Payment Card Industry Data Security Standard (PCI DSS) Policy
Expresses the appropriate measures the campus' will take to protect cardholder data.
|Policy Number||Policy Owner|
- 1.0 Purpose
- 2.0 Revision History
- 3.0 Units and Persons Affected
- 4.0 Policy
4.1 It is the policy of the College to allow acceptance of payment cards as a form of payment of goods and services upon written approval of the Vice President for Administration and the recommendation of the PCI DSS Compliance Committee.
4.2 The College requires all departments of the college or a college affiliated organization, contractors, or consultants that handle cardholder data on behalf of the College to do so only in compliance with PCI DSS Standard and in accordance with those related procedures approved by the PCI DSS Compliance Committee.
4.3 Such procedures shall govern the acceptance of payment cards, the handling, transmitting, processing, storage and disposal of payment card data, the training of all individuals for whom this policy applies, and other applicable areas.
- 5.0 Definitions
- 6.0 Responsibilities
- 7.0 Procedures
- 8.0 Forms
- 9.0 Appendix
- 10.0 Distribution and Training
For additional information about this policy, please contact the Policy Owner listed above.