Credit Card Processing Review
- City Auditor
- Apr 28
- 1 min read
Updated: May 6
Why OCA did this project
OCA conducted this project at the request of Information Technology to gather
information to help with their assessment of PCI compliance at all credit card processing
locations. PCI compliance is important because it protects sensitive customer data from
theft, fraud and unauthorized access.
Project Scope
The City Auditor’s Office partnered with the Department of Information Technology to
conduct on-site observations and inquiries regarding credit card processing.
How OCA did this project
OCA developed a questionnaire with input from IT and observed and conducted interviews at nineteen City sites that process credit cards.
Conclusion
Results of this review were provided directly to IT, to assist with their assessment of PCI
compliance, in accordance with City of Tulsa Executive Order 2004-01.
Executive Order 2004-01 is an information protection protocol developed to safeguard
vulnerability assessments, security plans and any information derived from them.