Electronic Payment Security | Merchant Management

The secure transaction of credit card payments is governed by the Payment Card Industry Data Security Standards (PCI DSS). Compliance assessment and validation assistance for Penn State merchants is provided by the ITS Security Operations and Services compliance team. Maintaining compliance is every merchant's responsibility. For more information, please reference the Compliance references available on the Security Operations and Services site.

Merchants must keep current with the PCI DSS to ensure that you are meeting all 12 main requirements and sub requirements as they apply to the size, scope, and complexity of your operation. Please respond in a timely manner to request for action from Merchant Management or SOS. You may also review information made available by the card brands. Visa, MasterCard, and Discover all offer merchant advice via their web publications. Please keep in mind that all services may not be available in our University portfolio of negotiated services. All requests for services must be directed through your Financial Officer to Merchant Management.

Electronic Payment Security encompasses more than just credit cards accepted by Penn State merchants. Your actions as a consumer can have an effect on the security and stability of our nation's varied electronic payment systems. The Federal Trade Commission (FTC), the nation's consumer protection agency, provides information and awareness publications via the web or downloadable PDF documents. As merchants, we should be aware of these resources and the potential fraud sources they describe:

The Treasury Institute for Higher Education is a recognized provider of current content on payment related topics, seminars, and a PCI Blog.

This site maintained by: Mike Leach