Educause Security Discussion
mailing list archives
Re: Experience with HigherOne or TouchNet for payment processing?
From: "Hopkins, Jefferson M" <jmhopkins () PURDUE EDU>
Date: Thu, 20 Jun 2013 11:37:29 +0000
We have a good relationship with Touchnet and have made them our preferred vendor for all processing services. I have
had no issues of any note with them over these last four years and no security concerns; high marks for reliability,
availability and support also.
If an area in the University is contemplating the use of an application service provider, we require the service
provider be "Touchnet Ready" before we approve the merchant. Several times we have worked with the ASP to get them to
that point. Those times are where Touchnet shines. They have been patient; worked with the vendor and eventually have
been able to bring the vendor on board.
Jefferson M. Hopkins
IT Security Risk Analyst, CISA, CISSP, ISA
Purdue University, Information Technology Security and Policy
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Walther,
Sent: Wednesday, June 19, 2013 4:05 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Experience with HigherOne or TouchNet for payment processing?
We're evaluating vendors for use as third party payment processing, with a goal off keeping PCI requirements as low as
Towards that end, does anyone have experience with HigherOne's or TouchNet's payment processing service, as a former or
current client? Does not have to be security-centric, though that is a concern. How does their service fare in terms of
security practices, reliability, availability, support, etc? Any changes over time?
No responses will be quoted or attributed (unless specifically asked to be). This is an informal poll, not part of an
RFP or any other documentation. Even just a quick "we use them and rarely think about it" would be much appreciated.
Information Security Operations, Tufts University