Learn, Do, Secure
The Payment Card Industry (PCI) Security Standards Council has developed a set of security standards called Payment Card Information Data Security Standards (PCI-DSS) to protect payment card information. These standards govern all merchants and organizations that collect, process, store, or transmit credit card information. To learn more about PCI DSS, visit their website.
The University is committed to protecting the privacy of payment card information (cardholder information) it processes to comply with the PCI DSS by establishing a policy and a procedure to standardize the process for handling payment card information from the time of payment authorization to completion and ensure that the appropriate controls are in place to safeguard this information against any data breach.
To ensure that all employees who handle cardholder information and operate card payment systems comply with PCI DSS requirements, the University has partnered with KnowBe4 to provide training on PCI DSS. This training is mandatory.
All employees who handle cardholder information and operate card payment systems play an important role and have the responsibility to keep cardholder information and card payment systems they use secure. To properly carry out this responsibility, employees are required to:
- Complete the PCI DSS Training. The course is titled, "PCI Simplified" and is located under the Library menu,
- Read and comply with the University’s PCI DSS Policy,
- Report any incident relating to cardholder information or card payment devices immediately to firstname.lastname@example.org.
For questions relating to the PCI DSS training, please contact email@example.com.