That's a very good question. I can say to you that we do have mandatory reporting requirements for financial institutions. One type is complaints-related reporting. The complaints we receive are one piece of intelligence that informs our risk assessment of where risks might lie within the financial institutions themselves.
Where we feel that the risks are significant or material, we may engage in multiple activities that correspond to that risk assessment. We have the authority to undertake examinations to ensure compliance. We have the authority to undertake reviews of multiple organizations if we feel there's a system-wide issue. In some cases, the issue may be so acute that we move through to an investigation to inform an enforcement decision.
This information informs the supervisory actions we may take across a suite of instruments, of which I just offered a few examples.