![]() ![]() Fields can be modified to best fit your operation.Īll of the above methods MUST be reviewed and approved by University Compliance & Ethics. Creating a simple payment portal with specific fields that you require, ie., invoice numbers, customer numbers, etc. After authorization, the customer is redirected back to your site or any URL of your choosing.Ģ. Some of the pertinent information is passed on to Nelnet as well. At that point, the customer is redirected to the Nelnet Commerce Manager site to make the payment. Businesses that use noncompliant credit card processing equipment are at high risk for a data security breach. Integrating the payment page with an approved web shopping cart where the customer begins on your University site, selects the options for purchase, and when ready clicks on a button to make a payment. Terminal Compliance If your credit card processing terminal is out of regulatory compliance, you’re putting your customer information and possibly your entire business in jeopardy. There are two options for accepting credit card payments through Nelnet:ġ. One of the pre-approved systems for online payment processing is Nelnet/Quikpay. Pre-approved online payment portals Online Payment Card Processing Credit card terminals or other devices provided by pre-approved online payment processors/third-party vendors which may be used standalone or as part of an integrated system for accepting payments onlineĬ. No email payments are allowed anywhere on a University campus.ī. The credit card terminal can be used to take card present, face-to-face payments as well as card not present, telephone payments. Credit card terminals provided by the approved UNT System merchant bank. General Informationĭepartments are generally able to accept credit cards using the following three methods:Ī. Reduction of risk is crucial to ensuring that systems and procedures align with university policy (UNT Credit Card Policy) while adhering to the global PCI Security Standards Council rules. This is accomplished by coordinating a close relationship between the University campuses and the merchant banks. Actual customer data breaches can, of course, be even more devastating.Ī key concept when it comes to PCI DSS is a merchant’s “PCI scope” – the extent to which a merchant actually interacts with the customer’s payment data, and the responsibility the merchant therefore assumes for safeguarding it according to the PCI requirements.Īs a PCI Level 1-certified payment processor, PayU offers merchants a variety of ways to reduce PCI scope, limit responsibility and risk, and remain complaint.This unit oversees the Payment Card Industry (PCI) Compliance program & coordinates every aspect of credit card acceptance at all UNT System campuses. Depending on the payment processor, fines can range from $5,000 to over $100,000 USD per month based on the size of the merchant and the extent of non-compliance. When merchants sign a contract with a payment processor, they agree to pay fines if they do not comply with PCI DSS. It applies to all organizations that handle credit card data, including online merchants.Īlthough most business subject to PCI compliance are only required to self-report, the costs of PCI failures can be crippling. The Payment Card Industry Security Standards Council (PCI SSC) maintains strict security requirements to safeguard credit or debit payment cardholder data. Operations when making any changes to credit/debit card processing. PCI DSS requirements must be fulfilled by any party responsible for storing, processing, or transmitting an individual’s credit card data. Credit Cards and Payment Card Industry (PCI) Compliance All Carleton University. Launched in 2006 by an alliance of major credit card companies, PCI DSS encompasses 12 key requirements as well as more than 400 sub-requirements and test procedures.īeing PCI-compliant requires not just meeting these requirements but continually identifying, documenting, and (if necessary) remediating business-level systems and processes that involve the handing of user credit card data. The Payment Card Industry Data Security Standard, also known as PCI DSS, is a global standard for securely accepting and processing credit card payments. ![]()
0 Comments
Leave a Reply. |