Facebook pixel Payment Card Compliance Instructions | Pepperdine University | Pepperdine Community

Payment Card Compliance Instructions

How to meet the mandatory requirements for your department's acceptance of payment cards

Follow these steps in order:

  1. Update your department's credit card handling procedures
  2. Fill out the appropriate SAQ based on those updated procedures
  3. Sign the Attestation of Compliance included with the SAQ
  4. Attach the Cover Sheet to your documents above
  5. Return your updated procedures, SAQ(s) and signed Attestation(s) of Compliance, via Campus Mail, to:
    • Controller's Office
      TAC 2nd Floor
      Malibu Campus
    • DUE second week of April each year

How to obtain an SAQ form

Choose one Self-Assessment Questionnaire (SAQ) for each method of credit/debit card acceptance in your department. See the Payment Card version of the Restricted Information Cleanup Quick Reference for examples.

  • SAQ A - card not present; all cardholder data functions outsourced; no electronic storage
  • SAQ B - stand-alone, dial-out terminals or imprint; no electronic storage
  • SAQ C - point of sale systems connected to the Internet; no electronic storage
  • SAQ D - all other systems, including those with electronic cardholder data storage

Each SAQ contains the appropriate Attestation of Compliance, which must be signed by the Department Supervisor. Download the form, fill it in and print it out.

How to get help choosing or understanding your SAQ

For more detailed information about the Payment Card Industry Data Security Standards, you may download and read Navigating the PCI DSS.


Return to the RESTRICTED Information Cleanup website