Educause Security Discussion mailing list archives

PCI Compliance

From: Theresa M Rowe <rowe () OAKLAND EDU>
Date: Thu, 22 Mar 2007 13:38:29 -0400

Has anyone had success with achieving compliance to the PCI standard?

We've hit some confusion here.  If we:

* license software that takes credit card payment over the web
* and the web servers are located on our campus

Aren't we obligated to make sure that the software is "PCI compliant" from the vendor?


Theresa
Theresa Rowe
Assistant Vice President
University Technology Services
www.oakland.edu/uts - the latest news from University Technology Services

Current thread:

PCI Compliance Theresa M Rowe (Mar 22)
- <Possible follow-ups>
- Re: PCI Compliance Penn, Blake (Mar 22)
- Re: PCI Compliance Kees Leune (Mar 23)
- Re: PCI Compliance Roger Safian (Mar 23)
- Re: PCI Compliance Lovaas,Steven (Mar 23)
- Re: PCI Compliance Penn, Blake (Mar 23)
- Re: PCI Compliance Bill Ogle (Mar 23)