At CCI, we have established a stringent security policy. This policy covers all aspects of our operation. We have a zero tolerance policy for violations.As a condition of employment, affiliation or association with Contract Callers, Inc., it is our expectation that all employees, vendors and independent contractors be aware of and follow all organization-wide policies as well as those that apply directly to their functions. CCI’s Privacy Policy details our commitment to our client’s debtors’ rights and the confidentiality of their information.
- Administrative Safeguards: Includes assigning security responsibility, risk analysis and assessment, appropriate access to data, security awareness training, security incident processes, contingency planning, and periodic review
- Physical Safeguards: Includes restricting access to applications that process/store protested information and the facilities housing those applications, facilities contingency plans, facilities security plans, documentation of facilities maintenance, workstation security, control of hardware on which information is stored, disposal of data and hardware; procedures for hardware reuse, equipment monitoring, and development of a back-up plan.
- Technical Safeguards: Includes appropriate data security, appropriate access to data; unique operator ids, emergency access procedures, automatic logoff for inactivity; encryption of electronic protected information, audit controls/trails, identity verification, and secure transmission of data.
Safeguards on Client Supplied Information
- All network access points are fire wall protected with enterprise class hardware that includes intrusion detection
- All access to the network and data transmissions occur over secure VPN connections
- Unique ID’s and user passwords required by both the server and Application software
- Complete backups performed each night and are retained in an offsite and secure location
- Opening Mail-all done in a secure area by restricted staff. Checks are separated from other correspondence, totaled and retained in accounting. Correspondence is distributed according to established standards
- Preparation of payments for processing-Payments are identified, totaled and applied. No checks ever leave the secure accounting area.
- Change history maintained down to the debtor level
- Collection data and application software are maintained on an isolated network
