Cloud Security & Compliance

TCN has partnered with Google Cloud (GCP) to deliver its award-winning cloud-based platform through seven data centers located around the world. TCN’s Operator is fully containerized and encrypted. Google protects all information, identities, applications and devices using the same built-in protections and global network that they use themselves. 

Yes, TCN has a SOC 2 report attesting to our commitment to meeting rigorous Trust Services Criteria (TSC) established by the American Institute of Certified Public Accountants (AICPA). TCN’s SOC 2 report is available under NDA. To request a copy of TCN’s SOC 2 audit report, please contact your account manager, email us at service@tcn.com or call 866-745-1900.

Yes. TCN is audited annually by a third-party Qualified Security Assessor (QSA). TCN protects and maintains cardholder data through encryption, truncation, and masking; and is always encrypted on transmission.

Yes. International Organization for Standardization (ISO) 27001 is an international standard for managing information security. To request a copy of TCN’s ISO 27001 certificate, please contact your account manager, email us at service@tcn.com or call 866-745-1900.

Yes. TCN performs an annual third-party Health Insurance Portability & Accountability Act (HIPAA) compliance assessment. HIPAA is a series of regulatory standards that outline the lawful use and disclosure of protected health information (PHI). HIPAA compliance is regulated by the Department of Health and Human Services (HHS) and enforced by the Office for Civil Rights (OCR).

Yes, TCN is currently GDPR compliant and follows strict data residency standards. All data that pertains to the EU or UK stays in the designated region. As a personal data processor for many of our customers, you can resolve requests by logging into TCN Operator and processing any necessary action.

Typical actions taken under GDPR:

• Delete Contact: “Right to be forgotten”
• Delete Call Recordings
• Access to Recordings
• Audit Log: “Right of Access”
• Exporting Your Customer Data: “Right of Portability”
• Remove Data From Integrations

Our goal is to provide our customers with secure and reliable services.

The OFCOM regulations have been around for a long time and have undergone numerous iterations and changes. The most relevant rules and regulations that TCN Operator handles are the following:

• Drop rate target
• Rotating CLI
• Two-second Rule
• Fifteen-second Minimum Ring Time
• 72-hour Rule
• Tracking Opt-outs and Opt-ins
• Display Numbers and Calling Back
• Hang-up Messages
• Maximum attempts to a user
• Answer machine detection

By default, all data is encrypted at rest and in transit. Additionally, call recording data is encrypted at the file level.

Yes. Within TCN’s Operator admin portal, you can set permissions or restrictions based on users, locations, and even IP addresses. This extra layer of security makes sure your account is secure and only accessible to individuals and locations you choose.

Yes. TCN’s Call Recording Storage ensures that every call is recorded, safe, and accessible for future use. For more information on data backups and storage, please contact your account manager, email us at service@tcn.com or call 866-745-1900.

TCN uses cookies, which are necessary to the functioning of the web experience and are required to achieve the purposes outlined in TCN’s Privacy Policy.

TCN’s commitment to security and compliance is its priority and is an integral part of our compliance and certification auditing. TCN performs regular vulnerability tests through internal and third-party auditors as part of our regular security and compliance activities. In addition, all TCN staff undergo yearly compliance and security awareness training.