Policies, Guidelines & Compliance | Information Security at York

Compliance

Payment Card Industry Data Security Standard Training & Resources

All York University merchants are required to complete the Payment Card Industry Data Security Standard (PCI DSS) training as part of the compliance requirement. Please complete the following tasks to fulfill the training requirement.

All Merchants are to review and understand the Payment Card Processing Controls and Compliance Memo

Merchants with Point-of-Sales (POS) System

Protecting the POS
Recommended Checklist for Integrated POS Devices
Recommended Checklist for Standalone POS Terminals

Skimming Prevention

Information Supplement: Skimming Prevention Best Practices for Merchants
Skimming Prevention: Overview of Best Practices for Merchants

PCI DSS Guidelines

Payment Card Data Security Procedures
Payment Card Data Security Guideline
Payment Card Processing Controls and Compliance Memo

PCI Security Standard Council

Information Supplement: Skimming Prevention Best Practices for Merchants
Skimming Prevention: Overview of Best Practices for Merchants

Moneris

Protecting Against Fraud
Protecting the POS
Merchant Best Practices to Deter Skimming
Recommended Checklist for Integrated POS Devices
Recommended Checklist for Standalone POS Terminals
Point of Purchase Integrity Checklist

Other Resources

VISA's Business Guide to Data Security Video (Video: 5 minutes long)
Interact Fraud Prevention for Merchants (Youtube link)
Moneris Fraud Alert for POS Merchants 2017: Skimming Attack Using Shim