![]() ![]() In addition to the per transaction charges, a department may incur other monthly charges, (e.g. The University is charged a discount fee on all credit card transactions which is passed on to the department (by merchant account).Any contract with credit card processing companies or with companies accepting credit card payments on the department’s behalf must be reviewed, negotiated, and approved by SAS with review by the Office of Counsel.Ĭosts Associated with Accepting Payment by Credit Card. ![]() Departments will complete a Request to Establish a Credit Card Operation form and submit it to SAS. All merchant accounts for accepting credit cards must be obtained and approved by SAS.Any questions or problems with a departmental merchant account should be directed to SAS, who will communicate with the merchant services provider if necessary. By centralizing all merchants, the University of Alabama negotiates a lower rate based on the University’s overall transaction volume. A credit card services contract is negotiated by the University for all University authorized merchant accounts.This request should be made by the business manager of the associated college or department Do not expand or implement changes to an existing revenue generating operation until approval has been given and training has been completed. Do not begin the revenue generating operation until approval has been given and training has been completed.Īny department wishing to generate revenue with additional tender types, including credit cards, or make changes in existing revenue generating operations must first receive approval from SAS before any funds are collected. Complete a Request to Establish a New Revenue Generating Operation Form and return to SAS. This request should be made by the business manager of the associated college or operation. Section I – Credit Card Operations General Policies – Applicable to all types of Credit Card Operations Establishing a University Merchant Services AccountĪny department intending to begin the generation of revenue must first receive approval from the Student Account Services (SAS) Associate Director of Accounting, regardless of the proposed tender types /funds. Further information is found for each type of credit card processing and the associated questionnaire (SAQ) on the Cybersecurity Resources webpage. The PCI DSS are incorporated into the University of Alabama Credit Card Policies but also may be accessed on-line.Įach department that accepts credit card payments is responsible for adhering to all the standards in the PCI-DSS and for annually certifying their continued compliance by submitting the PCI-DSS Self-Assessment Questionnaire (SAQ) appropriate to their credit card activities. The University and all departments that process payment card data have a contractual obligation to adhere to the PCI DSS. The requirements apply to all methods of credit card processing. The PCI DSS requirements apply to all payment card network members, merchants, and service providers that store, process, or transmit cardholder data. The PCI DSS Program is a mandated set of security standards that were created by the major credit card companies to offer merchants and service providers a complete, unified approach to safeguarding cardholder data for all credit card brands. There are four accepted methods for processing transactions: (1) card swipe terminal, (2) secure website through a gateway authorized by Student Account Services (SAS), (3) University authorized point of sale system or back office system, and (4) contract with external payment partner signed by a University designated contract signer. This document identifies the requirements that departments, offices, and all other entities that accept or want to accept payments by credit cards must follow. University departments that are approved to sell or offer at auction goods or services may choose to accept credit cards from its customers as a payment. This policy provides guidance for University credit card operations to comply with Payment Card Industry Data Security Standard (PCI DSS) Program standards. Title: Director, Student Account Services ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |