Encryption and Rules and regulations for call recording

Encryption

Puzzel can deliver your call recording files (and a belonging XML metadata files) to Puzzel's FTP server (mp3/wav) so that you can fetch the files and store them in you own system. If required, Puzzel can encrypt your call recording files immediately after a recording is done, using the Puzzel customer's X.509 Public Key or PGP Public Key. The public key (to be used to encrypt) must be sent to Puzzel, that stores it in the Admin Portal (on page Users - Products under Recording storage where only Puzzel has access). The recording files can be decrypted only if you have the belonging Private Key.

If recordings are encrypted with your public PGP/X.509 key and you want to have the recording files in the Puzzel Archive as well, encrypted MP3 recording files can be delivered to the Archive. Encrypted recording files can be downloaded from the Archive, but not played in the Archive. If configured, we can deliver encrypted recording files to Puzzel's FTP server and not encrypted files to the Archive, so that they can be played in the Archive. The relevant property, 'Only encrypt recordings to FTP', must be turned on by Puzzel.

If Puzzel delivers encrypted call recording files to FTP, the belonging XML metadata file can also be encrypted.  

When Puzzel uses your X.509 or PGP Public Key, Puzzel does a one-way encryption based on this public key. Puzzel is not able to decrypt an encrypted file. The strength of the cryptography is based on the public key. See reference:

https://en.wikipedia.org/wiki/Public-key_cryptography

Rules and regulations for call recording

The Puzzel customer should apply to the rules and regulations for call recording in his country. Relevant questions are:

  • Which calls can be recorded, and which calls must be recorded?
  • How to inform callers about recording?
    • Should the caller be able to deny that a call is being recorded?
    • Do I need the callers acceptance before recording?
    • Can I listen to recordings for QA/training purposes because I have to record calls to document what's being said, or should some recordings be 'restricted'? Ref Restricted and Sensitive call recordings
  • How to inform (and get acceptance from) agents about recording?
    (other than to show in the Puzzel Agent Application that a recording is ongoing)
  • Who should have access to what recordings in the Puzzel Archive?
  • How long can and must I save the call recording files?
  • What if one of my customers requires to get a copy of or listen to one of their call recordings (ref Secure share recordings), or requires its deletion?
Back to Top

Published

Last updated

8
-2

Recent documents

Popular documents