§ 10-4-424 - Audit of data processing operations.
10-4-424. Audit of data processing operations.
(a) The Division of Legislative Audit may conduct audits of all or any part of automated data processing operations or systems of any entity of the state or political subdivision of the state.
(b) (1) (A) Data processing charges incurred in the performance of audits or audit-related tasks by the division shall be absorbed by the state agency or political subdivision of the state processing data for the computer application being accessed or audited.
(B) However, the use shall not interfere with or impede normal processing by the data processing installation.
(2) The data processing provider shall provide requested data or other information or services to the Division of Legislative Audit within ten (10) days of the request, unless another date is agreed to by the Legislative Auditor.
(c) The Department of Information Systems, its successor agency, or other entities of the state or political subdivisions of the state that provide Internet, network, or other computer services or information to an entity of the state or a political subdivision of the state shall provide access to all data, support, or other necessary information services to the Division of Legislative Audit in connection with their functions at no cost to the division.
(d) In connection with any audit by the Division of Legislative Audit, contractual providers of data processing or other computer-related services to entities of the state or political subdivisions of the state shall cooperate and provide requested information at no cost to the division.
(e) All contracts by entities of the state and political subdivisions of the state with vendors for data processing or other computer services shall contain a provision permitting the Division of Legislative Audit access and authority to audit computer applications supplied by vendors.