University of Bath

Card Payment Procedures

All staff who have roles which require access to cardholder data have a responsibility to protect that data.

This document lays out a set of requirements to which all staff of the University who may have access to cardholder data must adhere. As an organisation which processes cardholder data, the University is obliged to comply with the Payment Card Industry Data Security Standard (PCI-DSS).