Payment Card Industry - Data Security Standard (PCI-DSS)

The Payment Card Industry - Data Security Standard (PCI-DSS) is a global security standard that provides the security requirements defined by the Payment Card Industry Security Standards Council and the 5 major Payment Card Brands.  It is required for all credit card transactions and is enforced via the Merchant Agreement terms. 

  • PCI DSS stands for Payment Card Industry Data Security Standard.
  • The standard is a set of requirements which ensure technical and procedural security in accepting, transmitting and storing payment Card Holder Data (CHD).
  • Payment cards include credit, debit, gift, prepaid, etc.  For purposes of complying to the standard, payment cards do not include UNH P-cards or Cat's Cache.
  • The standard is issued and maintained by the PCI Security Standards Council (PCI SSC) and applies to all entities involved in payment card processing – including merchants, processors, acquirers, issuers, and service providers, as well as all other entities that store, process or transmit CHD.  Complete PCI DSS information can be found at the  PCI SSC website .
  • USNH has contracted with  CampusGuard , a Qualified Security Assessor, to assist UNH in achieving compliance to the standard.

PCI-DSS Steering Committee

Christina Rodriguez
Commerce & PCI Compliance Specialist

PCI-DSS Compliance Partner