This session, presented by the Affiliate Third Party Payment Processors Association (TPPPA), will explore the distinct functions and purposes of policies versus procedures. Policies are directives from the Board designed to implement controls that mitigate risks to the organization’s payment processing program. Procedures provide the detailed instructions for implementing those policies at a functional level.
The session will emphasize the importance of documentation, approvals, and employee acknowledgment—with policies approved by the Board, procedures approved by management, and both implemented through regular employee training. Version control, tracking of changes, and archival of previous policies and procedures will also be addressed to ensure program integrity and compliance.
Presented through TPPPA