Each regulated entity must give the SPF general regulator reports of any actionable intelligence the entity has about activities relating to, connected with, or using the entity's regulated services.

A regulated entity must give an SPF regulator a report about a scam if the SPF regulator requests.

The SPF general regulator may disclose information about scams to certain other entities.