T7.3.1 - INPUT DATA VALIDATION Implementation Guidance
The entity shall validate data input to applications to ensure that this data is correct and appropriate.
Back to T7.3.1 - P2 - INPUT DATA VALIDATION
Checks should be applied to the input of business transactions, standing data (e.g. names and addresses, credit limits, customer reference numbers), and parameter tables (e.g. sales prices, currency conversion rates, tax rates). The following guidelines should be considered:
- A. Dual input or other input checks, such as boundary checking or limiting fields to specific ranges of input data, to detect the following errors:
- 1- Out-of-range values
- 2- Invalid characters in data fields
- 3- Missing or incomplete data
- 4- Exceeding upper and lower data volume limits
- 5- Unauthorized or inconsistent control data
- B. Periodic review of the content of key fields or data files to confirm their validity and integrity
- C. Inspecting hard-copy input documents for any unauthorized changes (all changes to input documents should be authorized)
- D. Procedures for responding to validation errors
- E. Procedures for testing the plausibility of the input data
- F. Defining the responsibilities of all personnel involved in the data input process
- G. Creating a log of the activities involved in the data input process
