PCI Compliance

As an employee in a Dining Services location using Infor, it is essential to understand the importance of Payment Card Industry (PCI) compliance. This ensures the safety of our customers' credit card information and maintains the integrity of our payment systems.

These are BYU Dining Services' policies on cashier PCI compliance:

1. Never write down, copy, or take pictures of any credit cardholder data (cardholder name, card number, or expiration date). If card information needs to be manually entered into a POS system, enter all cardholder data directly into a validated and secured credit card terminal.

• Food To-Go and Catering employees are exempted from this requirement when following special procedures approved by BYU Treasury Services for orders taken over the phone.

2. Credit card payments may not be taken over a softphone or on a recorded call.

3. Never share POS system passwords or login credentials.

4. Cashiers will complete BYU's PCI DSS Training before receiving POS access and annually thereafter.