Get your 30 day free trial with 100 free calls or texts! Sign Up Free
Last Updated: Tue, Feb 20, 2018

PCI

Sigma Voice is a leading provider of 'one-to-many' automated calling and mass texting services. Schedule consultation Get started free

The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle cardholder information for the major debit, credit, prepaid and ATM cards. All merchants that process credit cards must be PCI compliant.

More information is available on the official PCI website.

http://www.pcicomplianceguide.org

Sigma Voice is a PCI Compliant merchant and can securely accept credit card payments for its services.

Applications built with Sigma Voice are not covered under Sigma Voice ’s compliant status as a merchant.

Sigma Voice recommends that customers seek guidance from their legal counsel for any compliance questions concerning their applications. See the questions below for further details.

According the official PCI website, if a customer application processes, transmits or stores credit, debit or prepaid card data, then they are responsible for ensuring that their application is PCI compliant. Merely using Sigma Voice for customer transactions does not exclude any company from PCI compliance regulations, as PCI compliance obligations apply to all organizations and merchants, regardless of size or number of transactions, that accept, transmit or store any cardholder data.

Many businesses have architected their applications in a PCI compliant manner, while still using Sigma Voice for part(s) of their workflow. The key is to avoid processing, storing and transmitting cardholder data on Sigma Voice. Some techniques that customers have used are as follows:

Verifying a customer’s account using only the last few digits of the PAN via voice, SMS (short messaging services) or DTMF (dual-tone multi-frequency) dialing.

Ensuring that the customer application never transmits entire cardholder data over unencrypted channels including voice, SMS or DTMF.

Not retaining sensitive authentication data after authorization

For telephone operations, “sensitive authentication data” means the CAV2/CVC2/CVV2/CID and/or PIN values that may be taken during a telephone call.

The Payment Application Data Security Standard (PA DSS) applies to payment processors. Sigma Voice recommends that customers familiarize themselves with the PA DSS requirements and security assessment procedures. Use of a PA DSS compliant application by itself does not make an entity PCI DSS compliant, because the application must be implemented in conformity with the overall PA-DSS Implementation Guide.

Also, the list above is not meant to be comprehensive or replace the PCI standards and guidelines described above. Customers will need to ensure that their applications meet those guidelines. As always, Sigma Voice recommends that customers seek guidance from their legal counsel if they have any compliance questions concerning their applications.

According to the PCI website, cardholder data is any personally identifiable data associated with a cardholder. This could be an account number, expiration date, name, address, social security number, etc. All personally identifiable information associated with the cardholder that is stored, processed, or transmitted is also considered cardholder data.

Cardholder Data is a Full magnetic stripe or the PAN plus any of the following items.

Primary Account Number (PAN)

Cardholder Name

Service Code

Expiration Date

What is considered Sensitive Authentication Data (SAD)?

Full Magnetic Stripe Data

CAV2/CVC2/CVV2/CID

PIN/PIN Block

Sigma Voice utilizes a third party to process all credit card payments (a tokenization service). Because of this, Sigma Voice does not store any customer Cardholder Data.

We're Seeing Stars

Mark Hamilton profile picture Verified Customer

Mark Hamilton

Nonprofit Organization

Sigma Voice exceeded our expectations for our call out needs. When we needed changes made they were happy to do so and performed changes in a timely manner. I highly recommend Sigma Voice.

Kristin Taylor profile picture Verified Customer

Kristin Taylor

Senior Living

Sigma Voice was so easy to set up. I needed to get an immediate message out to my 60+ family members. It’s affordable, the reports are amazing, and the customer service is beyond what I expected on a Sunday afternoon. Highly recommended!

Pedro Hernandez profile picture Verified Customer

Pedro Hernandez

Medical Offices

This service is fantastic. Setting up automated calls is super easy and affordable. I highly recommend it.

Ken Doke profile picture Verified Customer

Ken Doke

Nonprofit Organization

I have been using Sigma Voice for a few years now on a number of campaigns. They have always been reliable and competitive. Their customer service is phenomenal. I highly recommend.

Haith Johnson profile picture Verified Customer

Haith Johnson

Retail Store

Absolutely LOVE THIS SERVICE!!! I recommend using Sigma Voice for any growing business!! We have got great responds & is a good way to stay in touch with your customers base! Helps us to turn customers to Loyal Customers to VIP Customers!!!

Emma Otto profile picture Verified Customer

Emma Otto

Retail Store

We have used SigmaVoice for our business for a few years now, and it has been a very good experience. The website is simple, straightforward, and easy to navigate. Customer service is excellent; professional and prompt.

Sigma Voice Icon

Increase revenue with
Sigma Voice

Get started free

Get started with free personalized support. Create your own custom calling and texting strategy with a Sigma Voice expert.

1-800-905-9140

Schedule consultation

Popular Posts From Our Blog

Check out the Sigma Voice blog to learn about mass calling and texting best practices.

...

3X Your Email Marketing Strategy

Last Updated: Wed, Nov 16, 2022

25% email open rates mean that 75% of your subscribers do not read your email messages. This could lead to lost revenue. Fortunately, there are 2 simple ways to boost your email marketing strategy fast.

...

Express Written Consent - What It Is, How To Obtain It And Some Examples

Last Updated: Fri, Nov 18, 2022

Expressed written consent (EWC) is permission for something that is given specifically in writing. Learn how to obtain EWC from your contacts for automated calling and mass texting communications.

...

Grow Your Church Faster With A Phone Tree

Last Updated: Thu, Jan 26, 2023

Learn how an easy-to-use and effective church communication system can help increase the size of your Church.