Strategic Sponsors

Make it easier and more secure for your customers to pay anytime, anywhere

We know that making it easy and safe for customers to pay is critical to your success.

That’s why we provide a flexible suite of modular payment solutions for a variety of sectors including retail, hospitality, gaming, financial services, local government, health and education, so you can offer customers a wide choice of secure payment methods to create a competitive advantage.

A 2018 PCI Awards for Excellence winner, Pay360 by Capita allows you to accept payments meeting your PCI responsibilities, whether in person, over the counter, online, on the move or using alternative payment methods (APMs).

We take on PCI DSS and GDPR compliance responsibility with agent attended and unattended solutions for the telephony environment to protect staff from hearing card details and keep customer data secure. We also pioneer digital channel shift to web-based payments for agent attended and unattended payments whereby callers are seamlessly guided to completing their transaction online.

Using the very latest artificial intelligence technology with smart automation, we can help reduce the operational costs of accounts receivables for more efficient payment collections.

To further optimize business success, our cutting-edge fraud and risk management platform streamlines decision-making to counter payment fraud, supporting anti-money laundering (AML) and Know Your Customer (KYC) to improve acceptance rates, revenue and customer experience.

Find out how Pay360 by Capita can help optimize the success of your business: 
t.     (0)333 313 7160 
e.     pay360digitalsales@capita.co.uk 
Follow us on Twitter and LinkedIn at @Pay360byCapita

Gemalto (Euronext NL0000400653 GTO) is the world leader in digital security, with 2014 annual revenues of €2.5 billion and blue-chip customers in over 180 countries.
Gemalto helps people trust one another in an increasingly connected digital world. Billions of people want better lifestyles, smarter living environments, and the freedom to communicate, shop, travel, bank, entertain and work – anytime, everywhere – in ways that are enjoyable and safe. In this fast moving mobile and digital environment, we enable companies and administrations to offer a wide range of trusted and convenient services by securing financial transactions, mobile services, public and private clouds, eHealthcare systems, access to eGovernment services, the Internet and internet-of-things and transport ticketing systems.
Gemalto’s unique technology portfolio - from advanced cryptographic software embedded in a variety of familiar objects, to highly robust and scalable back-office platforms for authentication, encryption and digital credential management - is delivered by our world-class service teams.  Our 14,000 employees operate out of 99 offices, 34 personalization and data centers, and 24 research and software development centers located in 46 countries.

18 years young and headquartered in Newcastle Upon Tyne, SRM are on a mission to demystify the world of information security. Our specialist consultancy and bespoke range of solutions help our clients feel safe, protected and confident in cyber space,  At SRM, we offer an exceptional skill-set and depth of experience, all delivered with first-class personal service. 

SRM is chosen by leading brands and SME's alike to assist in the planning and execution of security projects, safe in the knowledge that the required result is always delivered. Every project is led at a strategic level by a senior member of the SRM team, with expert individuals managing the day-to-day process. This team is available and in contact with clients on a regular basis to ensure they are fully aware of progress at all times.

Despite boasting the highest credentials within the Payment Card Industry and Cyber Security sectors, we consider the relationship with our clients to be one of true collaboration. We pride ourselves on being at the very forefront of developments within the cyber security industry. And behind every accreditation and appointment there is a drive toward excellence in each and every aspect of this sphere. But our focus is not on gaining badges or awards, but on using our cutting edge expertise to remedy breaches, minimise damage and develop defences while delivering additional value, peace of mind and security to our clients. 

Education Seminar Sponsors

Armor is the first Totally Secure cloud company that protects customers’ vital assets and helps prevent data breaches through managed multi-layer security for public and private clouds. The Armor team also applies extensive military cyber security experience for proactive threat detection, response and remediation. Forward-thinking organizations trust Armor for data security and compliance to stay ahead of cyber threats in the cloud. To learn more, visit www.armor.com or follow @armor.

Barclaycard, part of Barclays Bank PLC, is a leading global payment business that helps consumers, retailers and businesses to make and take payments flexibly, and to access short-term credit and point-of-sale finance. In 2017 we processed over £246bn in transactions globally. We are a pioneer of new forms of payment, having introduced contactless to the UK in 2008 and this focus continues as we explore the cutting-edge forms of payment for the future. 
We pride ourselves on our reputation for delivering innovative and practical ways to help merchants fight fraud and reduce data security risks. With our award winning security teams and an extensive range of educational and awareness initiatives, we’re committed to giving you all the help and advice needed to secure your business.

Have you deployed ‘Pause and Resume’ for your contact centre or are you just about to tackle phone payments? If so, discover how DataDivider can simply take out your agent desktops, network and back-end systems from PCI scope whilst your agents continue to listen to and enter cardholder data. Reduce you BAU costs or implement a call centre PCI de-scope strategy for the fraction of the cost of complex DTMF tone masking solutions. Sound impossible? Find out how by visiting DataDivider’s booth or attending our education session “Leveraging your PCI DSS investment for GDPR ”. In the past decade PCI forensic audits have only discovered a handful of telephony infrastructure related breaches so focus your risk based approach to where the real exposure lies. 

DataDivider provides the ability to de-scope desktops, data networks and backend systems for telephone, mail, fax, email and chat payments. Entering its eighth year as a PCI certified Level 1 Service Provider, DataDivider provides its solution to over 80 Level 1 to Level 4 merchants. Its unique patent pending technology provides the most cost effective approach to managing MOTO payments where the solution can be deployed in a matter of days and weeks as opposed to months and years. The DataDivider solution precludes the necessity of expensive and time consuming telephony and applications integration yet still achieves the objectives of keeping cardholder data segregated from the applications architecture.

De-scope your contact centres from PCI DSS whilst enhancing the customer/agent experience & GDPR compliance
CardEasy is Syntec's patented, award-winning DTMF solution for customer 'keypad payment by phone' and de-scopes your contact centre environment from PCI DSS controls, whilst ensuring your MOTO card payments and call recordings are PCI DSS compliant.
CardEasy is trusted by consumers, as it removes the need for them to read out their card numbers over the phone.  By asking them to enter their card numbers using the keypad of their own phone instead (Mid-call in conversation with the agent or via self-service IVR Autopay), PCI monitoring and audit requirements for the contact centre are reduced to the bare minimum.  The sensitive card numbers no longer enter your call centre environment or call recordings at all, cutting out compliance costs and hassle whilst improving customer service and trust. The agent/customer experience is not interrupted as the agent remains on the call throughout – no handoff to an awkward IVR system – and the system reduces average call times and reduces the mis-keying of card data too.

CardEasy was the winner of the PCI Excellence Award for the second time in January 2018 and won the Genesys 'Best Security Solution' award at Call & Contact Centre Expo in London in March 2018.   

Flexible CardEasy deployment 
CardEasy is supported by (and integrated with) the leading industry payment gateways and is designed to be universally quick and easy to implement.
Working either as a fully hosted managed service; partially premise-based (CPE); or entirely cloud-based for larger enterprises and international use, it is designed to be CRM and telephony agnostic – you can rely on our in-house advice and expertise, but CardEasy works with your existing telephony and back-office systems, there’s no requirement to use ours.  
Syntec – Integrated Contact Centre systems
Established as Syntec Telecom in 1998, Syntec is a PCI DSS level 1 Visa and Mastercard-listed service provider and a participating organization of the global PCI Security Standards council.
Syntec Limited. www.syntec.co.uk   t. 020 7741 2000   e. info@syntec.co.uk  
CardEasy video/demo:  http://www.syntec.co.uk/pci-dss-solutions/cardeasy/

Cryptomathic is a global provider of secure server solutions to businesses across a wide range of industry sectors, including banking, government, technology manufacturing, cloud and mobile. With over 30 years' experience, we provide systems for Authentication & Signing, EMV and Crypto & Key Management through best-of-breed security solutions and services.

We pride ourselves on strong technical expertise and unique market knowledge, with 2/3 of employees working in R&D, including an international team of security experts and a number of world renowned cryptographers. At the leading edge of security provision within its key markets, Cryptomathic closely supports its global customer base with many multinationals as longstanding clients.

For further inforamtion, please visit: www.cryptomathic.com

PCI Pal is a suite of solutions designed to help run your customer contact operations in adherence with the Payment Card Industry Data Security Standard (PCI DSS).  PCI Pal solutions have been developed for the contact centre market by a team of contact centre specialists.  When it comes to PCI compliance, PCI Pal are pioneers in the customer contact space.
We have a long history of agent assisted and fully automated contact centre payment solutions.  From our own experience we know how difficult and costly adhering to PCI compliance can be.  Our aim is to make it as easy as possible for you to become compliant for all of your payment needs.
PCI compliance for any contact centre is a challenge, whether you have 20 staff or 2,000.  We have developed a pragmatic approach to compliance which marries risk reduction with operational efficiency.  As contact centre people, we believe strongly that the operational running of the contact centre must, above all else, be the priority.  PCI compliance should be achieved to benefit operations using a risk reduction and cost model quantifiable to payments, which are ultimately what PCI compliance is there to protect.
We are able to integrate our truly cloud based offerings through a variety of methods making the transition to compliant payments simple and low risk.  We cover a broad range of PCI environments with solutions across agent-assisted payments, automated payments, live agent outsourcing, call recording, and legacy data cleansing and protection.

TokenEx is a company founded on the principle of safeguarding our clients and their partners against the inherent risk of storing and sharing sensitive information. Focused on flexibility and custom solutions, the TokenEx Data Security Platform enables our clients to tokenise any data set across a range of environments and applications. Utilizing over twenty different token schemes, TokenEx secures the PCI and personal data of our clients to reduce their risk and meet their PCI DSS and General Data Protection Regulation (GDPR) compliance obligations, while still enabling their business processes.

Multi-channel Acceptance
Almost every organisation that sells products and services accepts payments through multiple acceptance channels—e-commerce sites, point-of-sale terminals, contact centers, and mobile apps. TokenEx has solutions to tokenise payment data for each of these acceptance channels, dramatically lowering your scope for PCI compliance and risk of sensitive data loss. 

Processor Agnostic
Utilizing TokenEx’s Transparent Gateway solution, you are free to maintain relationships with as many payment processors and gateways as you wish, while maintaining a single unified vault of payment card tokens. TokenEx enables you to exchange data with any third-party API without putting your internal systems in scope for PCI compliance.

Any Data Set
TokenEx can tokenise and secure any data set including PCI, ACH, and personal data. Most tokenisation solutions from payment processors or other tokenisation service providers only address payment information leaving you exposed to the risk associated with other data sets. TokenEx can secure all sensitive data, enabling you to address all of your compliance obligations and data security risk utilising a single platform.

Utilizing Tokenisation for Pseudonymisation
The GDPR is now in effect, with strong requirements to protect personal data  “by design and by default.“ Though the GDPR doesn’t contain detailed technical requirements for data security, it does call out the use of pseudonymisation as an appropriate mechanism for data protection. Pseudonymisation, replacing identifying or sensitive data with a pseudonym, is synonymous with tokenisation, replacing sensitive data with a token, a technology utilized by the Payment Card Industry for years to protect PCI.  

Learn more about how TokenEx can help your organisation reduce PCI scope and meet your data security obligations under the GDPR at https://tokenex.com. Follow us on Twitter and LinkedIn. Ph. +1.877.316.4544

Networking Sponsors

Aeriandi's comprehensive voice security solutions deliver complete protection from the start to the end of every call. Whether PCI DSS, MiFID II, Dodd Frank, FCA or other, compliance can be complicated and expensive to attain and maintain, which is where we can help.
Our award winning secure voice solutions are being used by large corporates with highly complex infrastructures. From call recording, archiving and PCI phone payments, to fraud detection and speech analytics, we've got you covered. Our 100% Software-as-a-Service solution delivers industry leading functionality and security, without the need to ever install anything on site.
Why Aeriandi?
We are proud to be the only hosted provider to process over £1 billion in payments per year. Delivered 100% via the cloud, means faster deployment at lower cost with less business disruption. Our cloud infrastructure means all of Aeriandi's solutions are fully scalable and flexible, which means they are easily adapted to the changing needs of your business.
  • Call Recording
    Hosted call recording made simple. A single secure portal for your fixed-line and mobile call recordings
  • PCI Phone Payments
    Provide an award winning customer experience while making compliance easy by stopping all payment card data from entering your environment
  • Call Archive
    Secure your legacy call recordings in the only VISA Europe approved solution on the market today
  • Phone Fraud Detection
    Protect your business against phone fraud throughout the entire call centre, in both live agent calls and IVR activity, improving customer experience and reducing fraud losses
  • Speech Analytics
    Analyse customer calls in real-time, as well as batch, helping to structure interactions more meaningfully, improve agent performance and ensure that FCA objectives are met  
If you would like more information please visit www.aeriandi.com or call 0845 108 0308

Blackfoot UK is an information risk, security and compliance specialist.  We help our customers to protect their information and data, but ultimately their brands, reputations and financial health.  Whilst our customers come from different industry sectors (retail, insurance, financial services), 80 per cent of our business is from personal referrals.  Why is this?
 We believe it’s because:   
  • We are specialists at what we do 
  • We provide honest, independent advice in plain English
  • We have a no-nonsense approach to consultancy
We are specialists at what we do - We’re experts in our field and we’re committed to keeping it that way.  Whether it’s data security, privacy or the latest on malware, hacking or cybercrime threats, we’ve got the specialists to help guide your business response.
We provide honest, independent advice in plain English - Blackfoot is a private company, which means we’re answerable to our customers and their interests, not external stock or stakeholders.  We’re here to do the best by your business. If you’d like our views on a particular product or solution, we’d be happy to help.  But because we’re independent, we don’t recommend, resell or receive commission on third party solutions. Data security and privacy is not always straight-forward.  Regulations evolve.  Standards overlap.  Cross-border cases are complex.  We’re well-versed with industry changes and can talk techie, but mostly we make things as simple as possible — and no simpler. 
We have a no-nonsense approach to consultancy - With us, what you see is what you get.  Our senior consultants work alongside customers throughout a project.  We help you learn from your mistakes, but as experienced consultants with proven methodologies we also help you learn from other people’s mistakes. 
Time, resource and budget are finite — and we understand this.  Our aim is to help you make the most intelligent use of your limited resources.  We certainly won’t recommend you spend £1,000 to protect £1.  In fact, we typically save our customers 70 per cent on average on their compliance budgets per year. 
This is all part of our no-nonsense approach, how we have earned our customers’ trust and built up long-term relationships over the years.  

Infradata is an award-winning independent provider of state-of-the-art cyber security and cloud networking solutions and services. We enable customers to drive innovation and value with our best-of-breed solutions. Infradata creates the foundation for a secure and thriving digital economy and society.

For more information, please visit: www.infradata.co.uk

For further information please visit: www.f5.com

IT Governance is the leading global provider of IT governance, risk management and compliance solutions, with a special focus on GDPR, data protection, ISO 27001 and cyber security.

We are committed to helping law firms protect themselves and their clients from the perpetually evolving range of cyber threats. We have helped law firms of all sizes to achieve their information security objectives through a mixture of tools, training, consultancy and penetration testing, with affordable bespoke and fixed-price solutions.

With many years’ experience in the legal sector, IT Governance can help you better understand the cyber security risks facing your firm, ensure that your defences are robust and help you through the many challenges ahead.

To find out more, visit: https://www.itgovernance.co.uk/professional-services

Rivington are a specialist Information Security Consultancy and support all aspects of Security Governance, Risk and Compliance including PCI.   

Our focus is on supporting our clients to ensure they have pragmatic, business driven security solutions and compliance that enable secure delivery and reputational protection. As trusted advisors, we help organisations to understand the risks they face relating to technology and information, designing services tailored to their specific delivery needs.

Our holistic security services span strategy and policy, architecture and design, risk, compliance and audit (PCI DSS, ISO 27001, Cyber Essentials & GDPR), security awareness and training, vulnerability management, Identity and Access Management and CISO/DPO support.

Rivington’s PCI Practice was established to provide our clients with pragmatic support at all stages of the PCI journey – whether you are looking to maintain PCI compliance, or are a merchant needing to embark on becoming compliant we have a range of scalable services to meet your needs. 
We assist merchants of all levels by providing:
•    PCI compliance strategy
•    Pre Audit Assessment
•    QSA Audit
•    ROC – Report on Compliance
•    SAQ – Self Assessment Questionnaire support
•    GDPR and PCI DSS - integrate GDPR into PCI DSS/ISO20071.
•    Quarterly Vulnerability Scanning
•    Penetration Testing
•    Remediation Support
•    Compliance advice and guidance

Why use Rivington for your PCI support?

•    Our consultants are experienced in running Information Security and PCI environments, and bring a depth of knowledge across IT and Information Security enabling them to consider PCI requirements from a wider business perspective.
•    We never view compliance as a tick box exercise, but rather a vital step towards a mature security posture. 
•    Extra value can also be gained from PCI activities by mapping them to ISMS’s such as GDPR and ISO27001 where required.

The Rivington approach means that we take time to understand your business and focus on providing best fit solutions that will enable you to operate with real assurance, making us perfectly placed to be the trusted advisor that you need.

For further information please contact us:
Web:     www.rivingtoninformationsecurity.com
Email:  info@rivingtoninformationsecurity.com 
Tel:         0203 621 1544

Eliminate costly PCI programs with Cardprotect from Semafone, a proven secure voice solution which enables contact centres to take payments over the phone without agents ever having to hear or see credit card details.
The award winning software allows a call - and the call recording - to continue as normal whilst the customer enters their credit card information into their telephone keypad. For complete security, Semafone's patented technology masks the Dual Tone Multi-Frequency (DTMF) tones from the cardholder's telephone and replaces them with a flat tone so they can't be recognised by the call centre agent or recorded on the call recording system. By shielding callers' payment card information and keeping sensitive data out of the call centre's infrastructure, Cardprotect helps to minimize the risks associated with potentially brand-damaging data breaches and fraud.
Semafone has achieved the four leading security and payment accreditations: ISO 27001:2013, PA DSS certification for its Cardprotect software, PCI DSS Level 1 Service Provider and is a Visa Level 1 Merchant Agent.
Follow us on Twitter @Semafone, google+, LinkedIn or www.semafone.com

Silver Lining is a professional IT and telecoms provider offering the very best in business IT, telecommunications, data and mobile solutions. Whether it’s business broadband, telephone systems, IT infrastructure, mobiles, or just a memorable phone number – we’re here to help.
After years of listening to customers’ communication challenges and having worked for a variety of tier-one industry partners, the founding team here at Silver Lining realised that shopping around for suppliers is a hassle. UK businesses would rather source their IT and telecommunication solutions through a single vendor that tracks down the best deals so they don’t have to. Fortunately, that’s exactly what we do. We call it “convergence”!
We’ve assembled a team of experts from across the entire communications spectrum, from handsets to hosting and everything in between. We provide show-stopping solutions through our team of Splicecom, Avaya, Cisco, Microsoft, HP, VMware, Citrix, and mobile app specialists. Our combined knowledge, innovation and expertise have led to contracts with household names.
Recently, we have been recognised for our achievement in the PCI compliance field with a prestigious Innovation of the Year award. We have worked to build a DTMF masking solution to de-scope the contact centre and bring complete security to telephone card payment services. The launch of our fourth-generation cloud platform RevolutionCloud has granted us the opportunity to build a PCI compliance solution based entirely within the cloud.
We understand every business is different ­ one size definitely doesn’t fit all. That’s why we’ll work with you to understand exactly what you need, then build and implement the solution that’s right for your business. Our unified communications services can offer you improved efficiency, reduced running costs and the flexibility to easily upgrade as your business grows. There’s no off-the-shelf solutions here ­ we think outside the box!