GEN 3.3.1

(1) An Authorised Person must establish and maintain systems and controls, including but not limited to financial and risk systems and controls, that ensure that its affairs are managed effectively and responsibly by its senior management.
(2) An Authorised Person must undertake regular reviews of its systems and controls.