Site Visits

In 2017 and again, in 2019, IIROC engaged cybersecurity consultants and visited selected Dealers whose cybersecurity self-assessment maturity levels were below the expected target of their industry peer group.

The goal of these reviews was to confirm the firms’ self-assessment responses, and collaborate with and advise on how to improve their preparedness for the overall protection of customer data and market integrity. As part of this discussion, the Dealer’s main systems and data touch-points were identified and documented in a high-level flowchart, as well.

The Dealer received a report from IIROC and the consultant detailing the results of these discussions and outlining recommendations for improvement.

Welcome to!

We have a new look! You can find the Canadian Investment Regulatory Organization (CIRO) at with our fresh look and feel.

You can now find new publications published by CIRO since January 1, 2023 on If you are looking for past notices or bulletins published by MFDA or IIROC, you can find those on our legacy websites. Enforcement related content will continue on those websites as well.

You can now find previous Annual Reports and Enforcement Reports on, along with Halts and Resumption, and our ePublications sign up (for all previous MFDA and IIROC subscriber lists).

We will continue moving items off MFDA and IIROC in 2023/2024. Stay tuned for future updates.