PCI Compliance - PCI Compliant Devices

The University at Buffalo is committed to compliance with the Payment Card Industry Data Security Standards (PCI DSS) to protect payment card data regardless of where that data is processed or stored.

Departments must select the appropriate PCI compliant device to process payment card transactions in accordance with university policy and the payment card industry standards.

Mobile Users: Swipe to scroll table

State IFR Revenue

PCI Compliant Device

Description

UB ePay

•  Electronic payment system

•  Online, off-campus use

•  Requires university approved rates

Bluefin Card Swipe Devices

•  USB secure card-reading SREDKey device

•  Preferred on-campus, card-present solution

•  Requires university approved rates

UB Cellular Hand-Held Terminals

•  Portable, card-present solution

UBF Revenue

PCI Compliant Device

Description

UBF Checkout

•  Electronic payment system

•  Online, off-campus use

•  Requires university approved rates

UBF SREDKey Swipe Devices

•  USB secure card-reading SREDKey device

•  Preferred on-campus, card-present solution

•  Requires university approved rates

UBF Manual Entry by UBF Business Office  

•  Record payment information (card number, expiration date, CVV code) on paper

•  Call UBF Business Office for secure processing

•  Immediately destroy payment information

State IFR and UBF Revenue

PCI Compliant Device

Description

UB / Dedicated (Wired) Terminals

•  Not preferred due to significant PCI Compliance handling procedures

•  Inventoried by Financial Management and UBF

UB eStore (coming soon - under development)

•  All funds electronic payment system

•  Shopping cart experience

•  Basic inventory capabilities

•  Online, off-campus use

Contact for Questions

Contact An Expert
Revenue Type Contact Email or Phone
State IFR Revenue Financial Management PCI_COMPLIANCE@buffalo.edu
UBF Revenue   UB Foundation 716-645-3013