Core Issues to be considered in determining if the IO is being achieved:

CI 3.1: How well does licensing, registration or other controls implemented by supervisors or other authorities prevent criminals and their associates from holding, or being the beneficial owner of a significant or controlling interest or holding a management function in financial institutions, DNFBPs or VASPs? How well are breaches of such licensing or registration requirements detected?

CI 3.2: How well do the supervisors identify and maintain an understanding of the ML/TF risks in the financial and other sectors, between different sectors and types of institution, and of individual institutions?

CI 3.3: With a view to mitigating the risks, how well do supervisors, on a risk-sensitive basis, supervise or monitor the extent to which financial institutions, DNFBPs and VASPs are complying with their AML/CFT requirements?

CI 3.4: To what extent are remedial actions and/or effective, proportionate and dissuasive sanctions applied in practice?

CI 3.5: To what extent are supervisors able to demonstrate that their actions have an effect on compliance by financial institutions, DNFBPs and VASPs?

CI 3.6: How well do the supervisors promote a clear understanding by financial institutions, DNFBPs and VASPs of their AML/CFT obligations and ML/TF risks?