LiveEngage 2.0 – Product Training - LivePerson

Keep our environment clean of credit cards
As part of LivePerson's efforts to comply with the Payment and
Industry Data Security Standards (PCI DSS), LivePerson
uses three main methods to keep our environment clean of
credit card numbers:
Blocking
Masking
Encrypting

How do we block credit cards at the chat
window and ticketing? By blocking credit
card patterns.
Visitor
CC#: 4580 …
Blocking credit card patterns ensures that
credit card numbers will not be written
into the chat window (including surveys
but not ticketing).
This means no credit card is displayed in
the agent chat window and if the visitor
does enter a credit card number in the
chat, the digits are replaced immediately
by “*”.
Agent
CC#: ****…

During a chat session, an agent and
a visitor view a real credit card
number(the application server receives
input). Only at the end of session is the
credit card number written and masked
into the DB.
Visitor
Agent
CC#: 4580 …
CC#: 4580…
There are two differences with encryption
credit card:
1. There is no method to decrypt the
credit card into the real CC
number.
2. The feature can be activated by
LivePerson Administrators at the
OEM/Site level.
CC # is saved
masked
to DB
LP DB

The same as the “masking”, during the
chat session, the agent and the visitor
view the real credit card number (the
application server receives input).
Only at the end of session, the credit
card number is written encrypted into
the database.
There are two differences between
encrypting and masking:
1. There is a method to decrypt
the credit card into the real
credit card number.
2. The feature is set by default for
all sites, and there is no way to
disable it by the customer.
Visitor
Agent
CC # is saved
encrypted
to DB
Support team
decrypts the CC #
CC#: 4580 …
CC#: 4580…
LP DB