The Payment Card Industry (PCI) Data Security Standards (DSS) is a set of 200-plus security controls to protect credit card data. The PCI-DSS have been adopted by the major credit cards brands and is required by any organization that stores, processes, or transmits cardholder data.
USC PCI Education
USC faculty, staff and students who handle cardholder data must take USC’s online PCI education. Please contact the USC Treasury Services office at firstname.lastname@example.org for more information or to enroll in the education program.
USC PCI Policy
See USC’s PCI policy for information regarding Payment Card Industry Data Security Standards.
Procurement Services (formerly Purchasing Services) is responsible for negotiating and executing the Security Addendum with third party vendors that will have access to or otherwise generate, store and/or transmit credit card data in connection with services provided to the university. Please contact Procurement Services at (213) 740-2281 or via email at email@example.com to initiate the process.
Institutions must comply with PCI DSS version 3.0 by no later than January 1, 2015.
PCI Working Group
USC established a working group to implement the PCI standards across campuses. If you are not a member of this working group and would like to participate, please contact USC Treasury Services at firstname.lastname@example.org.
USC Treasury Services is responsible for implementation and oversight of the PCI Policy and general compliance with the PCI Standard. Please contact them at (213) 821-6560 or via email at email@example.com for further information.