An Authorised Person must ensure that key duties and functions are segregated so as to avoid the situation where the allocation of duties and functions to be performed by the same individual could result in undetected errors or be vulnerable to abuse and thus expose the Authorised Person or its customers or users to inappropriate risks.