N.J. Admin. Code § 17:20-12.11 - General requirements for courier service website, mobile application, and system

(a) Technologies related to courier service customer accounts and ticket sales, including data warehouse, redundant/failover system, or backup systems relating to the courier service website or mobile application shall be physically located in the United States. Any redundant/failover system, or backup systems shall be located on an alternative power grid within the United States. Other supporting or ancillary technologies are not subject to the requirements of this section.

(b) The courier service system, including website and mobile application, shall adhere to cyber security best practices for the security of its systems, including the data, servers, and network(s) contained within, and shall have sufficient audit logs for purposes of tracking activity within the courier service system by both courier service employees and courier customers.

(c) The courier service system shall at all times deploy a geolocation software system that will permit courier customer orders for ticket purchases be made only from within the borders of the State of New Jersey. Once logged on, the geolocation software shall detect the physical location of the courier customer every 10 minutes. If the system detects that the physical location of the courier customer is in an area unauthorized for ordering tickets, the system shall not accept orders for ticket purchases until such time that the courier customer is within the borders of New Jersey. Geolocation is not required for creating an account, logging into an account, funding an account, or any other action that does not involve ordering tickets. The geolocation software that the courier deploys must be tested and approved pursuant to N.J.A.C. 17:20-12.14. Such testing and approval shall be obtained at the courier's expense. In the event that the courier service system is not deploying the geolocation software, the courier service system shall suspend all orders for ticket purchases until such time the geolocation software is functioning properly.

(d) The courier service shall at all times deploy age verification software that will permit logon and purchases to be made only by those 18 years of age and older. In the event that the courier service system is not deploying the age verification software, the courier service system shall suspend all courier services to courier customers until such time the age verification software is functioning properly. Any sale of a ticket or share to any person under 18 is a disorderly person offense, pursuant to the State Lottery Law, and in addition to the consequences for the disorderly persons offense, such sale shall also be grounds for suspension, revocation, or termination of the courier service. Additionally, the Director may impose fines, penalties, and/or a corrective action plan pursuant to N.J.A.C. 17:20-5.1(e), 5.3, and 9, in addition to other actions permitted under the law.

(e) A courier service system shall, at a minimum, include the following features consistent with its application as approved by the Director:

1. The courier service applicant must propose a daily courier customer request spend limitation of an amount approved by the Director, which may provide that prize amounts under $ 600.00 awarded to a courier customer and credited to the courier customer's account may be excluded from the daily spend limit. See N.J.A.C. 17:20-12.12(k);

2. The ability for a courier customer to set a lower personal daily spend limit;

3. The ability for a courier customer to suspend his or her account or to self-exclude use of his or her account for the purchase of tickets;

4. A waiting period, as proposed by the courier service and accepted by the Director, before a courier customer can raise a previously set personal daily spend limit;

5. A courier customer and ticket management system that includes a secure database of all tickets requested through the courier service system; and

6. At a separate physical location, a secured system or backup system capable of continuing business operations/functionality within a reasonable restore time in the event of a failure of the courier service's primary system(s) at the courier service's primary location in accordance with (a) above.

(f) The courier service system used for taking orders from courier customers to purchase tickets shall not contain unauthorized data collection, file extraction, malware, or any other feature that compromises the integrity of the courier customer electronic devices or the data contained therein.

(g) The courier service system shall allow a courier customer to order tickets only after the courier customer has established a courier service customer account in accordance with N.J.A.C. 17:20-12.15.

(h) If a courier customer has suspended or self-excluded his or her account, a courier service shall not send any form of gaming-related correspondence, whether by electronic mail, postal mail, delivery service, or by any other means to such courier customer while the account is suspended or self-excluded.

(i) If a courier service system allows a courier quick pick process, the courier service shall propose its quick pick process during the application process. The courier service quick pick process can be accomplished either through a random number generator (RNG) that is resident on a courier service's system or the RNG that is resident in the dedicated terminal. Should a courier service propose to utilize the RNG resident on its system, the courier service shall have the RNG independently certified. A certification report from a qualified company or the New Jersey Division of Gaming Enforcement shall be provided to the Division as part of the initial application and renewal process. Any changes to or malfunction of the RNG shall be reported immediately to the Division and the Division may, at the discretion of the Director, require the courier service to obtain a re-certification from a qualified company or the New Jersey Division of Gaming Enforcement. Initial certification and re-certification shall be at the expense of the courier service. Certification is not necessary if the courier service is utilizing the RNG resident in the dedicated terminal.

(j) As technology and industry best practices advances, at the discretion of the Director, the Division may impose additional technological requirements for the courier service system upon reasonable written notice provided to the courier service to insure the security and integrity of the courier service system.

(k) The courier service system shall be subject to random and scheduled audits by the Lottery or independent auditors representing the Division. Random audits shall be conducted without advance notice.

(l) The courier customer shall be provided with a prominent notice if he or she navigates away from the official courier service website or mobile application and the website and mobile application shall require that the courier customer acknowledge he or she is leaving the courier service website or mobile application and the risk associated with same, prior to the courier customer leaving the courier service's website or mobile application.

(m) The message "If you or someone you know has a gambling problem and wants help, call 1-800-Gambler" shall be displayed prominently within the website and/or mobile log on screen and a command to display this message on the log off screen shall be transmitted whenever the system detects a log off. The courier service is also encouraged to also employ technology to include in-app text messaging to 1-800-Gambler.

(n) A courier service may employ a method or means to print play slips or facsimiles thereof, after approval by the Director. No such approval shall be granted by the Director until the courier-produced play slip or facsimile performs at least as accurately as the Division's official play slips.

(o) All courier service system communications that contain courier customer account numbers, user identification, or passwords and PINs shall utilize a secure method of transfer per current security best practices (for example, as of August 6, 2018, 128-bit key encryption) and approved by the Division. This requirement is subject to subsection (j) above. The method of transfer will be reviewed during the initial registration application process and each registration renewal to assure that security best practices are followed.

(p) The courier service system shall electronically log the date and time any website or mobile courier customer account is created, suspended, terminated, deleted, or any other material status changes, including changes indicative of anomalous activity.

(q) A courier service system shall maintain all information necessary to recreate courier customer orders for tickets and account activity during each courier customer session, including any identity or location verifications, for a period of no less than seven years.

(r) The courier service system shall provide a courier customer with the following:

1. Immediately following a request for a courier service to purchase a ticket on the courier customer's behalf, an electronic confirmation of the purchase request; and

2. Immediately following ticket purchase, an electronic confirmation to the courier customer that includes the following: the serial number of the issued ticket, the relevant game, courier customer's name, an image of the front and back of an issued ticket in its entirety, which image shall contain a courier service digital watermark. The image shall be available only to the courier customer who requested the ticket be purchased and within the time frame required for ticket processing as set forth in N.J.A.C. 17:20-12.16(a). The courier service system shall not make the ticket information and image accessible by any other of the courier service's customers or courier service system's users, except for manual ticket matching, which shall be subject to internal controls.

(s) A courier service shall provide to the Division, in an electronic format acceptable to the Division, the following data in regard to each drawing for which such courier service provides a ticket. The Division shall receive the data outlined below no later than 15 minutes before the drawing to which such data relates. The submission of such data to the Division does not constitute ticket processing and shall not be sufficient evidence of a purchased ticket. Ticket processing must occur pursuant to the requirements of N.J.A.C. 17:20-12.16i n order to generate a ticket that may be submitted for a prize claim. Method of preferred submission will be provided by the Lottery in the courier service registration approval letter. See N.J.A.C. 17:20-12.16.

1. Lottery game;

2. Drawing date and time;

3. Full name of the courier customer as set forth in such customer's account;

4. Customer account number;

5. Electronic mail address of the courier customer;

6. Date the ticket was ordered by the courier customer and the date the ticket was purchased;

7. Lottery transaction identification number for the purchase transaction;

8. Location of the courier customer at the time the courier customer places an order to purchase ticket(s); and

9. The time of day when the courier customer places an order to purchase ticket(s).

(t) A courier service shall report immediately all significant incidents related to the operation of such courier service's system, either personally or by telephone, within one hour of the discovery of the incident, followed by a letter addressed to the Director within 24 hours of the incident. At a minimum, the courier service shall provide a written report for each of the following types of events:

1. Courier service system outages;

2. Major communications failures;

3. Significant operator errors;

4. Out of balance conditions;

5. Emergency software or hardware changes;

6. Security violations, including any cybersecurity violation or any other unauthorized intrusions into the courier service system or any equivalent or illegal activity;

7. Requests where purchase occurred as prescribed in this subchapter but either Lottery or courier customer purchase notification did not occur prior to a drawing;

8. Any situation that may cause the general public to become alarmed and/or that may damage the integrity or public image of the Division; and

9. Any other indicator or event specified in the courier service approved registration.

Notes

N.J. Admin. Code § 17:20-12.11

Adopted by 50 N.J.R. 1826(b), effective 8/6/2018