PCI Compliance

The Payment Card Industry Data Security Standards (PCI-DSS) is a mandated set of requirements agreed upon by the five major credit card companies: VISA, MasterCard, Discover, American Express and JCB. These security requirements apply to all transactions surrounding the payment card industry and the merchants/ organizations that accept these cards as forms of payment. Further details about PCI can be found at the PCI Security Standards Council website.

In order to accept credit card payments, VMI must prove and maintain compliance with the Payment Card Industry Data Security Standards.  The Institute's Payment Card Policy and additional supporting documents provide the requirements for processing, transmission, storage, and disposal of cardholder data transactions.  This is done to reduce the institutional risk associated with the administration of credit card payments by individual departments and to ensure proper internal control and compliance with PCI DSS.

Scope/Applicability

The Institute's Payment Cards Policy applies to all faculty, staff, cadets, organizations, third-party vendors, individuals, systems, and networks involved with payment card handling. This includes transmission, storage, and/or processing of payment card data, in any form (electronic or paper), on behalf of VMI.

Contact Information

Email PCITeam@VMI.edu with questions regarding VMI's PCI Compliance.

Portal login below for internal use only.

Policy, Procedures, and Supporting Docs