Middlebury

Physical Security of PoS Device- Skimming Best Practices

Point of Sale systems (card-reading devices used in card-present transactions) are subject to Physical Security Requirements in the PCI DSS V3.0, Requirement 9.

MDRP Responsibilities for Point of Sale devices include, but are not limited to, the following:

MiddTags:

MDRP Responsibilities

Any department accepting credit card and/or electronic payments on behalf of Middlebury for gifts, goods or services (“Merchant Department”) must designate an individual within that department who will have primary authority and responsibility for eCommerce and credit card transaction processing within that department.

PCI DSS Compliance Team

Email:  PCI Compliance Team

Kim Downs-Burns, Chair

802-443-5308

kdowns@middlebury.edu

Derek Hammel