Financial Services

Financial Services

site header

Payment Card Industry Data Security Standard (PCI DSS)

The Payment Card Industry Data Security Standard (PCI DSS) is a set of mandatory requirements, set by the banking and credit card industry, designed to ensure that all companies that process, store, or transmit credit card information maintain a secure environment. As such, Queen’s University must take steps to ensure that all transactions being processed through associated Merchant Accounts meet this Standard, and that all cardholder data is handled appropriately. Cardholder data is any personally identifiable data associated with a cardholder, including information such as the Personal Account Number (PAN), cardholder name, expiration date, and/or the Card Verification Value (CVV). All credit card processing and handling procedures at Queen’s University must comply with both the Policy and Procedure for the Acceptance of Credit and Debit Cards and the PCI DSS standard.

Merchant Account Administration

Debit and/or Credit Card Facility – General Accounting (Setting up a Merchant Account)
Debit and/or Credit Card Facility – General Accounting (Change/Close a Merchant Account)
Debit and/or Credit Card Facility Guidance (pdf, 731 kB)
One Time Events - Procedure for Accepting Credit Card Payments (pdf, 712 kB)

Policies and Procedures

Policy for the Acceptance of Credit and Debit Cards
Procedures for the Acceptance of Credit and Debit Cards  - includes Certificate of Credit Card Security and Ethics Agreement

Resources

Contact the PCI Coordinator in Financial Services
Frequently Asked Questions (pdf, 133 kB) 
PCI DSS Awareness Training (pdf, 1.09 MB)
PCI Accessing onQ (pdf, 1.42 MB)
PIN Pad Security Training and Procedures (pdf, 837 kB)
PIN Pad Inspection Log (pdf, 111 kB)
PIN Pad Inspection Log.xlsx (Excel)

 

Other Useful Links

Electronic Information Security Policy Framework – Queen’s University

PCI DSS Glossary of Terms, Abbreviations, and Acronyms - Version 3.2

PCI DSS Quick Reference Guide – PCI Security Standards Council

Skimming Prevention - Best Practices for Merchants