Enable communication compliance across your organization.

Effective Security Posture
and Efficient Processes.

Risk assessment is at the very center of ISO 27001, a standard based upon an organization’s understanding and management of its risk profile to ensure that the right level of control is applied consistently across the organization and protect information security assets from threats successfully. We have taken this certification to give our customers and partners a clear message: security best practices and continuous improvement are put into practice. 0695.2021 is more than our certificate number: is the commitment we make with you.

View certificate

Main aim

Protect and secure all EU citizen’s data privacy.

Whom does it affect?

GDPR applies to all worldwide companies operating within and outside the EU, managing EU citizens’ data.

What does it require?

• Profiled and secure access to data
• Traceability of personal information’s access
• Flexible retention policy
• Data at rest encryption and pseudonymization
• Personal data access, editing, and deletion

How Imagicle apps ensure GDPR compliance?

• Role-based access
• Log and audit trail
• Data retention policy
• Encryption at rest 
• Encryption in access

Main aim

The HIPAA Privacy regulations require health care providers, organizations and their business associates to develop and follow procedures that ensure the confidentiality and security of protected health information (PHI) when it is transferred, received, handled, or shared.

Whom does it affect?

HIPAA applies to all US companies that manage all forms of PHI, including paper, oral, and electronic.

What does it require?

Requires the protection and confidential handling of protected health information.

How Imagicle apps ensure HIPAA compliance?

• Role-based access
• Log and audit trail
• Encryption at rest
• Encryption in access

Main aim

Ensure investors’ protection by increasing transparency, safety, and efficiency in the financial market. 

Whom does it affect?

MiFID II affects all investment services, including banks, fund managers, exchanges, trading venues, high-frequency traders, brokers, pension funds, and retail investors.

What does it require?

• Record every call that leads to a transaction, with monitoring capabilities to ensure recording is working as expected.
• Retrieve, enabling recordings’ search&play and providing relative info/notes if needed.
• Meta info, to allow adding notes to specific recordings to be associated with CRM/ERP records for easy correlation.
• Audit trail, to track and timestamp when recordings are accessed, played, downloaded or there are deletion tentative.
• Storage, to allow recordings to be securely kept for at least 5 years (with the option of 7 years at Financial Conduct Authority request), with the ability to export at any time.

How Imagicle Call Recording support MiFID II?

• Record all phone conversations, either on-demand or in always-on mode. It supports High Availability.
• Search&Play tool, providing a profiled multi-level access to any recordings. Available either through the web portal, Attendant Console, Webex, Cisco Jabber, and MS Teams.
• Fully Audit trail of activities, to track and timestamp when recordings are accessed, played, downloaded or there are deletion tentative.
• Storage management, to configure recording lifecycle, with internal or external storage, encryption of content with AES algorithms, and detection of tampering tentative.

Main aim

The PCI security standards are technical and operational requirements created to help organizations that process card payments prevent credit card fraud, hacking, and various other security vulnerabilities and threats.

Whom does it affect?

All organizations that store, process, or transmit cardholder data.

What does it require?

• Skip recording of card info – The standard requires that card security codes (CID, CAV2, CVC2, CVV2) are not stored.
• Cardholder data protection – Access to protected recordings, available with multi-level access. Recordings are encrypted and not alterable.
• Network security – TLS 1.1/1.2 are required as of 30th of June 2018.
• Audit trail – Implement strong access control measures.

How Imagicle Call Recording support PCI-DSS?

• Pause/Resume button to avoid the recording of credit card info.
• TLS 1.2 support, both recording engine and access to web and gadget UI are securely available via TLS 1.2, providing the maximum security level.
• Fully audit trail of activities, to track and timestamp when recordings are accessed, played, downloaded, or there are deletion tentative.
• Role-based access to recordings to protect access with recording encrypted with AES algorithm and tampering tentative detection.