What has Blackbaud done to become PCI compliant?
Blackbaud has validated compliance with the Payment Card Industry Data Security Standard (PCI DSS) and the Payment Application Data Security Standard (PA DSS). Trustwave, the leading provider of on-demand data security and payment card industry compliance management solutions to businesses worldwide, performed the PCI DSS validation for Blackbaud’s hosted solutions and the PA DSS validation for Blackbaud’s locally-installed payment applications. Blackbaud offers both hosted and locally-installed payment solutions because all nonprofits operate differently.
The PCI DSS security requirements are endorsed by the PCI Security Standards Council, founded by a consortium of major credit card brands including Visa Inc., MasterCard Worldwide, American Express, Discover Financial Services, and JCB, to enhance credit and debit card data security. Validated as a Level 1 Service Provider and Payment Gateway, Blackbaud had to demonstrate compliance with 12 security requirements by thoroughly reviewing its IT environment and information security policies and procedures.
The Council also supports the PA DSS, a set of security requirements that apply to software vendors that develop payment applications that process, store or transmit credit card data as part of authorization or settlement. Blackbaud is the only nonprofit software company that is also a PCI Security Standards Council member, working with the Council to evolve the PCI Data Security Standard (DSS) and other payment card data protection standards.
Blackbaud has modified every application that processes, stores, transmits credit card numbers to become PCIDSS and PADSS compliant. We have implemented PCI standards regarding secure storage of data, strong access control, and other requirements. The Blackbaud products below have been reviewed for PCI Certification and those that process, store, or transmit credit card holder data have been certified as PCI DSS Compliant including:
- The Raiser’s Edge
- Blackbaud NetSolutions
- Blackbaud NetCommunity
- Blackbaud CRM
- The Education Edge
- Blackbaud Student Information System
- The Patron Edge/The Patron Edge Online (US Only)
- Luminate Online
Check out our FAQ page for details.
Learn more about Blackbaud PCI compliance:
How does PCI affect specific Blackbaud products?