Minimum Technical Requirements for Casino Electronic ...file/Final-CEMS-Standards-Dec-2015-WO… ·...
38
Minimum Technical Requirements for Casino Electronic Monitoring System of the Gambling Act (Casino Gambling Equipment) Minimum Standard 2004 15 March 2011 Updated 21 June 2011 Updated 27 June 2012
Transcript of Minimum Technical Requirements for Casino Electronic ...file/Final-CEMS-Standards-Dec-2015-WO… ·...
Minimum TechnicalRequirements for Casino Electronic
MonitoringSystem
of the
Gambling Act (Casino Gambling Equipment)Minimum Standard 2004
15 March 2011
Updated 21 June 2011
Updated 27 June 2012
Updated 17 December 2015
1. Introduction..............................................................................................................3
1.1. Purpose............................................................................................................3
1.2. Scope...............................................................................................................3
1.3. Approval and Certification.............................................................................4
1.4. Access by Duly Authorised Officers..............................................................6
2. EGM Monitoring, Configuration and Control Requirements..................................6
2.1. CEMS Outcomes............................................................................................6
2.2. Metering..........................................................................................................7
2.3. Configuration Database..................................................................................8
2.4. Search and Report Functions..........................................................................8
2.5. Gambling Equipment Interface Device...........................................................9
3. CEMS System Requirements.................................................................................10
3.1. System General.............................................................................................10
3.2. Information Security Management System...................................................11
3.3. Password Protection......................................................................................11
3.4. Network and Communication.......................................................................11
3.5. Encryption.....................................................................................................12
3.6. Back-house System Computer Room...........................................................12
4. Table monitoring....................................................................................................13
5. Promotional System...............................................................................................13
5.1. Loyalty Systems............................................................................................13
5.2. Promotion Management Systems..................................................................15
5.3. Card Reading................................................................................................16
5.4. Pre-Commitment Facility…………………………………………………...17
5.5. Front Money Electronic Credit Transfer…………………………………...18
2
3
Minimum Technical Requirements for Casino Electronic Monitoring Systems
1. Introduction1.1. Purpose1.1.1. This document defines minimum core principles, requirements and outcomes
for a Casino Electronic Monitoring System (“CEMS”) for the electronic monitoring, configuration and control of gambling equipment such as electronic gaming machines (“EGM”), jackpot equipment and table games.1
1.2. Scope1.2.1. This minimum standard applies to all new CEMS.
1.2.2. Any currently installed DACOM must continue to conform to the Gaming and Monitoring Equipment Standards – Division IV (“G.A.M.E.S”) under which they were approved.
1.2.3. Approved gambling devices2 installed and in operation on a DACOM CEMS continue to be approved for connection to a replacement CEMS providing there is no reduction in the level of monitoring and functionality of the gambling device when connected to that new CEMS.
1.2.4. The ASP 1000 and ASP 2000 EGM protocols are acceptable under this standard. On application and approval by the Secretary for Internal Affairs (“the Secretary”), any subsequent revisions of those EGM protocols will be acceptable if the revision does not result in a lesser degree of compliance with this standard.
1.2.5. Any other EGM protocol providing an identical or better degree of compliance with this standard will be considered on application to the Secretary. As a minimum, any other EGM protocol must maintain compatibility with the Australian/New Zealand National Standard for Gaming Machine Equipment (“NS”).
1.2.6. It is permitted where a monitoring system does not use the ASP protocol natively that it can provide protocol translation converters at any stage of the network.
1 Legislative requirements including health or safety matters, privacy or requirements concerning,, for example, electrical wiring and or radio frequency emission etc are the domain and responsibility of the manufacturer, purchaser and operator of the equipment. Parties are required to ensure full compliance.
2 The generic term gambling device and EGM are used interchangeably throughout this document. The term “gambling device” also includes, as appropriate, jackpots and other electronic equipment related to table games
4
1.2.7. Where conformance to a specific requirement(s) of the Gambling Act (Casino Gambling Equipment) Minimum Standard 2004 is not detailed in this document, then those minimum standards apply as applicable.3
1.2.8. Unless specifically excluded by the requirements of this document, any available Information Technology (“IT”) industry standards and/or guidelines such as those recommended by Standards New Zealand, the gambling industry or system suppliers for IT design, installation, operation, maintenance and security should, where possible, be utilised.
1.2.9. Where other gambling equipment such as Player Loyalty Systems and Promotional Systems connect to a CEMS for the upload and/or download of data or the provision of EGM screen overlay functions, then this standard applies to the interconnections between these systems. This requirement covers the connection both physical and protocol based to and from the CEMS including the interface at each end.
1.3. Approval and Certification1.3.1. The hardware and software of a CEMS and any subsequent additions or
modifications must be tested by an Accredited Test Facility (“ATF”) and have approval from the Secretary that the CEMS conforms to the requirements of this document before it can be installed. The approval of any subsequent additions or modifications will indicate whether further notice is required under section 1.3.1a.
1.3.1a A casino operator must provide notice in writing to the Secretary that it considers, on a reasonable basis, that the installation of the CEMS and any subsequent additions or modifications conforms to the requirements of this standard, on-site requirements including supplier recommendations and the approval granted under section 1.3.1.
i. The notice must specify the process and scope of the testing undertaken.
ii. Unless prior agreement has been given by the Secretary this notice must be provided no later than 3 months from the initial date of install of CEMS or any subsequent additions or modification
1.3.2. The CEMS design and configuration must be such that an adequate baseline can be taken of the CEMS. Baseline software includes that software required to implement a CEMS to meet the requirements of this document.
1.3.3. Each software revision must be separately evaluated by an ATF.
1.3.4. Software (e.g. individual application files) must be clearly labelled and contain sufficient information to identify the version and any modification. The identification used is at the discretion of the supplier but it must strictly
3 The current Australian/New Zealand Gaming Machine National Standard details general hardware and software requirements that include, for example, the provision of manuals, security of equipment, printed circuit board, critical memory design etc.
5
follow that supplier's identification system as detailed in the supplier's software change control procedures.
1.3.5. There must be a method by which to audit and verify that the ongoing integrity of the CEMS baseline software and configuration is identical to that approved.
1.3.6. CEMS source code suitably documented including the supply of any necessary compiler, assembler or linker etc. whether commercially available or propriety must be made available on demand to any ATF contracted for the purposes of approving a CEMS.
1.3.7. It is sufficient for an ATF as part of its certification process to accept a test report from another acceptable testing authority for any identical component or sub-part of a CEMS that the testing authority has previously certified and providing it allows for a determination of compliance with any specified requirements that are in this standard. An acceptable testing authority can be another ATF or a testing facility acceptable to the CEMS certifying ATF.
1.3.8. There must be provision for an ATF to utilise a fit for purpose in-house and/or external test environment to:
i conduct or have verified necessary testing of CEMS changes and additions,
ii allow interoperability testing on gambling equipment to be connected to the CEMS, and
iii enable the diagnosis of problems.
1.3.9. If live systems are used as the test environment, it must not be possible to interfere with the operation of the system or data stored on the live systems and/or any gambling equipment installed other than that under evaluation.
1.3.10. Interoperability testing is required to be completed and certified for any gambling device which is to be connected to a CEMS. As a minimum, this testing must confirm that the CEMS can connect to this equipment and perform basic control, configuration, and data collection/transfer functions.
1.3.11. Interoperability testing is CEMS specific but only needs to be conducted once for each type of gambling equipment (i.e. each piece of equipment need not be tested) where a specific and identical CEMS is installed at different casino venues irrespective of size of the CEMS installation.
1.3.12. Interoperability testing is only required for new items of gambling equipment or where revisions of a base software EGM protocol have occurred. The nature and extent of interoperability testing this equipment is to be determined by the ATF in reference to this standard.
1.3.13. The interface and connection of a gambling device to the CEMS must not cause that gambling device to be operated outside of its approval (e.g. the connection of a monitoring interface card must not cause undue power drain on the EGM).
6
1.4. Access by Duly Authorised Officers1.4.1. Authorised staff employed by the Department must be able to access and
inspect the CEMS at any time.
2. EGM Monitoring, Configurationand Control Requirements
2.1. CEMS Outcomes2.1.1. A casino operator must implement a CEMS capable of performing the
following functions:
i. fault-redundant collection and retention of individual gambling device financial data and other real-time meter data,
ii. logging, reporting and searching of gambling device events,
iii. capability of issuing real-time commands to gambling devices for configuration, control and meter data extraction,
iv. reconciliation of meter data against external count such as cash count, hopper level, ticket/token or electronic funds transfer,
v. recording the amount and type of EGM credit input (e.g. cash, token, ticket, card, electronic funds transfer (“EFT”), downloaded jackpots, promotional/loyalty credits) for each EGM,
vi. recording the amount and type of EGM credit output (e.g. cash, cancel credit, ticket) for each EGM,
vii. configuration and control of the gambling equipment,
viii. performance reporting,
ix. systems security,
x. real time commands to the casino surveillance system,
xi. validation of tickets/vouchers/tokens/player account cards where these are permitted4,
xii. the ability to manually or automatically send control codes to a gambling device to disable/enable all gambling operations on that device when necessary (e.g. on failure of a signature check),
4 Note: This standard does not imply that TITO and Cashless Electronic Funds Transfer, unless specifically stated, are permitted other than those devices which were in operation prior to 1 July 2004.
7
2.1.2 Where appropriate support by gambling device protocol is available, automatic signature checks:5
i. of EGM software must occur in accordance with NS requirements and other gambling devices as required;
ii. must be initiated daily and on demand by generating and communicating a variable seed; and
iii. are mandatory following a grace period of 6 months from date of protocol implementation.
2.2. Metering2.2.1. Real-time meter or event data is generated in real-time by the gambling
devices. This data may subsequently be modified by the CEMS if required. However, it must not be possible to alter real-time values without retaining a log history of any changes.
2.2.2. It must not be possible to amend or delete any log entry or the log itself which details changes in meter or event data.
2.2.3. EGM real-time meter and event data, configuration data and game play statistics are to be stored fault-tolerantly in the CEMS host. They may also be held temporarily at intermediate points in the CEMS. Once stored fault- tolerantly in the host then any intermediate storage device and EGM can have their data purged or erased as appropriate.
2.2.4. Meter and event data must be stored and be readily retrievable for a period of 7 years. As a minimum the last 24 months’ data should be immediately accessible for report and search purposes.
2.2.5. Real-time meter data retrieved from an EGM must be stored as gross value and not as an incremental or delta value.
2.2.6. As a minimum those meters, their units and events as detailed in the NS are to be collected by the CEMS.
2.2.7. Meter requirements for other gambling devices such as live keno terminals are treated on a case-by case basis.
2.2.8. The CEMS must not assume that any data it receives from an EGM is ever correct. Strict integrity checks must be applied before processing any EGM data at all times.
2.2.9. The CEMS must report all instances where it receives no end-of-day meter values or has received a suspect meter value.
2.2.10. CEMS meter storage, handling and processing must be able to deal with minimum meter width, expected rate of meter counts, and be sufficient to
5 Note: Signature checks to at least NS requirements using a random seed will be acceptable as a replacement audit check for external verification of a Programme Storage Device due to large win etc.
8
cater for any meter wrap events (i.e. detect and correctly handle meter wraps), and so preserve the true total data.
2.2.11. Only approved control functions of gambling devices may be implemented. These control functions are as specified in the CEMS and associated ASP protocol documentation.
2.2.12. All events recorded are to be individually time stamped.
2.2.13. Where meter and event data is not sent by the gambling device in real-time (e.g. is not using an event based protocol such as ASP), then the CEMS must poll and receive such meter and event data in a period of no more than every two seconds.
2.3. Configuration Database2.3.1. The following data must be maintained for each gambling device:
i. unique location and status (e.g. enabled for play, lock-up mode etc),
ii. unique hardware device description (e.g. serial number, manufacturer, DIA approval number),
iii. software description (i.e. game name and base including DIA approval numbers),
iv. individual configuration details (i.e. denomination, software version installed, games available, progressive status),
v. turnover linked gaming group configuration details such as progressive jackpot pool membership,
vi. a history of upgrades, movements, and re-configurations,
2.3.2 The CEMS must have a capability to authenticate the identity of a gaming device before it is enrolled to the system.
2.4. Search and Report Functions2.4.1. The search and report software is to provide comprehensive search and report
mechanisms for the purpose of:
i. examining events and statistical data including data from individual player loyalty and/or pre-commitment carded play,
ii. verifying the financial activity of all gambling devices connected,
iii. verifying the integrity of gambling devices.
2.4.2. The search mechanisms should cater for a variety of "keys" for the search, including, for example, date, time, event number, machine/terminal number.
2.4.3. The search and report mechanisms should include both dynamic and static report access. Any licence fees payable for the use of propriety search and reporting software and/or additional or specialised hardware or software must be provided for by the casino operator.
9
2.4.4. The CEMS must have the ability to provide both local and remote access for search and report mechanisms. The following conditions are applicable:
i. the local link is to be on-line real-time within the secure casino operator’s network,
ii. remote access to the CEMS may be in the form of access to an image or copy of the relevant database rather than the actual database or CEMS itself,
iii. these links must interface and be able to be used from a Department of Internal Affairs (“DIA”) standard desktop install.
2.4.5. By agreement with DIA, a minimum set of standard reports must be run on an agreed schedule and as required on-demand; and
i. there must be provision for DIA to request and receive additional ad-hoc reports, and
ii. the provision of all reports must be in both an acceptable to DIA document and electronic data interchange format. (For example, the document format whether in electronic or physical form, could be PDF or doc; while electronic data interchange could be XML with agreed schema, CSV, or such other electronic format).
2.5. Gambling Equipment Interface Device2.5.1. It is permissible for a gambling device to interface to the CEMS via an
interface device that communicates configuration and control commands and receives and stores meter and event data provided it does so either as data is generated in real-time and/or by a poll/response cycle of no more than 2 seconds.
2.5.2. Significant event data (e.g. gambling device security events, signature failure, hand pay required etc) must be communicated to the CEMS and acted upon by the CEMS within the time constraints in 2.5.1.
2.5.3. An interface device or any other intermediate device, such as a gateway device, that stores and maintains buffered/logging information containing EGM meter and event data must conform to the Critical Memory requirements of the NS.6
2.5.4. If EGM data is stored in an interface device or uploaded in real-time to the CEMS, then an EGM is not required to have hard meters installed.
2.5.5. In the event of a loss of communication and/or failure of an interface device to store or continue to store EGM data such that EGM meter and event data will be overwritten, then the device must cause the EGM to disable.
6 Note: If an interface device stores and forwards data within the 2 second period allowed for a poll/response environment then it need not conform to these critical memory requirements.
10
3. CEMS System Requirements3.1. System General3.1.1. The CEMS must have sufficient load capacity (processing, memory,
communication interfaces and storage) to efficiently monitor and control all gambling devices within the casino.
3.1.2. A casino operator must not allow additional gambling equipment to be connected beyond the theoretical load capacity for the system.
3.1.3. The CEMS must be secure and able to be audited and operated correctly. As a minimum:
i. The CEMS must support setting up of role based access control accounts where users are allowed access to only program and menu items related to their job functions.
ii. The CEMS must have the capability to automatically monitor, record and notify access by any person to files and databases containing secure and critical data.
iii. All successful and unsuccessful (i.e. locked out) access attempts to CEMS host must be recorded in an audit trail.
iv. Downloads or uploads of code and configurations from or to CEMS host must be secure.
3.1.4. Only approved programs, data files and operating system files may reside on a disk or in the memory of CEMS servers. In particular, editors, compilers, assemblers and data manipulation programs (other than as a part of the normal program suite) must not be available anywhere on the system.
3.1.5. Antivirus and malware protection and detection must be provided where appropriate.
3.1.6. Firewalls including physical and/or logical subnets or any other industry acceptable methods must be utilised to protect against unauthorised access.
3.1.7. A change control system must be operated and maintained for the system software.
3.1.8. It must be possible to restore the CEMS with no loss of data due to any failure to equipment or otherwise. As a minimum:
i. regular and periodic back-ups of data must be carried out, and
ii. these back-ups should be stored off-site, or
iii. a real-time copy of the data must be held in at least one other geographical location.
3.1.9. The current local date and time must be maintained centrally to at least the nearest second and should never be inaccurate by more than 5 seconds and used:
11
i. as a system clock for all timed references (e.g. events, configuration changes etc),
ii. to initialise, verify and update at least once per day the EGM date/time.
3.1.10. Any dates displayed must be in Australian/New Zealand format either as “dd, mm, yy” or “dd/mm/yy” or “dd, MMM, yy” (where MMM is, at least, an alphabetical 3-character representation of the month. Note that “yy” may also be “yyyy”).
3.1.11. Any change in date/time must not result in ambiguous time event data associated with any CEMS or gambling device activity.
3.1.12. CEMS items (e.g. servers, gateways, communication controllers etc) located in any area not restricted to authorised personnel must be securely housed, physically locked, and have door open sensors.
3.2. Information Security Management System3.2.1. The casino operator must have in place an information security management
system for information security management giving assurance that risks to the CEMS and associated information assets and infrastructure including on- going changes, are continuously maintained within acceptable information security bounds. This system must be to acceptable IT industry standards and regularly reviewed and audited.
3.3. Password Protection3.3.1. The operating system of the CEMS must provide comprehensive password
security.
3.3.2. It is expected that all programs and important data files can be accessed only by entry of a password which will be known only to authorised personnel.
3.3.3. The storage of passwords and PINs must be in an encrypted, non-reversible form.
3.3.4. A program must be available that will list all registered users on the system including their privilege level.
3.4. Network and Communication3.4.1. All communications must use a protocol-based communications scheme for:
i. Communication to/from gambling devices. An external jackpot controller or communications interface via a "wiring harness" is acceptable provided that security or metering information is not able to be readily compromised.
ii. Communication from the jackpot controller or interface to the CEMS must be protocol based.
3.4.2. Communication protocols must include the following:
12
i. Either synchronous or asynchronous communications.
ii. Error control and correction to ensure an accuracy of 99% or better is achieved. The sole use of either parity or simple checksum byte is not acceptable.
iii. Flow control.
iv. Link control (remote connection).
3.4.3. Communication must be on-line real-time where:
i. linked progressive jackpots are operated, and
ii. there is any form of cashless play involving the electronic transfer of funds.
3.4.4. Where any data (e.g. credits, metering and event data, data pertaining to a game outcome, etc.) are transferred between microprocessors or sub-systems internal or external to a gambling device, there must be a form of error detection and correction on the transferral.
3.4.5. Where communication is required to be implemented, such that more than one gambling device may communicate using the same transmission medium, a device's communications port must operate within a 1% tolerance of the required baud rate.
3.4.6. Under this standard, the use of wireless communication is not permitted within the network.
3.5. Encryption3.5.1. All critical data communication that may affect revenue and is unsecured
either in transmission or implementation must employ encryption. The encryption logarithm must employ variable keys or similar methodology to preserve secure communication.
3.6. Back-house System Computer Room3.6.1. Back-house systems refer to any system and communications equipment that
is located in an area only accessible to authorised personnel (e.g. CEMS host computer, a server room, jackpot control system, table management systems etc).
3.6.2. The back-house system computer room(s) must be a secure area for entry or access to particular equipment, and:
i. must have an electronic locking system that provides logged information on entry and exit by personnel;
ii. must have a system that as a minimum detects unauthorised entry to the computer room.
13
Environmental controls
3.6.3. It is acceptable if due to the size of the operator’s venue and server equipment it is not be possible or desirable to implement in full the requirements of this section. However, the intent of these requirements should be met as possible.
3.6.4. Industry standard environmental practices must be in place to manage possible short and long term risks against environmental exposure (e.g. power failures, flooding, fire, etc). This would likely include environmental measures such as an uninterruptable power supply, air-conditioning, smoke or heat detectors, and water detectors.
3.6.5. Power and data cables into and out of gambling equipment must be routed so that they are not accessible to the general public.
3.6.6. Data cables must be routed away from internal sources of electrical noise, including power cables.
3.6.7. Cables must not be routed or left unrestrained so that they interfere with the removal of components required to be removed during routine operation or maintenance.
4. Table monitoring4.1.1. Requirements for table game monitoring as detailed in game rules will
continue to apply. A CEMS must integrate with table game monitoring as appropriate under the general requirements for CEMS detailed in this document.
5. Promotional Systems5.1. Loyalty Systems5.1.1. Should a CEMS connect to a loyalty programme system, these standards
apply to that system notwithstanding section 1.2.9.
5.1.2. A player loyalty system may be connected to CEMS for the collection and download of data.
5.1.3. Any such system must include a player interface at the EGM providing for the insertion of a membership card. The system must incorporate a secure and robust method for accurately collecting EGM data from the CEMS to credit a player’s loyalty account in accordance with the terms and conditions attached to the player loyalty programme and any promotional terms and conditions. Similarly where the system enables loyalty account data to be transferred to the EGM it must do so in a secure, robust and accurate manner.
5.1.4. A player’s loyalty account must distinguish, log and provide an adequate audit trail for all:
i. credits in, played, won and redeemed;
14
ii. promotional activities and promotional play entered including any promotion credits and type of promotional credits earned; and
iii. promotional credit activity such as promotional credit download/upload from an EGM, exchanges for promotional chips, promotional chips redeemed and promotional credits exchanged for cash or merchandise.
iv. Front money account transaction download activity.
5.1.5. For the purpose of 5.1.4, sufficient detail must be retained that show how credits were input (e.g. cash, tickets), how credits were won (e.g. game play or external jackpot), and how credits were redeemed (e.g. cash, ticket).
5.1.6. Where jackpot win data is not automatically added to EGM meters, there must be provision for that data to be manually input into a player’s loyalty account as applicable.
5.1.7. The player interface may take the form of a screen display attached to, incorporated within, or overlaid on the EGM screen. The use of any on-screen overlay display must not interfere or compromise any display of approved base game or game information. For example, resizing of the display must not cause the game played and/or game information to no longer comply with the NS requirements under which the game was approved.
5.1.8. As a minimum, when a player card is inserted to commence play, a snapshot must be taken of the turnover, cash-in and cash-out meters. When a card is removed following the cessation of play, a snapshot must be taken of the turnover, cash-in and cash-out meters.
5.1.9. Any additional equipment or software installed in a gambling device for the purpose of facilitating a player loyalty system must not compromise EGM hardware and/or software approvals.
5.1.10. A player loyalty system may enable loyalty members to accrue points based on the terms and conditions attached to the programme, be gifted points by the casino operator, and to win points in accordance with the terms of any promotion.
5.1.11. The criteria by which the rate of loyalty point accumulation is determined must not include: 7
7 These restrictions are not intended to restrict different rates of loyalty point accumulation based on membership status in any loyalty programme or any standardised methodology by which table
15
game turnover is calculated.
16
i the denomination of an EGM or minimum table wagers;
ii levels of a player’s loss;
iii average wager size;
iv length of play; or
v any other basis determined by EGM or table metered information with the exception of turnover.
5.2. Promotion Management Systems5.2.1. Should a CEMS connect to a promotion management system, these standards
apply to that system notwithstanding section 1.2.9.
5.2.2. Any system connected to the CEMS to facilitate promotional activity in a casino must not compromise the integrity of the CEMS or any associated EGM equipment.
5.2.3. Loyalty programme or promotional points may be redeemed electronically for rewards or entry to promotions based on the terms and conditions attached to the particular casino’s loyalty programme and/or the conditions of the promotion as the case may be. Where the system allows points to be downloaded to an EGM in the form of credits, the following requirements apply:
i. Promotional credits/points may only be downloaded to a player’s loyalty account for downloading to the EGM. Promotional credits must not be downloaded directly to an EGM.
ii The CEMS must record all credits downloaded from a player’s loyalty account to an EGM. Where there are specific restrictions attached to the use of those credits (e.g. may only be downloaded where an equivalent value of credits has first been played) the system must categorise those credits and distinguish them from other credits which are downloaded. The CEMS must record the date/time the credits were downloaded, the EGM they were downloaded to, their value, type and the account from which they were downloaded.
iii. Credits downloaded to an EGM from a player’s loyalty account must increment the EGM’s money-in meter and the player’s credit meter. If the downloaded credits are played, cashed out or result in wins, they must increment the relevant meters in the normal manner. Where the credits are played, any wins arising from that play must increment the wins meter in the normal manner.
5.2.4. Any promotional credits awarded due to the use of a gambling device must be recorded by the CEMS indicating the player ID, EGM ID, amount, type of promotional credit and date/time.
5.2.5. A promotional system must be able to produce logs and data for all complete promotional activity by promotion, contributing EGM or table and this data
17
must be able to be accessed by search and reporting software as required by the section in this Standard titled Search and Report Functions (see Section 2.4).
5.2.6. A promotional system where a promotion involves EGMs or table play must log all promotional design activity including any changes to parameters that impact on any individual promotion (e.g. any eligibility restrictions, method of draw, contributing EGMs or tables).
5.2.7. Where a promotional activity or transaction makes use of an EGM to display, control or allow play on an external promotional feature (e.g. utilising EGM device buttons and screen display) then this must not interfere or compromise any display or play of an approved base game or game information that is in progress of being played.
5.2.8. Any promotional activity or transaction must be clearly distinguishable by the player from the normal game play activity of a gambling device.
5.2.9. Any additional equipment and software installed in a gambling device for the purpose of facilitating promotional activity must not compromise EGM hardware and/or software approvals.
5.2.10. Where a promotion facilitated by the CEMS is based on chance or a random event, winners must be determined using a suitable RNG which conforms to the requirements of the NS.
5.2.11 Consideration-based promotional activity must not include entry or determination criteria which is dependent on:
i the denomination of an EGM or minimum table wagers;
ii levels of a player’s loss;
iii average wager size;
iv length of play; or
v any other basis determined by metered information with the exception of turnover or wins. 8
5.2.12 Any transfer of promotional credits to an EGM must be configurable to allow for transfer limits to a player’s credit meter or bonus play.
5.2.13 Signage denoting the availability of a promotion’s terms and conditions must be conspicuously displayed in the gambling area. Where a promotional system incorporates an on screen overlay display on the EGM, that display should note the availability of terms and conditions applicable to promotional activity on that EGM.
5.2.14 If communication is lost between any promotional system, CEMS and EGM or table then promotional transfers must not be able to be processed and the player informed.
8 These restrictions are not intended to restrict any standardised methodology by which table game turnover is calculated.
18
5.3 Card Reading5.3.1 There should be a secure method for player loyalty card reading and security
of card information.
5.3.2 Each insertion and removal of a player card must be a logged event with a corresponding time-stamp.
5.4 Pre-commitment Facility5.4.1 As a minimum, a pre-commitment facility must be available when a CEMS
offers promotions at gaming machines in terms of section 5.2 “Promotion Management Systems” of these standards. This requirement comes into force on 31 December 2012.
5.4.2 Access to a pre-commitment facility must be through the use of the player card. The pre-commitment facility must be available on EGMs.
5.4.3 Each time a player loyalty card is placed in an EGM, the player must be offered the choice of utilising the pre-commitment facility unless a player has already set pre-commitment limits.
5.4.4 A pre-commitment facility must, at a minimum, allow a player to select, set and alter play time and/or net loss limits. A minimum of one time limit and one net loss limit must be offered for selection at an EGM. The facility must allow a player to choose one or both of these limits at an EGM.
5.4.5 As a minimum, the facility must be able to offer play time limits which include:
i Limits of hours in a 24 hour period;
ii Limits of days in a week;
iii Limits of days in a month;
iv Limits on the number of consecutive days gambling can occur.
5.4.6 As a minimum, the facility must be able to offer net loss limits which include the amount a player is prepared to lose per:
i 24 hour period; and/or
ii week; and/or
iii month.
5.4.7 For the purpose of 5.4.5 and 5.4.6:
i the 24 hour period must be configurable by the casino operator;
ii for the purpose of calculating “hours” as a limit, time is accrued while the player card is active in the CEMS;
iii “days” are defined as the days of the week;
iv “net loss” for the purpose of this section of the Standards is defined as “ losses – wins”.
19
5.4.8 The availability of the limits in 5.4.5 and 5.4.6 must be configurable by the casino operator. That is, the facility must allow the casino operator to choose whether some or all of the above limits are available on any given configuration.
5.4.9 In addition to section 5.4.4, it must be possible for players to select, set and alter one or more of the limits adopted by the casino operator through a mechanism other than an EGM.
5.4.10 A pre-commitment facility must have a mechanism which consistently manages any roll-over of limits set within the 24 hour period referenced in5.4.5 and 5.4.6. The treatment of any roll-over period must be clearly communicated to players.
5.4.11 A pre-commitment facility must have functionality that allows it to be configured by the casino operator with default limits when a player elects to use the facility. If this functionality is utilised, a player must be able to set their own limits which may be more or less than the default.
5.4.12 A pre-commitment facility must have functionality that allows it to be configured by the casino operator with a warning to a player when a net loss limit is approaching. This warning must occur within a configurable percentage of the set limit (e.g. at 10% representing net losses of $90 having occurred within a $100 limit).
5.4.13 A pre-commitment facility must also have a visual alarm to alert a player when a limit has been reached.
5.4.14 A pre-commitment facility must have a mechanism to immediately alert the casino operator when a limit has been reached. The alert must indicate, as a minimum, the player ID, gambling device ID and location.
5.4.15 Once a pre-commitment level is reached, it must not be possible for the player to continue to accumulate loyalty points and enter promotions for at least 24 hours or any longer period set by a casino operator.
5.4.16 A pre-commitment facility must allow a player to exit pre-commitment or alter their limits at any time. If the limit is relaxed, the facility must not action the new limit for at least 24 hours and must ask the player to reconfirm the decision prior to it taking effect.
5.4.17 Player records associated with a pre-commitment facility including records of all decisions to set or amend limits and all breaches of limits must be retained for a period not less than 7 years. All such records must be retrievable.
5.4.18 All communication between the EGM and CEMS for the purposes of sections5.4.13 to 5.4.15 must occur as soon as possible and be treated as a high priority response.
5.5. Front Money Electronic Credit Transfer
InterpretationLoyalty Card means a card used in a casino loyalty programme where all transactions involving the use of the card are recorded against a player’s account.
20
Cash equivalent credits are cashless credits electronically downloaded to a gaming machine where any one credit has an equivalent whole dollar cash value.
VIP means a player who is a member of the casino loyalty programme and has VIP status according to the terms and conditions of the programme or the relevant casino policy that is in force at the time.
5.5.1 A “front money account” for the purposes of this section is a casino deposit account into which a player deposits funds at the casino cage/cash desk that can be used for the purpose of downloading cash equivalent credits to a gaming machine.
5.5.2 The player is a member of the Casino Loyalty Programme and has been issued with a valid player loyalty card.
5.5.3 If a Casino Electronic Monitoring System (CEMS) provides a system for the single or multiple download transactions of a cash equivalent credit amount from a front money account to a gaming machine, these standards apply to that system not withstanding section 1.2.9
5.5.4 A pre-commitment facility, in accordance with section 5.4, must be available for player use and presented as an option when a CEMS offers front money electronic credit transfers.
5.5.5 A Player’s Front Money Account cash balance can be downloaded to an EGM in the form of cash equivalent cashless credits provided that:
i. The gaming machine is enabled for play and is not in a non-playable state (such as fault conditions, audit mode, demonstration mode, and tournament mode for example);
ii. A player’s front money account and a player’s loyalty card account are linked;
iii. A player’s loyalty card is inserted into the EGM card reader and correctly authenticated before any front money account cash equivalent credits can be downloaded;
iv. Player Card Authentication requires, at a minimum, the use of a 4-digit pin number or other protected means;
v. A player has selected a download amount for any one transaction download that is less than or equal to but does not exceed:
a. $5,999 for a VIP member of a casino loyalty programme
b. $500 for a non-VIP member of a casino loyalty programme
vi. There is no restriction on the number of separate transaction downloads providing the sum total of the credit amount downloaded does not:
a. Exceed the cash balance of the player’s front money account; or
b. Exceed any gaming machine configured limits for cash equivalent credit download e.g. maximum credits allowed on players credit meter.
vii. Partial transfer is acceptable providing the player is clearly notified that the transaction was for a lesser amount than that requested.
21
viii. For each download transaction a system generated electronic alert must be sent by the CEMS to designated staff.
5.5.6 Once front money account credits are downloaded to a gaming machine credit meter these credits or any other credits on the EGM credit meter cannot be uploaded back to the front money account or any other account. That is, following a download of cash equivalent credits from a front money account the CEMS must not accept any request to upload credits. An EGM can only use credits for play or cash-out.
5.5.7 The EGM Player Interface must be capable of providing, on request, details of every download transaction initiated which, as a minimum, must show
i. The type of transaction e.g. front money account credit download
ii. The transaction value
iii. The date and time of transaction
iv. The player’s loyalty account number or a unique transaction number, either of which can be used to authenticate the source of downloadable credits
v. Either confirmation of a transaction or, if the transaction failed, a descriptive message indicating why the transaction did not complete e.g. communications failure, insufficient funds.
