Institutional Compliance


The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle branded credit cards.  The PCI Standard is mandated by the card brands and administered by the Payment Card Industry Security Standards Council. The standard was created to increase controls around cardholder data to reduce credit card fraud. Validation of compliance is performed annually, either by an external Qualified Security Assessor (QSA) or by a firm specific Internal Security Assessor (ISA) that creates a Report on Compliance for organizations handling large volumes of transactions, or by Self-Assessment Questionnaire (SAQ) for companies handling smaller volumes.

Payment Card Acceptance
Merchant Set-Up Form
Merchant Contacts
Accepting Payment Cards
Online Payment Card Processing

PCI Compliance
Merchant Managers and Security Liaisons
Merchant Managers Report
PCI Compliance Policy
PCI Requirements
PCI Agreement with Third-Party Vendors
PCI LawRoom Training (link to course)
PCI Training

Terminal Disposal
Find an Approved PIN Transaction Security Device
Terminal Inspection Form
Terminal Options
EMV Chip Card Guide

Last Updated: 1/3/23