Cookie Preference Centre

Your Privacy
Strictly Necessary Cookies
Performance Cookies
Functional Cookies
Targeting Cookies

Your Privacy

When you visit any web site, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences, your device or used to make the site work as you expect it to. The information does not usually identify you directly, but it can give you a more personalized web experience. You can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, you should know that blocking some types of cookies may impact your experience on the site and the services we are able to offer.

Strictly Necessary Cookies

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site may not work then.

Cookies used

Performance Cookies

These cookies allow us to count visits and traffic sources, so we can measure and improve the performance of our site. They help us know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies, we will not know when you have visited our site.

Cookies used

Google Analytics

Functional Cookies

These cookies allow the provision of enhance functionality and personalization, such as videos and live chats. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies, then some or all of these functionalities may not function properly.

Cookies used




Targeting Cookies

These cookies are set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant ads on other sites. They work by uniquely identifying your browser and device. If you do not allow these cookies, you will not experience our targeted advertising across different websites.

Cookies used


This site uses cookies and other tracking technologies to assist with navigation and your ability to provide feedback, analyse your use of our products and services, assist with our promotional and marketing efforts, and provide content from third parties


Here are some suggested Connections for you! - Log in to start networking.

News : PCI DSS Version 4 Release Coincides with Eckoh’s Compliance Anniversary

#contactcenterworld, @eckoh

Eckoh plc (AIM: ECK) is proud to have achieved a milestone event, its tenth year of compliance to the Payment Card Industry Data Security Standard ("PCI DSS") at level 1, the highest level. At the same time, the PCI Security Standards Council ("PCI SSC") has announced the release of the first draft of DSS version 4, which contains some changes that means organisations will need to plan for a major review of their compliance strategy.

Compliance every minute of every day

Maintaining continuous compliance to PCI DSS is a major achievement. It requires dedication and expertise – not just once a year at the time of assessment but every minute of every day. The length of Eckoh’s compliance demonstrates that security as well as compliance is at the very core of Eckoh’s culture and solutions. 

Nik Philpot, CEO at Eckoh comments, "This is a tremendous achievement and a testament to the dedication, vigilance and hard work of every Eckoh employee – day in, day out; year after year. There is no doubt that Eckoh’s security and compliance credentials lead the sector and offer our clients the most robust and reliable way to achieve and maintain PCI DSS compliance."

....NOTE - content continues below this message


We invite you and your colleagues to join us LIVE as we take the highest rated industry conference back on the road in 2022 - join us and the elite in the industry at the 17th annual NEXT GENERATION Contact Center & Customer Engagement Best Practices Conferences!



If you process card data, things are about to change

With Card-Not-Present fraud set to reach £680m in the UK by 2021 [1] as well as increasing regulation such as GDPR and MiFID II, it is timely that the PCI SSC will shortly issue the fourth version of the DSS which will involve major changes to the standard in three key areas;

  • New technologies
  • New validation options
  • New requirements

Compensating controls won’t do any longer

Dave Holliday, Global IT Director at Eckoh said, "What all this change essentially means is, with version 4, organisations will no longer be able to use compensating controls to help achieve PCI DSS compliance. Currently, if an organisation does not meet a DSS requirement it could use ‘compensating controls’ to define and manage business or technical constraints. The QSA does not test these but will agree if they consider them to be sufficient.

In DSS version 4 the validation method means that not meeting a DSS requirement will no longer be an option. As a result, the organisation will have to define a way to meet the intent of the requirement and, together with the QSA, they will have to work out how to test it.

These changes are designed to give greater flexibility for organisations around the controls in use and it aligns with a risk-based approach and maintains the DSS as technology and industry-wide best practice."

Nik Philpot, CEO at Eckoh, continues, "The new standard will pose a huge challenge for many and we’d recommend working with an expert in contact centre security – such as Eckoh - to make sure any solution fully descopes the contact centre and minimises the ongoing management or burden of compliance. As the leader in the contact centre technology, we’ve a track record of creating innovative solutions that have helped evolve card-not-present payments – from our patented CallGuard product, developing the world’s first eWallet payments over the phone, to securing PCI compliant payments within chat through ChatGuard. As a result, we have a unique portfolio of solutions to tackle the challenges the industry is facing and our customers’ particular circumstances."

#contactcenterworld, @eckoh

About Eckoh:
Company LogoEckoh is a global provider of Secure Payment and Customer Engagement solutions via our Eckoh Experience Portal. We’ve an international client base and offices in the UK and US. We're providers in transforming contact centre operations by delivering customer experiences across every channel, boosting agent productivity, reducing operations costs and maximising payment security. We’ve over 20 years’ experience in contact centre technology solutions. Eckoh has been a PCI DSS Level One Service Provider since 2010.
  Company Blog   Company RSS Feed   Company Facebook   Company Twitter   Company YouTube   Company LinkedIn   Company Profile Page

Today's Tip of the Day - Play Your Agents Their Calls

Read today's tip or listen to it on podcast.

Published: Friday, October 25, 2019

Printer Friendly Version Printer friendly version

2022 Buyers Guide Payment Services


Branch Employer Payments Platform - Earned Wage Access
Give employees instant access to a portion of their earned wages before payday! Branch helps businesses modernize their payment methods to empower working Americans. Earned wage access—with no-fee banking and access to a digital wallet and free debit card—are just some of the tools in our fast, free, and flexible platform. With Branch, businesses streamline existing payroll processes, save money, and provide faster payments and free digital banking to their employees—no pre-funding or capital required.


CallGuard, ChatGuard,
Securing payments for on-premise or remote agents for telephone, IVR, web, mobile, Chat and Chatbot.

A patented technology that is flexible way to take secure, PCI DSS compliant payments via live agents over the telephone, web, Chat, Chatbot, or IVR. No sensitive data enters the contact centre environment so, agents do not see, hear, store or record any card or personal details.

CallGuard can be deployed in various ways to fit the way your contact centre works. The solution can de-scope all, or parts, of your contact centre from the scope of PCI DSS compliance and works just as well for on-premise or home/remote working agents.

ChatGuard makes payments in Chat PCI DSS compliant and...
(read more)


Award-winning PCI compliance phone and multi-channel payment application.

PayGuard® is easy to deploy, very easy for agent to use from the office/contact centre or from home and is affordable.

About us - in 60 seconds!

Submit Event

Upcoming Events

The 17th Annual Best Practices and Conferences are here! Meeting Point for the World's Best Contact Center & CX Companies! Read More...
Showing 1 - 1 of 5 items

Newsletter Registration

Please check to agree to be placed on the eNewsletter mailing list.

Latest Americas Newsletter
both ids empty
session userid =
session UserTempID =
session adminlevel =
session blnTempHelpChatShow =
session cookie set = True
session page-view-total = 1
session page-view-total = 1
applicaiton blnAwardsClosed = True
session blnCompletedAwardInterestPopup = False
session blnCheckNewsletterInterestPopup =
session blnCompletedNewsletterInterestPopup =