Regulatory Requirements
Payment Card Industry Data Security Standards (PCI-DSS)
The Payment Card Industry (PCI) Security Standards Council has developed the Payment Card Industry Data Security Standards (PCI DSS), a set of financial and information technology standards, to protect credit cardholder data. The Office of the Chief Financial Officer’s Revenue & Receivables Department governs the University’s PCI Compliance.
Family Educational Rights and Privacy Act (FERPA)
The Family Educational Rights and Privacy Act of 1974 (FERPA) affords students certain rights with respect to their education records. The Office of the University Registrar conducts FERPA training and oversees the Privacy of all Student records.
Health Insurance Portability and Accountability Act of 1996 (HIPAA)
The Health Insurance Portability and Accountability Act (HIPAA) of 1996’s primary intent is to provide better access to health insurance, limit fraud and abuse, and reduce administrative costs.
The Gramm-Leach-Bliley Act (GLBA) was signed into law in 1999 and requires financial institutions to be transparent about their information sharing practices.
Personally Identifiable Information (PII)
Personally Identifiable Information (PII) is subject to special safeguarding and breach reporting regulations.