATION... 2 2. SUPPORT PERIOD... 3 3. SCOPE OF SUPPORT SERVICES... 4 4. RESELLER PROVISION OF... 8 5. ANCILLARY
More informationPCI PA - DSS. Point ipos Implementation Guide. Version 1.01. VeriFone Vx820 using the Point ipos Payment Core
PCI PA - DSS Point ipos Implementation Guide VeriFone Vx820 using the Point ipos Payment Core Version 1.01 POINT TRANSACTION SYSTEMS AB Box 92031, 120 06 Stockholm, Tel. +46 8 566 287 00 www.point.se Page
More informationPayment Card Industry (PCI) Data Security Standard
Payment Card Industry (PCI) Data Security Standard Attestation of Compliance for Onsite Assessments Service Providers Version 3.0 February 2014 Section 1: Assessment Information Instructions for Submission
More informationMerchant Tripartite Agreement. Terms and Conditions
Merchant Tripartite Agreement Terms and Conditions Terms and Conditions Part I Introduction and interpretation 1. Introduction This Agreement is between Paymark Limited (Paymark) and The Merchant and The
More informationPCI DSS FAQ. The twelve requirements of the PCI DSS are defined as follows:
What is PCI DSS? PCI DSS is an acronym for Payment Card Industry Data Security Standards. PCI DSS is a global initiative intent on securing credit and banking transactions by merchants & service providers
More informationGeneral Terms and Conditions of Sale and Delivery of Federatie Aandrijven en Automatiseren (Trading Companies)
General Terms and Conditions of Sale and Delivery of Federatie Aandrijven en Automatiseren (Trading Companies) Filed at the Registry of the Court of The Hague, the Netherlands, on 6 December 2011, under
More informationSOFTWARE LICENSE AND NON-DISCLOSURE AGREEMENT
SOFTWARE LICENSE AND NON-DISCLOSURE AGREEMENT This SOFTWARE LICENSE AND NON-DISCLOSURE AGREEMENT ( Agreement ) is between Drake Software, LLC ( Drake ) and Licensee (as defined below). PLEASE READ THIS
More informationCREDIT CARD CARDHOLDER AGREEMENT
CREDIT CARD CARDHOLDER AGREEMENT (This Agreement applies to Visa Platinum, Visa Gold, Visa Classic or other cards issued by HSBC) IMPORTANT! Before you use your Card, please read this Agreement carefully.
More informationModule 12 Managed Services TABLE OF CONTENTS. Use Guidelines
1 Module 12 Managed Services Version 3.0 TABLE OF CONTENTS 1. AGREED TERMS AND INTERPRETATION... 2 2. TERM OF... 4 3. TRANSITION IN... 4 4. SERVICES... 10 5. SERVICE LEVELS... 12 6. CHANGE CONTROL... 13
More informationSNAP SURVEYS LTD SNAP PLUS SERVICE LEVEL AGREEMENT
SNAP SURVEYS LTD SNAP PLUS SERVICE LEVEL AGREEMENT THE LICENSOR: Snap Surveys Ltd, a company registered in England under number 1672722 whose registered office is at 5 Mead Court, Cooper Road, Thornbury,
More informationSALEM STATE UNIVERSITY CLIPPERCARD MERCHANT AGREEMENT
SALEM STATE UNIVERSITY CLIPPERCARD MERCHANT AGREEMENT AGREEMENT made as of the day of by and between Salem State University, a Massachusetts state institution of higher learning having its principal offices
More informationPCI PA - DSS. Point BKX Implementation Guide. Version 2.01. Atos Xenta, Atos Xenteo and Atos Yomani using the Point BKX Payment Core
PCI PA - DSS Point BKX Implementation Guide Atos Xenta, Atos Xenteo and Atos Yomani using the Point BKX Payment Core Version 2.01 POINT TRANSACTION SYSTEMS AB Box 92031, 120 06 Stockholm, Tel. +46 8 566
More informationCRM Support Services Agreement
CRM Support Services Agreement Agreement Number: Start Date: Renewal Date: Minimum Term: Points Purchased in Initial Minimum Term: This Agreement sets forth the terms and conditions under which The CRM
More informationASIAN PACIFIC TELECOMMUNICATIONS PTY LTD STANDARD FORM OF AGREEMENT. Schedule 1 Managed Voice Services
ASIAN PACIFIC TELECOMMUNICATIONS PTY LTD STANDARD FORM OF AGREEMENT Schedule 1 Managed Voice Services December 2013 Table of Contents 1. SERVICE SCHEDULE 1 VOICE SERVICES... 3 1.1 OVERVIEW... 3 1.2 STANDARD
More informationTERMS OF ENGAGEMENT FOR LIMITED COMPANY CONTRACTOR
TERMS OF ENGAGEMENT FOR LIMITED COMPANY CONTRACTOR Name of Contractor: Limited 1. DEFINITIONS 1.1. In these Terms of Engagement the following definitions apply: Assignment means the period during which
More informationModule 3 Licensed Software TABLE OF CONTENTS. Version 3.0
1 Module 3 Licensed Software Version 3.0 TABLE OF CONTENTS 1. AGREED TERMS AND INTERPRETATION... 2 2. LICENCE TERMS... 3 3. SUPPLY OF... 8 4. UPDATES AND NEW RELEASES... 9 5. OPEN SOURCE SOFTWARE... 10
More informationCOLOCATION SERVICE SCHEDULE
COLOCATION SERVICE SCHEDULE 1. DEFINITIONS AND INTERPRETATION 1.1 Definitions Capitalised terms in this Service Schedule not otherwise defined here have the meaning given in the Master Services Agreement:
More informationAheevaCCS and the Payment Card Industry Data Security Standard
Account Data PCI DSS White Paper by Aheeva, January 2012 AheevaCCS and the Payment Card Industry Data Security Standard Introduction In 2006, the major payment brands including American Express, MasterCard
More informationGeneral Terms and Conditions concerning software maintenance
General Terms and Conditions concerning software maintenance I. Preface 1) The following terms and conditions of Open-Xchange concerning the maintenance of the Software (GTC Maintenance) apply to all customers
More informationGALLAGHER GROUP LIMITED, 181 KAHIKATEA DRIVE, HAMILTON, NEW ZEALAND GALLAGHER
GALLAGHER GROUP LIMITED, 181 KAHIKATEA DRIVE, HAMILTON, NEW ZEALAND GALLAGHER GALLAGHER SECURITY SOFTWARE MAINTENANCE TERMS AND CONDITIONS PLEASE READ THESE SOFTWARE MAINTENANCE TERMS AND CONDITIONS CAREFULLY
More informationBT Product and Services Agreement
1. DEFINITIONS The following definitions shall apply, in addition to those in the General Terms and Conditions of the Product and Services Agreement ( PSA ). Account BT Conferencing Co-ordinator BT Express
More informationEASYNET CHANNEL PARTNERS LIMITED PARTNER MASTER SERVICES AGREEMENT SIP TRUNKING SERVICE PRODUCT TERMS
EASYNET CHANNEL PARTNERS LIMITED PARTNER MASTER SERVICES AGREEMENT SIP TRUNKING SERVICE PRODUCT TERMS Registered Office at: St James House Oldbury Bracknell RG12 8TH Company No: 03676297 BMI MSA 20140901
More informationHELPcard Merchant Operating Guide (Rev. Date 12/01/2013)
HELPcard Merchant Operating Guide (Rev. Date 12/01/2013) 1. Definitions. Capitalized terms used in this Merchant Operating Guide have the meanings assigned to them by the HELPcard Merchant Agreement between
More informationTEXTURA AUSTRALASIA PTY LTD ACN 160 777 088 ( Textura ) CONSTRUCTION PAYMENT MANAGEMENT SYSTEM TERMS AND CONDITIONS OF USE
TEXTURA AUSTRALASIA PTY LTD ACN 160 777 088 ( Textura ) CONSTRUCTION PAYMENT MANAGEMENT SYSTEM TERMS AND CONDITIONS OF USE Welcome to the Textura Construction Payment Management ( CPM ) System. By clicking
More informationPayment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire B and Attestation of Compliance
Payment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire B and Attestation of Compliance Merchants with Only Imprint Machines or Only Standalone, Dial-out Terminals Electronic Cardholder
More informationPayment Card Industry (PCI) Data Security Standard
Payment Card Industry (PCI) Data Security Standard Attestation of Compliance for Onsite Assessments Service Providers Version 3.1 April 2015 Section 1: Assessment Information Instructions for Submission
More information2.0 PAYMENT CARD INDUSTRY DATA SECURITY STANDARDS (PCI-DSS)
CSU, Chico Credit Card Handling Security Standard Effective Date: July 28, 2015 1.0 INTRODUCTION This standard provides guidance to ensure that credit card acceptance and ecommerce processes comply with
More informationBUSINESS ASSOCIATE PRIVACY AND SECURITY ADDENDUM RECITALS
BUSINESS ASSOCIATE PRIVACY AND SECURITY ADDENDUM This Business Associate Addendum ( Addendum ), effective, 20 ( Effective Date ), is entered into by and between University of Southern California, ( University
More informationPCI DSS Presentation University of Cincinnati
PCI DSS Presentation University of Cincinnati Quick PCI Level Set Higher Ed Challenges Getting Compliant Application w/ customers Q& A PCI DSS Payment Card Industry Data Security Standard What is the PCI
More informationAny other capitalised terms have the meanings set out in Schedule 1.
1. SERVICE DESCRIPTION The Interoute Co-location Service will comprise of the installation and support services associated with the provision of co-location facilities at Interoute Premises. 2. DEFINITIONS
More informationCard Account means your Card account that is in relation to your Visa Wallet maintained and operated by Tune Money Sdn Bhd.
VERIFIED BY VISA TERMS AND CONDITIONS OF USE Important: The Verified by Visa service is designed to provide you with improved security when your BIG Card- Prepaid Visa is used to make purchases online.
More informationHow To Use Adobe Software For A Business
EXHIBIT FOR MANAGED SERVICES (2013V3) This Exhibit for Managed Services, in addition to the General Terms, the OnDemand Exhibit, and any applicable PDM, applies to any Managed Services offering licensed
More informationPayment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire D and Attestation of Compliance
Payment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire D and Attestation of Compliance All other SAQ-Eligible Merchants and Service Providers Version 2.0 October 2010 Document
More informationService Schedule 2 MS Lync Terms & Conditions v1.0
Service Schedule 2 MS Lync Terms & Conditions v1.0 Overriding provisions All quotations are made and all orders are accepted subject to these conditions ( these Schedule Terms ) and our Active Support
More informationTerms and Conditions. 4 Termination of the Agreement
Terms and Conditions 1 Definitions The Customer is your company name. Products refers to the software products as mentioned on the Support Certificate. Upgrade refers to a new release of the Products to
More informationChapter I. 1. Purpose. 2. Your Representations. 3. Cancellations. 4. Mandatory Administrative Proceeding. dotversicherung-registry GmbH
Chapter I.versicherung Eligibility Requirements Dispute Resolution Policy (ERDRP) 1. This policy has been adopted by all accredited Domain Name Registrars for Domain Names ending in.versicherung. 2. The
More informationIntroduction to PCI DSS
Month-Year Introduction to PCI DSS March 2015 Agenda PCI DSS History What is PCI DSS? / PCI DSS Requirements What is Cardholder Data? What does PCI DSS apply to? Payment Ecosystem How is PCI DSS Enforced?
More informationSaint Louis University Merchant Card Processing Policy & Procedures
Saint Louis University Merchant Card Processing Policy & Procedures Overview: Policies and procedures for processing credit card transactions and properly storing credit card data physically and electronically.
More informationJRI S STANDARD TERMS OF PURCHASE. Business Day: a day (other than a Saturday, Sunday or public holiday) when banks in London are open for business.
JRI S STANDARD TERMS OF PURCHASE 1. INTERPRETATION 1.1 Definitions. In these Conditions, the following definitions apply: Business Day: a day (other than a Saturday, Sunday or public holiday) when banks
More informationHow To Build A House
CONTRACT TO BUILD A HOUSE AT I. Contract Parties Now comes (builder s name) (address) and (buyer s name) (address) to hereby agree to build a house on property located at (common address) and legally described
More informationCredit Card Processing and Security Policy
Credit Card Processing and Security Policy Policy Number: Reserved for future use Responsible Official: Vice President of Administration and Finance Responsible Office: Student Account Services Effective
More informationInformation Crib Sheet Internet Access Service Agreement
Information Crib Sheet Internet Access Service Agreement 1. Definitions and Interpretation This Service Agreement is to be read in conjunction with the Conditions for Communications Services (the Conditions
More informationDASHBOARD CONFIGURATION SOFTWARE
DASHBOARD CONFIGURATION SOFTWARE RECITALS: The Contractor has designed and a web site for Client, and has agreed to maintain the said web site upon the terms and conditions hereinafter contained.] NOW
More informationPayment Card Industry (PCI) Data Security Standard
Payment Card Industry (PCI) Data Standard Attestation of Compliance for Self-Assessment Questionnaire D Service Providers Version 3.1 April 2015 Section 1: Assessment Information Instructions for Submission
More informationWhite Paper On. PCI DSS Compliance And Voice Recording Implications
White Paper On PCI DSS Compliance And Voice Recording Implications PCI DSS within the UK is becoming a hot topic of conversation, with many contradictions and confusions being issued by suppliers and professionals
More information