FlyerTalk Forums - View Single Post - Non UK call centres not GDPR compliant [?]
Thread: Non UK call centres not GDPR compliant [?]
View Single Post
Old Oct 11, 2023 | 2:29 pm
  #10  
JAXBA
 
Join Date: Mar 2009
Location: JAX
Programs: Ex-BA/AA/CP/LY staff, BA Blue, IHG Diamond, Marriott Silver, Chick-fil-A Red
Posts: 3,755
Originally Posted by GM1985
…other reasonable measures would include: not repeating the customers details back over the phone, having a data retention policy, pausing call recording when taking card details, operating a clean desk policy so that details can’t be written down, and encrypting card information as soon as it is submitted.
The methods in red were all used by BA when I worked for them 10 years ago (and we were regularly reminded of why, and what the consequences of non-compliance would be). I'd expect those methods are still used today when the touchtone method isn't being used.
JAXBA is offline  
Reply