Compliance Recording
CallCopy's Security module is designed to enable easy compliance with legal requirements such as PCI, HIPAA and Sarbanes-Oxley. Flexible and secure call recording, secure storage and management of data, and easy retrieval add up to a solution that helps organizations reach regulatory compliance, regardless of the industry they are in.
Restrict Access to Data
CallCopy has a robust permissions feature set to allow granular security controls around access to and exporting of audio and screen recordings. CallCopy also provides a file hash audit trail to ensure that recordings remain intact and unaltered.
Disk Encryption
Video and audio files are stored using on-the-fly-encrypted disks. No data stored on an encrypted volume can be read (decrypted) without using the correct password/keyfile(s) or correct encryption keys.
Network Encryption
CallCopy’s Security module includes SSL encryption for all client-server communications, both in recording and in playback. We can also provide encryption for all recordings stored in our system.
Blackouts
CallCopy’s Blackout feature is able to receive start and stop triggers to define the beginning and end of a period within a call that contains sensitive information, effectively pausing the recording of both voice and screen. This ensures that sensitive data is not stored, in compliance with regulation such as PCI DSS related to payment card security codes (CID, CAV2, CVC2, CVV2).
User Security and Audits
CallCopy’s Security module includes an extensive activity tracking system, providing a database of all activity in the system. You will be able to conduct full trace audits to determine who has accessed any recording in the system for playback, export or any other critical functions. User permissions include the ability to deny an individual user the right to reset their own password, preventing general users from creating overly-simple passwords.
Auto Archiving
In addition to reliable recording and secure storage, customizable rules allow records to be auto-archived and stored to meet business rules, or government regulations such as MIPPA and HIPAA.
Links to specific regulations:
- Payment Card Industry (PCI) Compliance
- Public Company Accounting Reform and Investor Protection Act (Sarbanes-Oxley)
- Telemarketing Sales Rule (TSR)
- Telephone Consumer Protection Act (TCPA)
- Truth in Lending Act (TILA)
- Fair Debt Collection Practices Act (FDCPA)
- Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule
- Medicare Improvements for Patients and Providers Act (MIPPA)
