>Who’s Involved? | Card Handlers | Managers & Supervisors | IT Staff | Treasury Operations | Quiz
The main role of managers or supervisors of staff who handle payment card transactions is to provide oversight for daily operations and to ensure that everyone involved in that department’s transactions—from department assistants to 3rd-party vendors—is following compliance guidelines.
Use Approved Devices
It is the responsibility of the managers to ensure that card payments are processed only on approved devices. PCI validated devices, such as SRED devices that you learned about on the previous page, use point-to-point encryption (P2PE).
Review Reports Daily
Managers must review reports on what the merchant location processed each day to check for accidental errors and any fraud.
Ensure Segregation of Duties
Some merchant locations are small and don’t process many transactions, but it is still important to ensure that someone oversees the work of the individuals who handle payment transactions—instead of having a single person be responsible for all aspects of processing payments. This is called segregation of duties.
Approve Refunds
To help separate roles, a manager is required to approve refunds. This approval can be important to prevent a type of fraud in which an employee or outsider tries to get refunded for items for which they didn’t pay or for more than the amount paid.
Document Processes and Train Team Members
Managers are also responsible for documenting payment card transactions processes at their merchant locations and training their team members on those processes.
Meet Annual Requirements
- Each team member is required to complete an annual PCI training and attestation (which you are taking right now) to ensure team members understand PCI requirements.
- Additionally, to meet security requirements, Merchant Locations must also fill out Self-Assessment Questionnaires once per year or upon request from Treasury Operations.