Payment Card Industry Data Security Standards (PCI-DSS) Training

Slides:

Advertisements

Similar presentations

Surviving the PCI Self -Assessment James Placer, CISSP West Michigan Cisco Users Group Leadership Board.

Advertisements

Government Prepaid Card

What Are the Functions of ATM Machines?

October 28, Who? What? When? Why? Comply with PCI compliance policies set forth by industry Create internal policies and procedures to protect.

What we all need to know. Approval Date: April 30, 2012 Approved by: President's Council.

National Bank of Dominica Ltd Merchant Seminar Facilitator: Janiere Frank Fraud & Compliance Analyst June 16, 2011.

Merchant Card Processing (PCI Compliance for Supervisors) Sponsored by UW-Platteville’s Financial Services and The Office of Information Security.

Complying With Payment Card Industry Data Security Standards (PCI DSS)

2014 PCI DSS Meeting OSU Business Affairs Process Improvement Team (PIT) Robin Whitlock & Dan Hough 10/28/2014.

JEFF WILLIAMS INFORMATION SECURITY OFFICER CALIFORNIA STATE UNIVERSITY, SACRAMENTO Payment Card Industry Data Security Standard (PCI DSS) Compliance.

Accepting Credit Cards and PCI Compliance

Contactless Payment. © Family Economics & Financial Education – January 2007 –– Financial Institution Unit – Contactless Payment - 2 Funded by a grant.

C USTOMER CREDIT CARD AND DEBIT CARD SECURITY (PCI – DSS COMPLIANCE) What is PCI – DSS Compliance and Who needs to do this?

Payment Card PCI DSS Compliance SAQ-D Training Accounts Receivable Services, Controller’s Office 7/1/2012.

Credit / Debit Card Electronic Payments Industry Update on Convenience Fees, Utility Program and More! Presented by: Presented by: Michael Hodge, Regional.

Presented by : Vivian Eberhardt, Supervisor Cash and Credit Operations

1 Goal is protection of sensitive data New Rice policy calls for protection of sensitive personally identifying information Confidential information includes:

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance Commonwealth of Massachusetts Office of the State Comptroller March 2007.

DATA SECURITY Social Security Numbers, Credit Card Numbers, Bank Account Numbers, Personal Health Information, Student and/or Staff Personal Information,

Your staff spends too much of their day answering the phone and listening and responding to voic s. Industry Challenges In just 3 years, mail- in.

PCI and how it affects College Stores… ROBIN MAYO | PCIP ECOMMERCE MANAGER EAST CAROLINA UNIVERISTY.

BPOINT for Schools Information Guide for Parents.

Youngstown State University PCI Training enter or left click on mouse to advance slides.

Protecting Sensitive Information PA Turnpike Commission.

BZUPAGES.COM Electronic Payment Systems Most of the electronic payment systems on internet use cryptography in one way or the other to ensure confidentiality.

Secure Electronic Transaction (SET)

Payment Card PCI DSS Compliance SAQ-A Training Accounts Receivable Services, Controller’s Office 7/1/2012.

Viterbo University Credit Card Training Updated

Introduction to Payment Card Industry Data Security Standard

Introduction To Plastic Card Industry (PCI) Data Security Standards (DSS) April 28,2012 Cathy Pettis, SVP ICUL Service Corporation.

Cash Handling and Funds Collection Policies and Procedures.

DO NOW:  Take packet:  Review the bank statement on page 3 of the packet.  In your notebook: What items does a bank statement include?

Payment Card Acceptance Security Awareness Interactive Quiz.

Payment Card PCI DSS Compliance SAQ-B Training Accounts Receivable Services, Controller’s Office 7/1/2012.

ThankQ Solutions Pty Ltd Tech Forum 2013 PCI Compliance.

e-Learning Module Credit/Debit Payment Card Acceptance and Security

The Payment Card Industry (PCI) Data Security Standard (DSS) was developed to encourage and enhance cardholder data security and facilitate the broad.

Langara College PCI Awareness Training

Fall  Comply with PCI compliance policies set forth by industry  Create internal policies and procedures to protect cardholder data  Inform and.

1 10/2013. This training is provided for cashiers, phone-a-thon participants, and fiscal personnel involved in payment card activities that are never.

The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle branded credit.

Tereza Bayerová Dagmar Toscherová.  Is a small plastic card (size 85,6 x 54 mm) that can be used by a cardholder and accepted by a merchant to make a.

WHAT NEW, WHAT NEXT IN PAYMENT PROCESSING. EMV WHAT IS EMV? 3  An acronym created by Europay ®, MasterCard ® and Visa ®  The global standard for the.

Merchant Services for Website Paycron. About Paycon Paycron is purposive in meeting immediate solutions in crafting merchant account services and credit.

Fraud Procedures Tips for Mitigation Fraud Case Process.

Properly Safeguarding Personally Identifiable Information (PII) Ticket Program Manager (TPM) Social Security’s Ticket to Work Program.

Introduction to PCI DSS

Payment Card Industry (PCI) Rules and Standards

Payment Card Industry (PCI) Rules and Standards

Burton Group Take 5! The PCI Half-Dozen: 6 Recommendations for PCI Compliance Diana Kelley, VP & Service Director March,

PCI-DSS Security Awareness

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance

Payment card industry data security standards

Credit Card Training Updated

Where Do You Have Cardholder Data?

2013 PCI:DSS Meeting OSU Business Affairs

Internet Payment.

UGA Extension Credit Card Processing Training

Switchover from Teledeposit to VIRTUAL TERMINAL Moneris Solutions

Evaluating the security of available payment methods

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance

PCI Compliance : Whys and wherefores

Credit Card Training Updated

OFFICE OF STUDENT AND DEPARTMENTAL ACCOUNT SERVICES

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance

Authorization for Credit Card Use

Declining Balance Card Request

UD PCI GUIDELINES A guide for compliance with PCI DSS and the University of Delaware Payment Card Program ALWAYS Process payments immediately using a solution.

Online Payment Options for Government

Credit Card Training Updated

Presentation transcript:

Payment Card Industry Data Security Standards (PCI-DSS) Training

What is PCI-DSS? PCI-DSS is broken down into 12 requirements and helps to secure credit/debit card information. PCI-DSS applies to all entities that store, process, and/or transmit cardholder data.

You need to focus on Requirement 3. PCI Requirements The majority of these requirements are handled by ITS, Office of Cashiering, & department managers. You need to focus on Requirement 3.

Requirement 3: Protecting Cardholder Information What is Cardholder Information? Cardholder data refers to any information on a customer’s payment card: Primary Account Number (PAN) – number printed or embossed on the front of the card Expiration date of the card Cardholder name Any magnetic stripes embedded on the back of the card Data chips within the card Security code on the card

Accepting Credit/Debit Cards In order to process a card, we need the following information: Cardholder’s Name 16 digit card number (Visa, MasterCard, or Discover) Expiration Date Telephone number Note: We do not need the security code to process a card. Please do not ask for or store this information. For security, all cardholder information should be processed in the cashiering system immediately.

Accepting Credit/Debit Card Don’ts

Accepting Credit/Debit Card Don’ts Card numbers should never be faxed or emailed because they travel through a public network and transmissions are not encrypted. Card numbers should never be unsecured for any period of time. If payments are not processed immediately, they should be locked in a secure location with limited access. Please do not leave this information lying around on desks or printers. Card numbers should never be saved on PCs, laptops, smart phones, etc. Card numbers should never be mailed from one department to another. Please hand deliver this information to the Office of Cashiering. If you must store information that contains card numbers, the numbers must be blacked out or deleted (if using an electronic source) before storing. Cashiering accounts should never be shared. Only process payments on your account.

Consequences for not being PCI Compliant The entire university will lose the ability to accept credit and debit cards as a form of payment. It is very important that we keep cardholder information secure.