(1) The indicator organization shall identify and assess the risk related to money laundering and financial investment in terrorist activities based on its country, geographical area, business or profession, scope of work, customers, services or products, business and distribution channels. (2) Subsection (1) ) when identifying and evaluating the risk, the indicator organization shall use the national risk assessment or the risk assessment done by the regulatory body as a basis. ) The indicator organization shall keep all the details, information and records related to the conclusions obtained in writing regarding the risk assessment made in accordance with this section. The indexing organization shall provide the record according to sub-section (4) to the relevant regulatory body and if such record is requested by other related bodies, it shall also provide such record to such body. The necessary policy, procedural and control arrangements shall be made and such arrangements shall be updated from time to time. (8) The indicator organization shall regularly monitor whether the policy, procedural and risk management arrangements as per sub-section (7) have been implemented.