The Payment Card Industry has issued a set of standards for which all organizations that store, process, or transmit credit card data must comply. These new standards are called Payment Card Industry Data Security Standards or PCI DSS. These standards have placed additional responsibilities on your department in connection with your acceptance of payment cards. Without compliance, the card industry may revoke merchant numbers and/or fine the university.
Complying with PCI DSS is a requirement, not an option.
Indiana University must comply in order to be approved and continue to accept payment cards. We recommend that you click on the following link to learn more about PCI DSS and the requirements your department must put in place in order to be in compliance.
PCI DSS Memo February 07
If you have any questions or feel you may have some compliance issues, please do not hesitate to contact Ruth Harpool via phone (812) 855-3910 or email
. Ruth will be happy to meet with you and address any concerns you may have.