outline_person_white_24dp

LOG IN

CONTACT US

CONTACT US

SUBSCRIBE TO NEWSLETTER

GET WHITE PAPER

GET eBOOK

GET STARTED

How to use CAPTCHA in a conversational interface?
The Spixii Marketing Team | Oct 3, 2023 11:44:41 AM

In today's digital world, robust authentication mechanisms are an absolute necessity. With the increase in cybercrime, it is essential to protect personal and sensitive information. As stated in the last OWASP 2023 Top 10 Vulnerabilities report, authentication mechanisms are the first line of defence against unauthorized access to online accounts. Furthermore, the new ISO 27001:2022 certification standard dedicates specific controls and clauses to ensure secure authentication procedures.

A robust authentication mechanism is the key to unlocking a great number of self-services. For example, making financial operations, changing insurance policy details or consulting medical test results are operations that individuals can perform online if they pass a strong authentication screening.

However, there are situations where robust authentication mechanisms are not possible. This is the case of quote&buy journeys, where customers are not registered and identified apriori, but also when agents and advisers are about to request some actions on behalf of their clients.

In such cases, the list of self-serve services experiments a physiological reduction because some critical actions won’t be accessible to an unidentified user. Reducing the risk of robots and Denial of Services attacks is also important by using additional security measures like CAPTCHA codes and other techniques.

CAPTCHAs, in particular, are a popular security measure used to prevent automated attacks by requiring users to prove they are human and they nicely fit conversational interfaces. A handy-style text over a noisy background is generated and displayed to the user as an image. Automated Optical Character Recognition (OCR) detectors won’t be able to easily guess the keyword by reading the image.

The main three requirements for a good CAPTCHA code generator are:

How to ensure compliance in chatbot conversations
All Posts

How to ensure compliance in chatbot conversations

4 min read

Insurance is one of the most heavily regulated industries in the world. And one of the most critical aspects of this industry is compliance.

Presently, conversational process automation (CPA) is beginning to be adopted in the market by top-tier companies. But, how are the conversations carried out on these technologies compliant and abiding by regulations?

To begin with, though...

 

What does it mean to be compliant?

In the insurance industry, compliance is implemented as a means for prevention, safety, and surveillance. As per a report by Accenture, the specific focus is on “transparency, correctness of behavior towards customers, contractual information, and contracts execution.”

When it comes to Conversational Process Automation, the challenge is to ensure that every chatbot conversation is compliant with the insurance company’s policies, that the chatbot will execute the process in the way it has been designed, and that the flow of every conversation is under control and can be tracked.

In other words, the role of CPA is to empower compliance departments of insurance companies to be comfortable that their checklist is complete. Compliance departments often give the go/no-go for technological solutions to go live.

The chatbots created need to fit into insurance compliance requirements as if they’d always been there.

 

How automated conversations can remain complaint

Ensuring the compliance of automated conversations happening through chatbots is simple but not easy. Once you define the aim of the conversational process, building on top of a solid and compliant logic is like ascending from one stair to the next. Here are the fundamentals you need to keep in mind (and keep ensuring during the time you deploy CPAs):

 

  1. Conversations must be auditable

    Automated conversations are personal which means that individuals interacting with chatbots will create almost unique conversations. It poses a challenge to ensure that all conversations are auditable. Thus, it is necessary for a chatbot’s conversational logic to be examined and reviewed every time before it is published. Validating the logic ensures that the conversations are created in a compliant way and do not divert towards unapproved directions. Regardless of the level of automation, a human needs to be a part of the process at one point at least.

    Indeed, this audit can be performed through the execution of lean processes and with the aid of specific software designed to keep track of conversation versions and test all the possible scenarios of conversations.

  2. Design smart (and ethical) data management strategies

    Performing checks and review of the conversation between the chatbot and users is crucial for informing and validating that the chatbot is working as expected. However, the data used to do such checks needs to be managed carefully. As expected, there are different strategies to ensure secure data management. 

    The starting point is to collect and store the bare minimum amount of customer data required to perform the goal assigned to the chatbot. This is ethical and in alignment with GDPR. In addition, all the collected information must be secure, encrypted, and not identifiable to any individual or entity.

  3. Provide a secure communication channel

    This follows from the previous point but is worth mentioning alone again. In an exploratory interview study presented at the Fifth International Conference on Internet Science, security and privacy were reported as crucial factors for customers in trusting a chatbot. Customers wanted the chatbot to clarify what it was storing, how the stored information was being used, and store as little personal data as possible.

    Thus, the interaction between the customer and the chatbot must be safe, secure, and leverage encrypted communication.

  4. Execute extensive testing before going to production
    Testing is a critical and necessary activity for ensuring the quality of any digital solution, chatbots included. A well-designed but bug-riddled service is as good as non-existent. There are some risks that simply cannot be taken at this stage before going live. Hence, it is always better to prepare for the worst-case scenarios, especially those relating to compliance, and test a service thoroughly before release.

Alberto Pasqualotto, co-founder and CTO at Spixii says:

“The process to buy an insurance product or notify a new claim can be stressful, time-consuming and confusing, and so it is paramount that tools which connect insurers with their customers are resilient and capable of delivering immediacy, transparent communication, and professionalism. In a world that is becoming increasingly virtual, the role of CPAs and chatbots is critical for the insurance industry.”

These increasingly critical technologies, however, need to be watertight in security and compliance.

 

The start of something new

Iosif Itkin, co-founder, and CEO of Exactpro, said:

“Insurance is a highly regulated sector, and it is imperative that companies constantly look to enhance the resilience of their technologies in order to stay both competitive and compliant.”

Because of this commonality in beliefs, Spixii has recently partnered with Exactpro to create more peace of mind for insurance and financial institutions. This has been done by adding a further quality assurance layer to the chatbots built on the Spixii platform. It is truly an exciting addition that has leveled up the quality of Spixii CPA.

You can read more about the partnership here and then inquire about how they can be uniquely integrated into your business.
Recent Posts

How to use CAPTCHA in a conversational interface?

In today's digital world, robust authentication mechanisms are an absolute necessity. With the increase in cybercrime, it is essential to protect pers...

Read more

The sweet spot between smooth operations and customer experience

3 min read Gone are the days of interactions where customers and businesses would have to come face-to-face for a transaction. Thanks to the mighty po...

Read more

How can customer service operations save money?

5 min read Efficient and effective customer service operations can significantly impact a company's finances. By providing customers with prompt and a...

Read more

What are the 3 steps to reduce the stress experienced by customer service consultants?

5 min read As a customer service consultant, many factors can cause stress and anxiety in the workplace. One of the biggest causes of stress is dealin...

Read more
2024 Spixii WP - How to deliver expert customer service immediately, consistently and around the clock

Download your FREE Spixii White Paper copy

Discover how to deliver expert customer service immediately, consistently and around the clock:
  • Key KPIs that make or break
  • Making compliance teams happy
  • De-risking the transition to automation

Platform

High-value Processes

Resources

Company
What is Spixii?
Spixii is a Conversational Process Automation platform enabling businesses to offer 24/7 self-service to their customers. Combining expert chatbots, business process modelling and integration to core systems, businesses benefit from fewer inbound calls and improved productivity and resilience of their operations. Spixii is recognised among the “Cool Vendors in Insurance” by Gartner and is certified ISO 27 001:2022.
Copyright Spixii® 2016–2024 All rights reserved.