Talisma (Moxie Software) Helps Businesses Achieve PCI Compliance for Online Channels

White Paper: How Talisma Email, Secure Message Portal and Chat Products Provide Security Required to Meet PCI Standards

Bellevue, WA, July 15 2008 – Talisma® Corporation (www.talisma.com), an nGenera company and the leading Customer Interaction Management (CIM) software solution provider, today announced the availability of a white paper that describes how the fully integrated solutions of Talisma Email, Talisma Secure Message Portal and Talisma Chat help businesses achieve compliance with PCI (Payment Card Industry) Security Standards. Talisma solutions accomplish this by providing secure communication layers for protecting sensitive data during transmission, storage and access.

Industry experts have stated that billions of dollars each year are lost in credit card fraud. The Federal Trade Commission’s Consumer Sentinel (Consumer Fraud and Identity Theft Complaint Data) from 2007 shows that the FTC alone received more than 800,000 consumer fraud and identity theft complaints. These reported losses alone accounted for more than $1.2 billion – credit card fraud, at 23%, was the most common form of reported identity theft.

“Security breaches pose a real threat to all companies who conduct business online as consumers lose confidence in their ability to reliably protect confidential information,” said Dan Vetras, President and CEO, Talisma Corporation. “PCI Compliance gives our customers the ability to deliver rich, satisfying sales and service experiences, while insuring the privacy and confidentiality of their customer’s personal information.”

The white paper provides details on how PCI compliance is achieved. Some of the measures employed by Talisma solutions meet PCI requirements include:

  • Stripping of credit card and other sensitive data before database storage and presentation to agents
  • Restrictions on access to cardholder data by agents and other users of customer emails & chats
  • Encrypted transmission of cardholder data across open, public networks
  • Authentication measures to assign a unique ID to each person with access to the message portal
  • Secure placement of servers behind corporate firewall
  • Can remove cardholder data from chat transcripts before storage or response to a customer.