Learn, Do, Secure
The Payment Card Industry Security Standards Council developed a set of standards called Payment Card Industry Data Security Standards (PCI-DSS) to protect payment card information. Merchants and organizations that collect, process, store, or transmit credit card information are required to comply with the security standards.
The University is committed to protecting the privacy of payment card information (cardholder information) it processes to comply with the PCI DSS by establishing a policy and a procedure to standardize the process for handling payment card information from the time of payment authorization to completion and ensure that the appropriate controls are in place to safeguard this information against any data breach.
To support the employees who handle cardholder information and operate card payment systems in complying with the PCI DSS requirements, the University has partnered with KnowBe4 to provide training on PCI DSS. This training is mandatory.
All employees who handle cardholder information and operate card payment systems play an important role and have the responsibility to protect cardholder information and card payment systems they use. To properly carry out this responsibility, employees are required to:
- Complete the PCI DSS Training. The course is titled "PCI Simplified" and is located under the Library menu
- Read and comply with the University’s PCI DSS Policy,
- Report any incident relating to mishandling, misuse, or any other breach of cardholder information or card payment devices immediately to firstname.lastname@example.org.
For questions relating to the PCI DSS training, please contact email@example.com.