Home Contact Print

About                                 Enterprise Security Policy Information Security & Privacy Human Subjects For Students For Employees For Registrars Harvard Confidential Info Working with Vendors Accepting Credit Cards Authorization Data Protection Compliance Certification Transaction Monitoring Disclosing Breaches Local Policies Federal and Regulatory Glossary of Terms FAQ's        Reporting Security Incidents Reporting Violations Privacy Policy Security Presentations Search the Site

Accepting Credit Cards     Authorization Process for Harvard departments to set up credit card merchant accounts and related bank accounts. Includes procedures to process credit card transactions and to manage credit activities. Provides directives for new accounts and internal Harvard resources. Data Protection Standard credit card provider security rules that have been consolidated as the PCI Data Security Standard. Compliance Certification Process by which all vendors, including Harvard, are certified to be compliant by an approved third party. The certification process requires completion of an annual questionnaire and quarterly remote vulnerability scans. Transaction Monitoring Recommended processes and resources for managing the credit card transaction security environment. Disclosing Potential Breaches Requirements for notification upon discovery of security breach that may jeopardize the security of the protected information. Local Policies Recommendations for the development of local credit card data management policies.      What's New   >  Advisory on use and protection of HUID >  New summary of security breaches at educational institutions   >> See all

Printer Friendly Page		Trademark Notice|Privacy Policy | © 2008 President and Fellows of Harvard College