The University of Maryland, College Park has a duty and commitment to respect and protect the privacy of its students, alumni, faculty, and staff, as well as to protect the confidentiality of information important to our community. Payment card data security is critical, and all merchants are required to be PCI compliant.
What is Payment Card Industry (PCI) compliance?
The Payment Card Industry Data Security Standard (PCI DSS) is a required set of standards for optimizing the security of payment card transactions. A payment card is any type of credit, debit or prepaid card used in a financial transaction. The PCI DSS was developed by the PCI Security Standards Council, an organization founded by American Express, Discover Financial Services, JCB International, MasterCard, and Visa Inc. The standard applies to all organizations that process cardholder information. As such an organization, the University of Maryland, College Park's compliance with PCI DSS is mandatory.
Do I have to comply?
Compliance with the Payment Card Industry Data Security Standard (PCI DSS) is required of all University of Maryland, College Park departments and organizations that accept payment cards for financial transactions. Any third-party vendor engaged by the University of Maryland, College Park departments to process payment card transactions on their behalf, or who is engaged in payment card financial services on our campus, must also comply with the PCI DSS.
Adhering to the PCI DSS requirements provides critical protective measures to make sure that payment card data is being kept safe throughout every transaction.
How do I comply?
It is your responsibility to read, understand and comply with the UMD Mandatory Payment Card Procedures posted on this website.