Payment Card Compliance Instructions
How to meet the mandatory requirements for your department's acceptance of payment cards
Follow these steps in order:
- Update your department's credit card handling procedures
- Fill out the appropriate SAQ based on those updated procedures
- Sign the Attestation of Compliance included with the SAQ
- Attach the Cover Sheet to your documents above
- Return your updated procedures, SAQ(s) and signed Attestation(s) of Compliance, via Campus
Mail, to:
- Controller's Office
Suite 271E
Calabasas Campus - DUE as required by controllers office each year
- Controller's Office
How to obtain an SAQ form
Choose one Self-Assessment Questionnaire (SAQ) for each method of credit/debit card acceptance in your department. See the Payment Card version of the Restricted Information Cleanup Quick Reference for examples.
- SAQ A - card not present; all cardholder data functions outsourced; no electronic storage
- SAQ B - stand-alone, dial-out terminals or imprint; no electronic storage
- SAQ C - point of sale systems connected to the Internet; no electronic storage
- SAQ D - all other systems, including those with electronic cardholder data storage
Each SAQ contains the appropriate Attestation of Compliance, which must be signed by the Department Supervisor. Download the form, fill it in and print it out.
How to get help choosing or understanding your SAQ
Contact the Controller's Office
Return to the RESTRICTED Information Cleanup website