Menu

APPSUITECISCO BANNER ML

 

 

 

 

 

 

Imagicle ApplicationSuite complies with GDPR, HIPAA, MiFID II and PCI-DSS regulations.
 

 

 

 

 

 

 

Imagicle

MENU APPSUITECISCO ML
GDPR

 

 
 
 

GDPR

General Data Protection Regulation

WHEN? 25th of May 2018
WHERE? worldwide

 

 

MAIN AIMS

Protect and empower all EU citizens data privacy.

 

WHO DOES IT AFFECT?

Worldwide companies managing EU citizens' data.
GDPR has to be respected not only by European Companies, but even by all those extra-European Companies managing EU citizens' data.

 

WHAT DOES IT REQUIRE?

1. Profiled and Secure access to data
2. Traceability of access to personal information
3. Flexible retention policy
4. Data at rest secured via encryption (or pseudonymization)
5. Possibility to access, edit and delete personal data

 

 

 

 


 

Imagicle apps and GDPR regulation

 

HIPAA

 
 

HIPAA

Health Insurance Portability and Accountability Act

WHEN? 1996
WHERE? USA

 

 

MAIN AIMS

The HIPAA Privacy regulations require healthcare providers and organizations, as well as their business associates, to develop and follow procedures that ensure the confidentiality and security of protected health information (PHI) when it is transferred, received, handled, or shared.

 

WHO DOES IT AFFECT?

US companies managing all forms of PHI, including paper, oral, and electronic.

 

WHAT DOES IT REQUIRE?

The protection and confidential handling of protected health information.

 

 

 


 

Imagicle apps and HIPAA regulation

 

MiFID II

 
 

MiFID II

Market in Financial Instruments Directives

WHEN? 3rd of January 2018
WHERE? Europe

 

 

MAIN AIMS

Enhance investors’ protection by increasing transparency, safe and efficient in financial market.

 

WHO DOES IT AFFECT?

Banks, fund managers, exchanges, trading venues, high-frequency traders, brokers, pension funds and retail investors.

 

WHAT DOES IT REQUIRE?

1. RECORD every call that leads to a transaction, with monitoring capabilities to ensure recording is working as expected
2. RETRIEVE, to give access search & play of recordings and relative info/notes in case of requests
3. META INFO, to allow adding searchable notes to specific recordings, to be associated with CRM/ERP records for easy correlation
4. AUDIT TRAIL, to track and timestamp when recordings are accessed, played, downloaded and deletes are attempted
5. STORAGE, to allow recordings to be securely kept for at least 5 years (with the option of 7 years at FCA - Financial Conduct Authority - request), with export possibility at any time

 

 

 

 


 

Imagicle Call Recording fully supports MiFID II regulation

 

 
PCI-DSS

 
 

PCI-DSS

Payment Card Industry Data Security Standard

WHEN? 30th of June 2018
WHERE? worldwide

 

 

MAIN AIMS

The PCI security standards are technical and operational requirements that were created to help organizations that process card payments prevent credit card fraud, hacking and various other security vulnerabilities and threats.

 

WHO DOES IT AFFECT?

All organizations that store, process or transmit cardholder data.

 

WHAT DOES IT REQUIRE?

1. Skip recording of card info – The standard requires that card security codes (CID, CAV2, CVC2, CVV2) are not stored
2. Cardholder data protection – Access to recordings protected and available with a multi-level access, with recordings encrypted and not alterable
3. Network security – TLS 1.1/1.2 are required as of 30th of June 2018
4. Audit trail -  Implement strong access control measures

 

 

 

 


 

Imagicle Call Recording fully supports PCI-DSS regulation

 

en-USit-ITfr-FRde-DEes-ES