Ask Reggi Your Question Now
Can you summarize 58 PACO Section 811a.6?
Interactive Gaming Accounting and Internal Controls > Interactive gaming certificate holders or interactive gaming operators organization.
Short Summary
This document outlines the requirements for the systems of internal controls of interactive gaming certificate holders and interactive gaming operators. It mandates the inclusion of organization charts depicting segregation of functions and responsibilities, as well as descriptions of duties and responsibilities for each position. The document allows flexibility in tailoring organizational structures to meet specific needs or policies. The internal controls must provide for a system of personnel and chain of command, segregation of incompatible functions, performance in accordance with sound financial practices, and practical areas of responsibility. Additionally, an information technology department supervised by a licensed key employee is required, along with an information technology security officer and an interactive gaming manager, both licensed as key employees. The information technology director is responsible for the integrity of data, quality of computer systems and software, and various security measures. The information technology security officer is responsible for maintaining access codes, reviewing logs, coordinating security policies and training programs, ensuring compliance with information security policies and rules, and addressing security breaches. The interactive gaming manager oversees the proper operation and integrity of interactive gaming and reports suspicious behavior. Overall, this document establishes the necessary controls and positions to ensure the secure and efficient operation of interactive gaming systems.
Whom does it apply to?
Interactive gaming certificate holders, interactive gaming operators, licensed entities involved in the operation of the interactive gaming system
What does it govern?
Organization charts, segregation of functions and responsibilities, personnel and chain of command, incompatible functions, sound financial practices, information technology department, information technology security, information security policies, education and training program, compliance with information security policies and rules, incident reporting and response system, risk assessment program, latest information technology security and privacy legislation
What are exemptions?
No exemptions are mentioned.
What are the Penalties?
No penalties are mentioned.
Jurisdiction
Pennsylvania