May credit card information be stored in files or documents on my computer?

No.  The UNC Charlotte Payment Card (Credit/Debit) Card Processing Standard states "Cardholder data  may not be stored on any UNC Charlotte computer device or network."  The Payment Card Industry Data Security Standards (PCI DDS) place strict requirements for the storage of cardholder data.  Entering or storing cardholder data on University computers or devices or within files or documents violates those Standards.  Additionally, please reference the University ITS Guideline for Data Handling for guidance on proper protection of data.

If you enter cardholder data on any University device, you should:

  • Permanently delete the cardholder data  from your computer and associated files. 
    • To permanently delete the file/document:
      • delete the file/document from your computer
      • locate the "Recycle Bin" on your operating system
        • either, click on "Empty Recycle Bin"
        • or, right click on the Recycle Bin and click "Open".  Find the specific file/document to be deleted, right click on it, and click "Delete".
  • Notify eCommerce ( immediately and send them:
    • A statement that sensitive cardholder data was entered into a University device by you.
    • Confirmation that the original cardholder data was permanently deleted from your computer and related systems. 
    • Date and time that the data was permanently deleted.

Private sensitive data cannot reside on the University servers, related devices, equipment and software.