Blackboard Updates Transact Commerce App for Compliance with PCI Standards

Blackboard has released version 3.5 of Blackboard Transact, a set of applications that provides commerce and security management for campuses. The primary focus of the new edition is its compliance with the Payment Application Data Security Standard (PA-DSS), which enables the institutions that use it to comply with the Payment Card Industry Data Security Standard (PCI-DSS). The goal of PA-DSS is to help software vendors and others develop secure payment applications that don't store prohibited data and ensure their payment applications support compliance with the PCI DSS. Campuses are encouraged to use PA-DSS-compliant applications in their payment environments or risk eventually being denied the ability to access credit services by their credit card companies.

According to the company, release 3.5 received validation from Trustwave, a security assessor company, and acceptance from the PCI Security Standards Council.

"Payment application security compliance is a very important initiative for our university," said Stacie Gomm, associate vice president for IT at Utah State University. "Our Controller's office is driving this initiative to ensure that all of our financial systems and processes are PCI compliant. The enhanced security features of the Blackboard Transact platform are an important step towards compliance for our campus-wide ID card solution."

The Blackboard Transact platform has two primary modules. The Commerce Management module facilitates campus ID card issuance; on-campus, off-campus, and online commerce; cashless payment processing for dining, bookstore, vending, laundry, copy, print and parking services; financial reporting; and self-service account management. The Security Management module provides features to monitor door access control, manage video surveillance, and perform mass notification capabilities.

The new version also introduces capabilities to support enterprise-wide compliance policies and risk management; adds improved database audit logging; provides user account and password features including forced complex passwords, limited repeat access attempts, and account deactivation after 90 days of no use; and includes rewritten user documentation.

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • open laptop in a college classroom with holographic AI icons like a brain and data charts rising from the screen

    4 Ways Universities Are Using Google AI Tools for Learning and Administration

    In a recent blog post, Google shared an array of education customer stories, showcasing ways institutions are using AI tools like Gemini and NotebookLM to transform both learning and administrative tasks.

  • illustration of a human head with a glowing neural network in the brain, connected to tech icons on a cool blue-gray background

    Meta Launches Stand-Alone AI App

    Meta Platforms has introduced a stand-alone artificial intelligence app built on its proprietary Llama 4 model, intensifying the competitive race in generative AI alongside OpenAI, Google, Anthropic, and xAI.

  • three main icons—a cloud, a user profile, and a padlock—connected by circuit lines on a blue abstract background

    Report: Identity Has Become a Critical Security Perimeter for Cloud Services

    A new threat landscape report points to new cloud vulnerabilities. According to the 2025 Global Threat Landscape Report from Fortinet, while misconfigured cloud storage buckets were once a prime vector for cybersecurity exploits, other cloud missteps are gaining focus.

  • Stylized illustration showing cybersecurity elements like shields, padlocks, and secure cloud icons on a neutral, minimalist digital background

    Microsoft Announces Security Advancements

    Microsoft has announced major security advancements across its product portfolio and practices. The work is part of its Secure Future Initiative (SFI), a multiyear cybersecurity transformation the company calls the largest engineering project in company history.