Hi Denise....
I agree with Dave that there are many "flavors" to PCI compliance. It actually is something that changes very frequently. I managed a credit card processing server at one point, and we frequently had to apply patches to maintain compliance. The University had a scan that ran to alert us to these changes - otherwise it would be difficult to keep track of all of them.
Essentially, this is something that is better left to the experts. I would not recommend running your own server, especially with the myriad options available.
Terry Callaghan
Zuri Group
aasp Executive Board Members
------------------------------
Terry Callaghan
Zuri Group
terry@zurigroup.com------------------------------
Original Message:
Sent: 01-11-2024 01:29 PM
From: Denise Mattie
Subject: PCI Compliance
Good afternoon,
It's me again. Are any universities represented here PCI compliant AND processing credit card gifts (or tuition payments for that matter) on their own? I am clearly torn between two VPs on this end regarding what is normal and expected, particularly by our older donor base.
If you are PCI compliant, how difficult was that process, and if you are only contracting out (as we mostly do now), I would like to know that as well.
I appreciate your help.
Thank you.
| 
| Denise Mattie Director of Advancement Services |
| T: 325.793.4750 | M: 720.480.9369 | mattie.denise@mcm.edu |
| Institutional Advancement 1 McMurry University #938 Abilene, TX 79697 give.mcm.edu | McMurry University 1400 Sayles Blvd. Abilene, TX 79697 www.mcm.edu |
|     
|