Compliance — CampusGuard is your partner for attaining and maintaining...

 Contact Us Now

Ron King, CPISM
President and COO
(972) 964-8884 office
(214) 770-3550 mobile


The Payment Card Industry Data Security Standard (PCI DSS) is a sweeping set of policy and infrastructure requirements for all merchants that wish to use payment cards in their business practice. It requires specialized knowledge in IT, networks, and policy.

Information security is a particularly difficult task for campus based organizations because there are unique aspects that sometimes compound achievement. We specialize in performing compliance assessments, vulnerability scans, penetration tests, computer security assessments, and forensics – and can apply these skills effectively for the campus environment because we know it is markedly different from more traditional merchants because of:

  • Departmental decentralization that sometimes inhibits central policy enforcement
  • Data-rich information systems that create a natural target
  • Sophisticated intruders, with potential criminal intent
  • Over-loaded IT staff which prevents or delays focus on security measures.
  • Numerous independent payment systems across the enterprise
  • Fiscal constraints

Red Flags

Red Flags is a federal mandate that requires all institutions that extend credit to an individual to have in place a set of alerts or “Red Flags” to alert when a possible compromise of Personally Identifiable Information (PII) is occurring. Many higher-ed institutions allow payments on tuition and they are bound by this regulation.


The Health Insurance Portability & Accountability Act (HIPAA) is a federal mandate protecting patient rights to privacy. Our compliance and risk assessment services are foundational to the regulatory requirements of the HIPAA Privacy, Security, and Breach Notification Rules. These services represent the basic level of compliance for organizations that create, receive, maintain, or transmit protected health information (PHI). Whether your data resides on wearables, patient intake forms, medical devices, or in the cloud, we provide a refined approach for data protection that satisfies industry regulations with deep-dive, technical capabilities to improve your security posture. We also help business associates deliver the highest level of data protection for their healthcare customers that gives them a competitive differentiator and increases revenue.


  • HIPAA Risk Assessment
  • HIPAA Security Rule Gap and Compliance Assessments
  • HIPAA Privacy Rule Assessment
  • Security Awareness Training
  • Annual Support
  • Comprehensive Customer Service


The Family Educational Rights and Privacy Act (FERPA) is a Federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education.

Risk Management

Many of the compliance regulations incorporate some form of risk management analysis. This analysis is what drives the actions taken to comply with the aforementioned regulations and agreements.

Policies & Procedures

Most of the compliance regulations require some form of policy to enforce the statutes of that regulation. CampusGuard’s policy templates will give you a quick means to complete your policies.

PCI and Information Security Awareness Education

The PCI DSS requires security awareness training for all employees who are involved in any capacity in the processing, storing, and transmission of cardholder data. This includes all department staff, as well as members of the Information Technology/network teams in all organizations CampusGuard fulfills this requirement by providing an online training platform and courses tailored for training management and staff on the essentials of protecting confidential and sensitive information. The goal of Online Training is to complement CampusGuard’s security products and services, providing comprehensive, online training that satisfies all compliance requirements. The service is based on a hosted, online / on-demand platform. Our Online Training service is delivered in a “Compliance Bundle” that covers the key security issues for each category of participant throughout your organization.


  • PCI DSS Security Awareness and Compliance for Merchants
  • PCI DSS Security Awareness and Compliance for Information Security
  • PCI DSS Security Awareness and Compliance for Executives
  • FACTA Red Flags
  • General Cybersecurity