La. Admin. Code tit. 42 § III-2819

Current through Register Vol. 50, No. 11, November 20, 2024
Section III-2819 - Application Controls
A. Application controls shall include procedures that provide assurance of the accuracy of the data input, the integrity of the processing performed, and the verification and distribution of the output generated by the system. Examples of proper controls include:
1. proper authorization prior to data input, for example, passwords;
2. use of parameters or reasonableness checks; and
3. use of control totals on reports and comparison of them to amounts input.
B. Documents created from the above procedures shall be maintained for a period of five years.
C. Computer Control
1. The delete option within an individual program shall be secured so that only authorized users can execute it. The delete option shall not allow for the deletion of any gaming transaction or void.
2. A licensee and casino operator shall require employees and vendors to change passwords in accordance with documented password security best practices, as specified in the internal controls. Password complexity shall be of sufficient strength to ensure security against false entry by unauthorized personnel.
3. The secured copies, restricted copies, and other electronically stored documents required by these rules and those necessary to calculate gaming revenue and expenses shall be retained for five years.

La. Admin. Code tit. 42, § III-2819

Promulgated by the Department of Public Safety and Corrections, Gaming Control Board, LR 442018 (11/1/2018).
AUTHORITY NOTE: Promulgated in accordance with R.S. 27:15 and 24.