Home / PCI Compliance

PCI Central

The Payment Card Industry (PCI) Data Security Standard (DSS) and supporting documents represent a common set of industry tools and measurements to help ensure the safe handling of sensitive information. The standard provides an actionable framework for developing a robust account data security process - including preventing, detecting and reacting to security incidents.

To reduce the risk of compromise and mitigate its impacts if it does occur, it is important that all entities storing, processing, or transmitting cardholder data be compliant.

Requirements & Compliance

	Memo on campus PCI compliance
	Standard contract language for contracts involving credit card payments
	Payment Card Industry (PCI) Standards
	PCI Audit Guide -- an in-depth look at what to do if a security breach takes place
	UCOP Information Security Policy
	Note: Please contact the Terminal Support Team directly to very whether your payment application is on the Prohibited Applications List.

2008 Self-Assessment Information

Instructions and guidelines

Annual Compliance Survey

	SAQ A (Third-Party Merchants)
	SAQ B (Terminal Merchants)

Trustwave Contact Information:
612 W. Main St. Suite 200
Madison, WI 53703
800.363.1621
support@trustwave.com
http://www.trustwave.com

According to payment brand rules, all merchants and their service providers are required to comply with the PCI Data Security Standard in its entirety. The chart below is an overview of the PCI expectations. All Self-Assessment Questionnaires (SAQ) must be completed before May 31 with Executive Officer sign-off, and submitted to Student Financial Services.

Questions about the requirements expected of your area should be directed to either Marsha Lovell or Maggie Pitterson.