PCI Compliance

What is PCI?

The Payment Card Industry Data Security Standard (PCI DSS) is a set of comprehensive requirements to help facilitate the broad adoption of consistent data security measures.  The University of Washington has a contractual obligation to follow the PCI DSS.

The standard consists of twelve basic requirements, and corresponding sub-requirements, categorized as follows:

The type of payment card transaction determines which of the twelve requirements a merchant must follow.

  • University of Washington merchants are only allowed to be merchant type A or P2PE as outlined in the accepting payments standard page.
  • For more information please visit the PCI Security Standards Council. 

PCI Security Standards Council 

  • All individuals who are involved with the acceptance of payment cards in any way must take the UW PCI training course annually
  • Please contact pcihelp@uw.edu if you have any questions on determining what type of merchant you are.