The purpose of Georgetown’s PCI procedures is to process credit card transactions in a manner that protects confidential customer data using industry best practices, by well-trained University personnel, and ensure that GU partners also protect customer data appropriately.

PCI requirements apply to all payment card (debit or credit card) transactions and data processed for or on behalf of Georgetown; compliance is a contractual obligation.  Non-Compliance can result in fines or even withdrawal.

In order to effectively manage, control, and support PCI compliance, the University has established campus based Service Centers, through which all card processing and PCI compliance is administered.  Each Campus is responsible for managing credit card processing and PCI compliance through central Service Centers and specialized Service Centers.


Main Campus

Central Service Center – Christopher Mehrholz
Student Affairs - Patrick Durbin
School of Continuing Studies - Heather Malneritch
SFS-Q - Shaida Sonde

Medical Center

Central Service Center – Victoria Kromer-Crooke

Law Center

Central Service Center - Cora Osborne
CLE - Simona Rosu

University Services

Central Service Center - Jon Hendrix
Advancement - Katya White
Office of Billing and Payments - Rico Headly-Soto

Questions about credit card processing can be directed to the appropriate coordinator, or to

Payment Card Industry (PCI) Training

Please click here to access Georgetown's PCI training module. 

applicable georgetown university policy

Payment Card Industry Data Security Standard (PCI DSS) Policy

Payment Card Industry (PCI) Security Policy