Forms and Documentation

UT Policies

Fiscal Policy FI0311 – Credit Card Processing

IT Policy IT0110 – Acceptable Use of Information Technology Resources

IT Policy IT0115 – Information and System Classification

Forms for Prospective Merchants

Point of Sale and Internet Sales Approval Form

Credit Card Policy Template for E-Commerce Merchants

Credit Card Policy Template for Card Present/Point of Sale Terminal Merchants

Self Assessment Questionnaires

To complete SAQ’s, visit the PCI Suite

Self Assessment Questionnaires (Version 3.2 rev 1.11)

Which SAQ Do I Complete?

• SAQ A – For “card not present” merchants (E-commerce/Online sales)
• SAQ P2PE – For merchants who process cardholder data only via a  PCI-DSS listed Point-to-Point
  Encryption (P2PE) solution. (Card Present/Point of Sale Terminals)

PCI Training

• PCI-Compliance-Training and Attestation: Effective January 1, 2024, please contact Justin Holt for more information.

Touchnet E-Commerce Startup Contacts

Touchnet – UT-Knoxville
Mark Savage – Email: mark@utk.edu  Phone: 865-974-2205

Touchnet – UTIA
Mark Savage – Email: mark@utk.edu  Phone: 865-974-2205

Touchnet – UT-Chattanooga 
Vanasia Parks – Email vanasia-parks@utc.edu  Phone: 423-425-4343

Touchnet- UT-Martin
Doug Bloodworth – Email: dbloodworth@utm.edu Phone: 731-881-3852

Touchnet -UT Health and Science Center 
Byron Porter – Email: bporter3@uthhsc.edu  Phone: 901-448-4848

Security Awareness Information

PCI Credit Card Security Flyer

PCI DSS Handout

Insight From VISA To Keep Your POS Equipment Secure

PCI and What Not to Store

PCI Standards and Procedures for UT Merchants

PCI DSS Incident Response Plan

PCI DSS Penetration Testing Standard

PCI DSS Security Awareness Program Standard

PCI DSS Vulnerability Scanning Standard

Additional PCI Resources

PCI Security Standards Website

Visa Global Registry of Service Providers

Elavon 

Touchnet