Payment Security You Can Trust

We’re committed to helping your institution meet the highest levels of payment security compliance available.

Taking Payment Security to the Next Level

Nelnet Business Services President, DeeAnn Wenger, and IT Director, Mike Walters, discuss the daily measures we take to ensure your institution’s payments and data are secure.

Our Commitment to Your Security

shield with a star in the center

PCI Compliance

The Payment Card Industry Data Security Standard (PCI DSS) is a global payment security standard. At Nelnet, we view it as a year-round requirement. Annually, we undergo a PCI Level 1 on-site assessment to ensure we meet the highest standard and institute controls to protect against security breaches.

computer monitor

P2PE Partnership

Point-to-Point Encryption (P2PE) ensures that in-person and over-the-phone card payments are as secure as possible. In partnership with Bluefin, we offer a P2PE solution that reduces PCI scope and protects your campus and cardholders from a data breach.

award ribbon

FERPA Compliance

The Family Educational Rights and Privacy Act (FERPA) is a federal law that protects the privacy of student education records. Nelnet’s Authorized Payer Module is fully compliant with FERPA, allowing students to securely grant access to their private account by assigning an authorized payer a unique ID and password.

padlock

Nacha Verified

In compliance with Nacha requirements, Nelnet implements security best practices for protecting bank account information. Our policies and procedures manage and mitigate fraud and risk. Annually, we complete the TPS ACH Rules Compliance Audit.

white award ribbon

25+ years in payments

For over 25 years, we’ve offered payment solutions designed to keep your data secure while serving the unique mission and needs of higher education.

Our Commitment to Industry Standards

a dedicated team of Nelnet Campus Commerce members

A dedicated team of 55+ total members supporting Nelnet Campus Commerce Cybersecurity

a magnifying glass inspecting a cloud which represents cloud scanning

Continuous cloud asset scanning searches for vulnerabilities and improperly configured assets

a hammer breaking into something which represents penetration tests

Penetration tests conducted against the applications utilizing human and automated methods

a ringing bell which represents active and passive detection

Dedicated security operations center staffed by certified security analysts utilizing active and passive (automated) threat-hunting techniques

a padlock which represents strong code practices

Application security code scans investigate the application’s code to search for vulnerabilities and best practices

a shield with a checkmark which represents a dedicated operations team

Vulnerability scanning & management across all infrastructure and dedicated operations team to manage vulnerability remediation

a clipboard with a list of items that represent compliance terms

PCI DSS 4.0, SOC 1 Type II, GDPR, & CCPA compliant in addition to periodic audits led by our dedicated internal audit team

a castle tower that represents FACTS training software

Comprehensive employee cybersecurity & privacy training, supplemented by our Security Champions hands-on training program

Enterprise Security Magazine award

ARTICLE:Top Payment Security Solutions Provider 2023

Nelnet Campus Commerce was recognized by Enterprise Security for impacting the market and being at the forefront of payment security solutions.

Enterprise Security magazine is a go-to resource where industry experts share innovative solutions and expertise. In this article, learn more about this award and Nelnet’s commitment to payment security.

Explore the Article

Ready to Learn More?

Find top-notch payment security that supports the needs of your institution.

Talk to a Nelnet Associate by submitting a contact form.