UH System Policies and Procedures
- Board of Regents Policies
- Executive Policies
- + 1. General Provisions
- + 2. Administration
- + 3. Organization
- + 4. Planning
- + 5. Academic Affairs
- + 6. Tuition, Financial Assistance, and Fees
- + 7. Student Affairs
8. Business and Finance
- 025. Fiscal Responsibilities within the University
- 026. Appointment of Fiscal Administrators and Assistant Fiscal Administrators
- 200. Overview
- 215. Definitions
- 220. General Principles
- 225. Limitations in Purchasing
- 230. Contracting for Services
- 235. Competitive Sealed Bidding
- 240. Competitive Sealed Proposals
- 245. Professional Services Procurement
- 246. Professional Services Procurement for Architects, Engineers, Land Surveyors, and Landscape Architects
- 250. Small Purchases
- 255. Sole Source Procurement
- 260. Emergency Procurement
- 265. Specialized Purchasing
- 266. Purchasing Cards
- 270. Types of Contracts
- 275. Contract Formation and Administration
- 281. Construction and Professional Services in Support of Construction
- 285. Cost or Price Reasonableness
- 290. Requirements of Federally Funded Purchases
- 295. Small Business and Small Disadvantaged Business Programs
- 300. Interests in Real Property
- 305. Use of Non-University Space and Facilities
- 350. Concessions
- 375. Fund Raising by a Recognized University Affiliated Volunteer Group or Non-Profit Organization
- 400. Risk Management Guidelines and Procedures
- 450. Records Management Guidelines and Procedures
- 509. Property and Equipment Overview
- 510. Loaned Property, Personally Owned Property, and Collections
- 512. Identification of Property
- 516. Property and Equipment Valuation (formerly Valuation of University Equipment)
- 521. Property and Equipment Acquisition
- 523. Receiving Property and Equipment
- 524. Property and Equipment Maintenance
- 530. Property and Equipment Storage and Movement
- 536. Subcontract Control of Government Property
- 539. Property and Equipment Record Maintenance
- 540. Physical Inventory
- 541. Property and Equipment Management Reports
- 542. Property and Equipment Utilization
- 543. Property and Equipment Transfer and Retirement
- 550. Capitalization
- 555. Impairment of Capital Assets and Retirement of Real Property
- 560. Post-Issuance Tax Compliance Procedures for Tax-Exempt and Build America Bonds
- 561. Tax Treatment of Non-Service Financial Assistance for Individuals
- 571. Administrative Procedure AP 8.571, University of Hawai‘i at Mānoa Athletics Ticket Sales for Events that are not University of Hawai‘i Athletic Competitions and that Involve Payments to Non- University of Hawai‘i Entities
- 602. General Ledger
- 611. Account Code
- 612. Establishment and Maintenance of Account Codes
- 615. Object Codes
- 617. Revenue and Higher Education Function Codes
- 619. Fund Groups
- 620. Gifts
- 621. Delinquent Financial Obligation Tax Setoff Hearings
- 622. University Endowments
- 635. Accounting For Leases
- 636. Supply Inventory
- 641. Journal Entries
- 650. Continuation Accounts
- 651. Non-Student Accounts Receivable and Delinquent Financial Obligations
- 671. Year-End Accounting Data
- 685. Cancellation or Replacement of University of Hawaii General Account Checks
- 686. Terminal Vacation Payout
- 701. Receipting and Depositing of Funds Received by the University
- 702. Administrative Procedure AP 8.702, Establishment of Electronic Funds Transfer and Receipt of Funds
- 710. Administrative Procedure AP 8.710, Credit Card Program
- 711. Administrative Procedure AP 8.711, Electronic Payments via University Websites
- 731. Student Accounts Receivable and Delinquent Financial Obligations
- 740. Dishonored Checks
- 750. Establishment and Maintenance of Change Funds
- 760. IRS Compliance for Reporting Cash Payments Over $10,000
- 770. Student Refunds
- 806. Roles and Responsibilities for Payment Transaction Processing
- 808. Bank Wire Transfer
- 851. Employee Out-of-State and Intra-State Travel
- 852. Personal Automobile Mileage Voucher
- 863. Relocation Allowances
- 867. Information Reporting on 1099-MISC and Backup Withholding on Payments
- 868. Reporting and Withholding on Payments to Nonresident Aliens and Foreign Corporations
- 870. Pay Types and Pay Days
- 871. Distribution and Security of Paychecks
- 872. Emergency (Priority) Payroll
- 873. Payroll Processing Cycle Deadlines
- 876. Overtime Authorization and Compensation
- 877. Salary and Wage Overpayment Recovery
- 879. Post Death Payments
- 926. Administrative Procedure, AP 8.926 Administrative and Financial Management Requirements for Extramurally Financed Research and Training Programs/Activities of the University of Hawai`i (UH
- 927. Administrative Procedure, AP 8.927 Facilities & Administrative Cost Charges in Contracts and Grants
- 951. Accounting for Federally Matching Equipment Grants
- 956. Financial Conflicts of Interest (FCOI) for Public Health Services (PHS) Grants, Cooperative Agreements and Contract
- + 9. Personnel
- + 10. Land and Physical Facilities
- + 11. Miscellaneous
- + 12. Research
- Abolished Procedures (Post Oct. 2014)
- Archived AP
UH‐Related Laws and Rules
- Hawaiʻi Revised Statutes (HRS) 304A
- Hawaiʻi Administrative Rules (HAR) Title 20
Administrative Procedure 8.711 Administrative Procedure 8.711
Administrative Procedure AP 8.711, Electronic Payments via University Websites
Administrative Procedure Chapter 8, Business and Finance
Administrative Procedure AP 8.711, Electronic Payments via University Websites
Effective Date: March 2015
Prior Dates Amended: September 2009
Responsible Office: Office of the Vice President for Budget and Finance/Chief Financial Officer
Governing Board and/or Executive Policy: EP 1.102, Authority to Manage and Control the Operations of the Campus
Review Date: August 2018
To establish uniform policies and procedures for the processing of electronic payments in accordance with University of Hawai‘i (UH) policies, banking and payment card industry(PCI DSS) requirements, the terms of the University's eCommerce services contract and all subsequent amendments.
A secure system of executing business on-line that is compatible with other University systems is imperative to protecting the University’s finances, reputation and relationships.
A. eCommerce – A non-face-to-face on-line transaction using electronic media over a public or private network. Refers to all forms of business activities conducted over computer networks such as the Internet.
B. Electronic Funds Transfer (EFT) – Transfer of funds by electronic means directly to the University of Hawai‘i General Account (UHGA).
C. ePayment – An on-line, non-cash payment. Methods of electronic payments include credit cards, debit cards and electronic checks (web-checks).
D. Merchant – An entity (e.g. UH department) accepting credit cards as a form of payment. A merchant number must be established and issued by the University’s credit card contractor before credit card processing can commence. For accounting and control reasons, only the Treasury Office is authorized to request merchant numbers from the credit card contractor.
E. Merchant Fee – The service fee paid to the contractor by the merchant (UH department) accepting a credit/debit card for payment.
F. Payment Card Industry Data Security Standard (PCI DSS) – Security standards designed to safeguard credit card data and developed by the major credit card companies.
G. Payment processing service – A service that provides connectivity among merchants, customers, and financial networks to process authorizations and payments and securely stores credit card data.
H. Unrelated Business Income Tax (UBIT) - Federal law enacted to eliminate unfair competition by placing the unrelated businesses of tax-exempt organizations on the same tax basis as non-exempt organizations. Generally, for most organizations, an activity is an unrelated business and subject to UBIT if it meets three requirements:
1. It is a trade or business;
2. It is regularly carried on; and
3. It is not substantially related to furthering the exempt purpose of the organization.
III. Administrative Procedure
This administrative procedure applies to all UH campuses and departments. This policy does not cover business-to-business eCommerce in which the UH purchases goods or services or to electronic ordering and payment applications that are typically used between other businesses or institutions and the UH, usually referred to as Electronic Funds Transfer (EFT). Procedures on EFT are found in A8.702, Establishment of Electronic Funds Transfer Agreements and Receipt of Funds.
The University has implemented a secure, PCI DSS compliant, hosted eCommerce management system that supports a payment processing service for a variety of eCommerce applications. Campuses and departments that want to accept ePayments should process all sales transactions through this eCommerce management system, unless granted an exception.
Exceptions may be granted to departments who prefer to use another system. To receive an exception, departments must provide evidence to the Treasury Officer, that the University’s eCommerce management system cannot meet the department’s business needs and that the alternate system complies with University and PCI DSS requirements for security as defined in Administrative procedure A8.710, Credit Card Program
The Treasury Office reserves the right to rescind a department’s merchant number and disable the department’s ability to accept electronic payments if the department does not comply with University and PCI DSS security requirements as stated above. Departments granted an exception to use an alternate system will be responsible for any costs to operate and maintain the system as well as any data breach remediation costs resulting from failure to comply with PCI DSS requirements. Departments granted such exceptions also assume all responsibility and liability for the security of all transactions and data, including any monetary loss suffered by the University due to theft or improper use of credit card numbers and other bank account information.
1. Treasury Office
a. Reviews and approves or disapproves requests to participate in the program.
b. Requests merchant number through the credit card contractor. eCommerce transactions require a unique, separate merchant number from in-person transactions.
c. Serve as liaison with eCommerce contractor.
a. Submit a memo requesting participation in the program and an eCommerce merchant number for transacting electronic payments and Attachment 1 to the Treasury Office.
b. Comply with all procedures specified by the University and the Contractor with respect to eCommerce payment transactions.
c. Provide all technical/functional support to create and maintain web pages for transactions and connectivity to the payment gateway.
d. Comply with security requirements and safeguard cardholder and data and personal financial information as set forth by the PCI DSS and UH Executive Policy EP 2.214, Security and Protection of Sensitive Information.
e. Record all revenues in University’s financial system. Reconcile daily batch settlement totals to monthly merchant statement to ensure that proper credit has been received.
f. Complete an annual PCI DSS self-review. The review will certify that the department is conducting eCommerce in the manner approved and adhering to all regulations. Any significant changes to eCommerce business activities or contacts should be noted.
D. Procedure to Participate in Program
1. Complete Attachment 1 – “University of Hawai‘i Request to Accept Electronic Payments” and submit to the Treasury Office.
2. Upon approval by the Treasury Officer, the Treasury Office will prepare the application and request for a merchant number and coordinate connectivity to the eCommerce payment gateway with the appropriate vendors and arrange for equipment/software installation and training with the department.
E. Security Incident Response Plan
All security incidents involving eCommerce transactions must be immediately reported as outlined in EP 2.214, Security and Protection of Sensitive Information.
IV. Delegation of Authority
There is no administrative specific delegation of authority.
V. Contact Information
Treasury Office, 956-8527, or firstname.lastname@example.org
A. Link to superseded Executive Policies in old format https://www.hawaii.edu/policy/archives/ep/
B. Link to Administrative Procedures in old format https://www.hawaii.edu/policy/archives/apm/sysap.php
VII. Exhibits and Appendices
Attachment 1: UH Request to Accept Electronic Payments
Vice President for Budget and Finance/Chief Financial Officer
March 13, 2015
TopicseCommerce; ePayment; PCI DSS