APPSUITECISCO BANNER ML

Imagicle ApplicationSuite complies with GDPR, HIPAA, MiFID II and PCI-DSS regulations.

Imagicle

GDPR

General Data Protection Regulation

WHEN? 25th of May 2018
WHERE? worldwide

MAIN AIMS

Protect and empower all EU citizens data privacy.

WHO DOES IT AFFECT?

Worldwide companies managing EU citizens' data.
GDPR has to be respected not only by European Companies, but even by all those extra-European Companies managing EU citizens' data.

WHAT DOES IT REQUIRE?

1. Profiled and Secure access to data
2. Traceability of access to personal information
3. Flexible retention policy
4. Data at rest secured via encryption (or pseudonymization)
5. Possibility to access, edit and delete personal data

Imagicle apps and GDPR regulation

APP	ROLE BASED ACCESS	LOG AND AUDIT TRAIL	DATA RETENTION POLICIES	ENCRYPTION AT REST	ENCRYPTION IN ACCESS	WHITE PAPER VIDEO
ACCOUNTING & BILLING	YES	Coming in Winter '19	YES ²	YES	YES
BUDGET CONTROL	YES	Coming in Winter '19	YES	YES	YES	-
PHONE LOCK	YES	N/A	YES	YES	YES	-
IP FAX SERVER	YES	YES ¹	YES	YES	YES
DIRECTORY CALLER ID	YES	N/A	N/A	YES	YES	-
AUTO ATTENDANT	YES	Coming in Winter '19	YES	YES	YES	-
QUEUE MANAGER	YES	Coming in Winter '19	YES	YES	YES	-
ATTENDANT CONSOLE & DESKTOP CTI	YES	N/A	YES	YES	YES ²	-
CALL RECORDING	YES	YES	YES	YES	YES
HOTEL PACK	YES	Coming in Winter '19	YES	YES	YES	-

HIPAA

Health Insurance Portability and Accountability Act

WHEN? 1996
WHERE? USA

MAIN AIMS

The HIPAA Privacy regulations require healthcare providers and organizations, as well as their business associates, to develop and follow procedures that ensure the confidentiality and security of protected health information (PHI) when it is transferred, received, handled, or shared.

WHO DOES IT AFFECT?

US companies managing all forms of PHI, including paper, oral, and electronic.

WHAT DOES IT REQUIRE?

The protection and confidential handling of protected health information.

Imagicle apps and HIPAA regulation

APP	ROLE BASED ACCESS	LOG AND AUDIT TRAIL	ENCRYPTION AT REST	ENCRYPTION IN ACCESS	WHITE PAPER
IP FAX SERVER	YES	YES¹	YES	YES
CALL RECORDING	YES	YES	YES	YES

MiFID II

Market in Financial Instruments Directives

WHEN? 3rd of January 2018
WHERE? Europe

MAIN AIMS

Enhance investors’ protection by increasing transparency, safe and efficient in financial market.

WHO DOES IT AFFECT?

Banks, fund managers, exchanges, trading venues, high-frequency traders, brokers, pension funds and retail investors.

WHAT DOES IT REQUIRE?

1. RECORD every call that leads to a transaction, with monitoring capabilities to ensure recording is working as expected
2. RETRIEVE, to give access search & play of recordings and relative info/notes in case of requests
3. META INFO, to allow adding searchable notes to specific recordings, to be associated with CRM/ERP records for easy correlation
4. AUDIT TRAIL, to track and timestamp when recordings are accessed, played, downloaded and deletes are attempted
5. STORAGE, to allow recordings to be securely kept for at least 5 years (with the option of 7 years at FCA - Financial Conduct Authority - request), with export possibility at any time

Imagicle Call Recording fully supports MiFID II regulation

PCI-DSS

Payment Card Industry Data Security Standard

WHEN? 30th of June 2018
WHERE? worldwide

MAIN AIMS

The PCI security standards are technical and operational requirements that were created to help organizations that process card payments prevent credit card fraud, hacking and various other security vulnerabilities and threats.

WHO DOES IT AFFECT?

All organizations that store, process or transmit cardholder data.

WHAT DOES IT REQUIRE?

1. Skip recording of card info – The standard requires that card security codes (CID, CAV2, CVC2, CVV2) are not stored
2. Cardholder data protection – Access to recordings protected and available with a multi-level access, with recordings encrypted and not alterable
3. Network security – TLS 1.1/1.2 are required as of 30th of June 2018
4. Audit trail - Implement strong access control measures