Annual PCI DSS Certification

Credit card merchants are reviewed regularly by the Office of Finance to validate the university’s compliance with Payment Card Industry Data Security Standards (PCI DSS). In addition, an annual certification process begins each year in June. All university credit card merchants must validate their compliance with applicable standards through a self-assessment process. Failure to comply will result in the termination or suspension of departmental merchant capabilities.

USD's year-end for PCI compliance certification is August 31st. The timeline below outlines the items that must be completed by merchants and the university as a whole, to satisfy the Annual PCI DSS Certification requirements.

Time Frame Task Dates and Deadlines
June Email Invitation to Annual Online Training 30 days from invitation
July Live or Remote Training sessions July TBD
August All required documents and procedures due August 1
August Notification of non-compliance and remediation action plan to merchants (departments) August 15
August USD's overall submission of Attestation of Compliance to Wells Fargo Bank (acquiring Bank) August 31