Credit Card or Payment Card Industry (PCI) Information

Information related to credit, debit, or other payment cards. This data type is governed by the Payment Card Industry (PCI) Data Security Standards and overseen by the University of Michigan Treasurer's Office. Credit or debit card numbers cannot be stored in any electronic format without the expressed, written consent of the U-M Treasurer's Office. That office is responsible for the only PCI-compliant environment at the university.

If, for example, your unit is hosting a conference and needs to accept credit card payment for registration fees, contact the University of Michigan Treasurer's Office to arrange for this. You cannot handle the transactions using departmental computers.

Restrictions listed here do not apply to your own personal credit card information. However, it is recommended that you follow the same precautions with regard to your own personal information as you would with university data.

Frequently Used by: 
Staff
Category: 
Sensitive
Examples: 
  • Cardholder name
  • Credit/debit card account number
  • Credit/debit card expiration date
  • Credit/debit card verification number
  • Credit/debit card security code
Andrew File System (AFS): 
Not Permitted
BlueJeans Video Conferencing: 
Not Permitted
Canvas: 
Not Permitted
Cloud Storage Included with Software: 
Not Permitted
CTools: 
Not Permitted
Data Warehouse: 
Not Permitted
Desktop Backup (Powered by CrashPlan): 
Not Permitted
Desktop Virtualization (VDI): 
Not Permitted
Digital Signage: 
Not Permitted
Echo360 - Lecture Capture and LectureTools: 
Not Permitted
eResearch: 
Not Permitted
Flux: 
Not Permitted
Globus: 
Not Permitted
ITS Exchange Email and Calendar: 
Not Permitted
M Cloud - Amazon Web Services GovCloud: 
Not Permitted
M Cloud - Amazon Web Services (AWS): 
Not Permitted
Box Additional Apps (Non-Core): 
Not Permitted
Box at U-M Core Apps: 
Not Permitted
Google Additional Services (Non-Core): 
Not Permitted
Google Drive at U-M: 
Not Permitted
Google Mail and Calendar at U-M and Inbox by GMail: 
Not Permitted
Google Sites, Talk/Hangouts, Groups, Tasks, Classroom at U-M: 
Not Permitted
MiDatabase: 
Not Permitted
MiServer: 
Not Permitted
MiShare: 
Not Permitted
MiStorage with CIFS: 
Not Permitted
MiStorage with NFS: 
Not Permitted
MiVideo: 
Not Permitted
MiWorkspace: 
Not Permitted
Personal Accounts (Dropbox, OneDrive, iCloud, etc.): 
Not Permitted
Personally Owned Devices (phone, tablet, laptop, etc.): 
Not Permitted
Qualtrics: 
Not Permitted
ServiceLink: 
Not Permitted
Statistics and Computation Service: 
Not Permitted
MiBackup: 
Not Permitted
Turbo Research Storage with NFS: 
Not Permitted
Turbo Research Storage with NFSv4+Kerberos or CIFS: 
Not Permitted
UMHS Exchange/Outlook Email and Calendar: 
Not Permitted
Armis: 
Not Permitted
Imaging Services: 
Not Permitted

Don't see the service you need? Contact the ITS Service Center.