Financial Information Compliance – Privacy and Security
The University regularly performs financial transactions involving student accounts, student financial aid, receivables, vendor payments, and grant disbursements. Some of the financial regulations to which MTSU’s operations must adhere include: (1) the Gramm-Leach Bliley Act (“GLBA”), also known as the Financial Modernization Act of 1999; (2) the Red Flag Rule, also known as one of the Fair Credit Reporting Act’s Identity Theft Rules; and (3) Payment Card Industry (“PCI”) security regulations.
While the University is not a financial institution, MTSU is a processor, payer, and receiver of financial transactions for which the GLBA, the Red Flag Rule, and PCI security regulations are triggered. The following is information on the University’s policies and procedures regarding the security and safeguarding of student financial data and other financial transactions.
- Policy 652 - PCI DSS Information Security
- Policy 650 - Identity Theft Prevention
- Business and Finance Policies
- Office of Business and Finance
- Merchant Services
For questions regarding MTSU's PCI compliance activities and/or general questions concerning PCI compliance, please contact PCICompliance@mtsu.edu.
For general questions or concerns related to MTSU’s financial security protocols, please contact firstname.lastname@example.org.