Payment Card Industry Data Security Standards (PCI-DSS). If during the course of normal business operations the Subrecipient accepts electronic payments by payment card, including but not limited to debit cards and/or credit cards branded by VISA, MasterCard, Discover and/or American Express, then the Subrecipient shall at all times be responsible for and required to:
Payment Card Industry Data Security Standards (PCI-DSS). The i3 Verticals Parties and their subsidiaries have an information security program that is designed to protect accountholder data in accordance with the Payment Card Industry Data Security Standards requirements and are in compliance with such requirements in all material respects.
Payment Card Industry Data Security Standards (PCI-DSS). Compliance. In the event Contractor may have access to credit or debit card information and/or may affect the security of a credit or debit card transaction, Contractor agrees to the requirements set out in Cardholder Data Security.
Payment Card Industry Data Security Standards (PCI-DSS). You will: (i) not store any element of the Transaction, other than temporarily to process the Transaction with the Payment Processing Service; this explicitly includes (but is not limited to) any Card numbers, CVV, CVV2, CVC2 or PVV information and any Track 2 Information derived from the chip or magnetic strip; (ii) encrypt or obscure the Card numbers either by masking all digits except the first 6 and last 4 numbers; using the last 4 digits only or by applying a secure one way hashing algorithm such as SHA-1; and (iii) not log any element of the Transaction for any purpose at all, including debugging or auditing and will not hold any other record of the Transaction electronically or on paper.
Payment Card Industry Data Security Standards (PCI-DSS). It is a violation of the ProCard policy to share the physical card and/or card number with anyone. Transactions made with a ProCard should ONLY be processed by the person to whom the card was issued. Moreover, ProCards cannot be transferred from one employee to another (when someone leaves the University, changes departments or no longer requires a ProCard), as they are issued to an individual and not to a department. C ardholders should NEVER e-mail their full 16-digit ProCard account number to anyone (including both external merchants and internal Loyola ProCard Administrators, supervisors or budget administrators). When storing ProCard statements and documentation, cardholders must ensure that full 16-digit credit card numbers are not listed on ProCard receipts, invoices or registration/order forms. When full 16-digit account numbers are displayed, cardholders must redact (Strike out) account numbers so that only the last four digits are visible. Furthermore, cardholders should never photocopy the front and/or back of a ProCard or store ProCard expiration dates or 3-digit CVC/CVV codes. Moreover, ProCard account information (full 16-digit account numbers, expiration dates, 3-digit CVC/CVV codes) may NOT be stored electronically on a University computer, server, electronic flash drive or optical storage device (e.g., CD or DVD). Cardholders should notify merchants or vendors of LUC’s Illinois sales and use tax exemption, where applicable. LUC’s sales tax exemption may only be used for LUC purchases and may not be used to purchase any items for a Cardholder’s personal use. Use of LUC’s sales tax exemption to purchase any items for a Cardholder’s personal use may result in revocation of the Procurement Card and disciplinary action in accordance with LUC’s policies.
