APAC FinStab+ | Regulatory Intelligence Dashboard

Real-Time Compliance Analytics & Market Impact Assessment
📅 June 28 - July 4, 2026
Australia AUSTRAC AML Perimeter Expansion — July 1 Milestone
🇦🇺
4 Gatekeeper Sectors
↗ Real estate, legal, conveyancing, accounting enter AML checks
AUSTRAC (Australia's AML/CTF regulator) flagged a July 1 milestone under which real estate, legal, conveyancing and accounting service providers begin requiring customer identity and source-of-funds explanation; a new InBrief edition (reform progress, CEO mid-year update, VASP transition tracking) accompanies it. The expansion is professional-services-wide rather than crypto-specific, but for APAC it structurally closes the "crypto gains → property / legal-escrow" off-ramp that VASP-only regimes miss. For operators with Australian counterparties, source-of-funds documentation for crypto-origin capital entering these professional-service rails becomes an observable requirement rather than a discretionary check. (Milestone confirmed; field-level operational scope tracked via AUSTRAC Online.)
Russia CBR Stablecoin Consultation — APAC Sanctions/Reserve Test
🇷🇺
Cross-Border Test
⚡ Ruble-pegged tools push sanctions + reserve transparency to APAC
APAC financial-stability commentary (APAC FINSTAB) reads Russia's central-bank stablecoin consultation as more than a domestic document: it pushes ruble-pegged instrument design, issuer obligations, collateral disclosure, and cross-border settlement use directly onto APAC banks, VASPs and payment institutions — framing sanctions exposure, reserve transparency, and redeemability as concrete compliance tests. For any APAC venue touching ruble-adjacent or CIS-routed stablecoin flow, the practical implication is enhanced sanctions screening, issuer due diligence, and redemption-control verification. (Consultation stage — directional signal, not binding rule; a continuation-read of the prior-week Russia stablecoin consultation.)
US-Japan-Korea Trilateral DPRK Cyber Working Group
🌏
~$575M Named
↘ DeFi protocol theft elevated to state-security coordination
The US, Japan and Korea convened a trilateral diplomatic working group on DPRK cyber threats — crypto theft, laundering, and IT-worker infiltration — explicitly naming two DeFi cases (KelpDAO ~$290M and Drift Protocol ~$285M). For APAC, this is the structural shift: DeFi security moves from a technical/insurance question into state-security coordination. A protocol publicly attributed to a sanctioned actor faces OFAC-style sanctions screening, fund-flow tracing, and cross-border enforcement; outsourced-development and IT-worker background checks become a named risk vector rather than an abstract concern. Two of the three coordinating states are APAC (Japan, Korea), elevating regional AML-intelligence sharing. (Working-group coordination event, not a new binding rule.)
Bridge + DeFi-Structure Failures Recur — Two Fresh Cases
🔗
~$93M + Paused Bridge
↘ Bridge attack attempt + external-manager collapse in one window
Two independent DeFi structural failures this window keep the audit-gap category live: (1) Etherlink (a Tezos-ecosystem EVM Layer-2) reported an attack attempt on its EVM Bridge and pre-emptively paused all cross-chain transfers to protect funds — no confirmed loss, investigating with LayerZero, Asymmetric Research and Zeeve; (2) the collapsed yield protocol Stream Finance opened creditor/claimant intake after roughly $93M in losses attributed to an external fund manager, while cautioning that form submission does not confirm claim, entitlement or payout. Together they re-confirm two required audit fields — bridge message/guardian integrity, and external-manager / off-protocol counterparty risk in DeFi yield. (Isolated events; no systemic contagion observed in-window.)
Regulator RegTech Adoption + Emerging-Market Licensing
🌐
AI Supervision + AZ Draft
⚡ FINMA/IOSCO lean into AI; Azerbaijan drafts VASP law
Two regulator-capability signals point the same direction — a rising baseline compliance bar: (1) FINMA Chair / IOSCO Chair Marlene Amstad stated that regulators are accelerating adoption of AI and RegTech tools, including instruments for crypto-market supervision — implying finer-grained on-chain monitoring and AML expectations for VASPs; (2) Azerbaijan's central bank confirmed a completed draft crypto-asset regulation requiring licensing plus AML/CFT and KYC, targeted for enactment by year-end. "More automated supervision on one side, more emerging-market licensing perimeters on the other" both raise the compliance floor for APAC-adjacent operators. (Amstad remarks are guidance-level; Azerbaijan law is at draft stage.)
Stablecoin Volume Macro vs Emerging-Market Reality
💵
>$28T (2025)
↗ Exceeds Visa + Mastercard combined; demand is EM-led
Verda Ventures placed 2025 global stablecoin transaction volume above $28 trillion — exceeding Visa and Mastercard combined — while noting that founders and venture capital remain concentrated in the US/EU even though real demand is emerging-market-led (e.g., Nigeria's 26M+ crypto users). For APAC financial-stability watchers, the signal is that stablecoin rails are already systemically large and demand-anchored in emerging markets, which makes local on/off-ramp licensing, FX-substitution monitoring, and reserve/redemption oversight the binding policy questions — not speculative trading. It also frames why the Russia consultation, Azerbaijan draft, and AUSTRAC off-ramp expansion above all converge on the same rail. (Aggregate third-party estimate; methodology not independently audited.)
🔥 Regulatory Heat Map
Jurisdiction stance & enforcement pressure (this window)
Updated
Region Stance Risk
Azerbaijan (CBA) Draft VASP law (license + AML) 3.0
Indonesia (OJK-adjacent) Inbound fintech M&A signal 3.4
Singapore (MAS) Calibrating (quiet window) 3.4
Japan (FSA) DPRK trilateral coordination 3.6
Hong Kong (SFC/HKMA) Stablecoin issuer pipeline continues 3.0
Switzerland/Global (FINMA/IOSCO) RegTech + AI supervision uptake 4.0
Australia (AUSTRAC) Professional-services AML expansion (Jul 1) 4.4
South Korea (FSC) DPRK coordination + securities-firm entry 4.6
EU (ECON / ESMA) DeFi / staking / NFT scope review 6.0
DPRK-linked flows Named-protocol sanctions exposure 7.8
Russia (CBR) Stablecoin consultation + sanctions framing 7.2
🛡️
APAC AML Coordination Strengthens — Trilateral DPRK Group + AUSTRAC Perimeter Expansion in the Same Window
The strongest structural signal this window is on the AML-coordination side, not the market side. The US-Japan-Korea trilateral DPRK working group — with Japan and Korea as APAC anchors — names specific DeFi-theft cases (KelpDAO ~$290M, Drift ~$285M), elevating regional intelligence sharing on crypto laundering and IT-worker infiltration. In parallel, AUSTRAC extends AML gatekeeping into real estate, legal, conveyancing and accounting from July 1, closing the professional-services off-ramp. Together they mark APAC AML enforcement shifting from "VASP perimeter" toward "end-to-end fund-flow attribution" — a maturity step other APAC regulators (MAS, FSA, HKMA) can be expected to mirror. This is coordination and perimeter-widening, not a single new binding rule.
🎯 Compliance Risk by Product Vertical
Cross-jurisdictional enforcement exposure (this window)
Live Tracking
Sanctioned-Actor DeFi Exposure (DPRK-attributed protocols) 90%
Critical
Cross-Chain Bridge Message/Guardian Integrity (Etherlink pause) 85%
Critical
DeFi External-Manager / Off-Protocol Counterparty (Stream Finance) 82%
Critical
Sanctions-Screening on Ruble-Adjacent Stablecoin Flow (Russia CBR) 68%
High
Professional-Services Off-Ramp AML Gap (pre-AUSTRAC-expansion) 58%
High
Verifiable-Credential / Off-Chain Attestation Immaturity 44%
Medium
Emerging-Market Licensing Perimeter Uncertainty (Azerbaijan-type draft) 28%
Low-Med
🔗
Bridge + External-Manager Audit Categories Remain Under-Covered
This window's two DeFi failures (Etherlink EVM Bridge attack attempt → pre-emptive transfer pause; Stream Finance ~$93M external-manager loss with creditor intake now open) fall into audit categories most existing reports do not cover: bridge message/guardian-key integrity and off-protocol counterparty (external fund-manager) risk. Layered on top of the DPRK-attribution vector, any wrapped/bridged asset, any DeFi yield product with an external manager, and any protocol with named sanctioned-actor exposure should be re-evaluated for these specific fields before further allocation. The pattern is not new capital destruction at systemic scale — it is that the checklist categories keep widening faster than standard audits evolve.
📰 Critical Regulatory Events
Week of June 28 - July 4, 2026
12 Events
June 28, 2026
FINMA/IOSCO Chair Amstad: Regulators Accelerating AI + RegTech Adoption
FINMA Chair and IOSCO Chair Marlene Amstad said regulators are speeding up adoption of AI and supervisory-technology (RegTech) tools, including instruments aimed at crypto-market oversight. The implication for VASPs is finer-grained on-chain monitoring, more automated AML screening, and anomaly-detection expectations — a supervisory-capability uplift that raises the baseline for licensed operators globally, with direct read-through for APAC regulators building equivalent toolchains.
June 28, 2026
Russia CBR Stablecoin Consultation Read as APAC Sanctions/Reserve Test
APAC FINSTAB commentary framed Russia's central-bank stablecoin consultation as pushing ruble-pegged instrument design, issuer obligations, collateral disclosure and cross-border settlement use onto APAC banks/VASPs/PSPs — a live compliance test for sanctions exposure, reserve transparency and redeemability. Russian-routed or ruble-adjacent stablecoin flow into APAC venues warrants enhanced screening. Consultation stage; directional, not binding.
June 28, 2026
Verda Ventures: 2025 Stablecoin Volume Exceeded $28T — Above Visa + Mastercard Combined
Verda Ventures put 2025 global stablecoin transaction volume above $28 trillion, exceeding Visa and Mastercard combined, while observing that founder/VC concentration remains in the US/EU even though real demand is emerging-market-led. The financial-stability read: stablecoin rails are already systemically large and EM-anchored, making local on/off-ramp licensing and FX-substitution monitoring the binding questions. Aggregate third-party estimate; not independently audited.
June 28, 2026
Ionic Digital (Celsius Reorg → AI/HPC) Closes ~$400M at ~$2B Valuation
Ionic Digital — the AI / high-performance-computing infrastructure entity formed out of the Celsius Network bankruptcy reorganization — completed a ~$400M private placement at a ~$2B pre-money valuation, led by Attestor, Oaktree and Sachem Head with Citadel and Weiss participating. The signal is capital recycling: crypto-bankruptcy estates transitioning into AI/HPC and re-entering capital markets with mainstream institutional participation. US-domiciled; APAC relevance is directional (capital-flow pattern).
June 29, 2026
Lion Group (Nasdaq) → PT Nusantara Indonesia Fintech, up to $12M for 10% Economic Interest
Nasdaq-listed Lion Group Holding will invest up to $12M for a 10% indirect economic interest in Indonesian fintech PT Nusantara Bumi Sangkara (via Meili Capital), paying in ordinary shares / equity-linked securities rather than cash. It is a small but concrete Southeast-Asia cross-border fintech consolidation signal, using equity rather than cash — relevant for APAC regional-market mapping. Announced; not a regulatory action.
June 29, 2026
DefiLlama Founder 0xngmi to Launch Off-Chain Attestation Service
DefiLlama founder 0xngmi said the team will launch an off-chain attestation/verification service capable of verifying off-chain data such as bank-account balances, inviting integration partners. Verifiable off-chain credentials are a key building block for RWA reserve-proofs and KYC-once architecture — an infrastructure signal worth tracking for any reserve-attestation or source-of-funds workflow, though the tooling is nascent.
June 29, 2026
Etherlink (Tezos EVM L2) Pauses All Cross-Chain Transfers After Bridge Attack Attempt
Etherlink, the Tezos-ecosystem EVM Layer-2, disclosed an attack attempt on its EVM Bridge and pre-emptively paused all cross-chain transfers to protect user funds, working with LayerZero, Asymmetric Research and Zeeve on investigation and mitigation. No confirmed loss reported. The event re-confirms bridge message-integrity and guardian-configuration as required audit fields for any bridge-dependent asset. Recovery timeline unpublished.
June 29, 2026
AUSTRAC Pre-Announces InBrief — Reform Progress + CEO Mid-Year Update + VASP Transition
AUSTRAC pre-announced a new InBrief edition covering reform progress, newly released guidance/resources, and a CEO mid-year update — aligned with the July 1 milestone. For licensed VASPs and Australia-exposed operators, the InBrief is the operational reference for the widened AML perimeter and updated reporting expectations in the same window.
June 30, 2026
Azerbaijan Central Bank Completes Draft Crypto-Asset Law — License + AML/CFT + KYC
Azerbaijan's central bank confirmed a completed draft crypto-asset market regulation, submitted for review and targeted for enactment by year-end. The draft requires crypto-asset businesses to obtain a central-bank license and implement AML/CFT and KYC obligations. It moves a previously grey market toward a licensed perimeter — an emerging-market licensing reference point for APAC-adjacent jurisdictions. Draft stage.
June 30, 2026
AUSTRAC July 1 Milestone: Real Estate / Legal / Conveyancing / Accounting AML Checks
AUSTRAC confirmed that from July 1, clients using real estate, legal, conveyancing or accounting services will be required to present identity and explain source of funds. The expansion closes the professional-services off-ramp most used to convert crypto gains into real assets — extending AML gatekeeping beyond VASPs. Effective milestone; field-level operational scope tracked via AUSTRAC Online.
June 30, 2026
US-Japan-Korea Trilateral DPRK Working Group Names KelpDAO (~$290M) / Drift (~$285M)
The US, Japan and Korea held a trilateral diplomatic working group on DPRK cyber threats — coordinating on crypto theft, laundering and IT-worker infiltration — and named two DeFi cases: KelpDAO (~$290M) and Drift Protocol (~$285M). The coordination elevates DeFi-security incidents into state-security territory, expanding sanctions-screening, fund-flow tracing and outsourced-developer background-check expectations. Coordination event, not a binding rule.
June 30, 2026
Stream Finance Opens Creditor/Claimant Intake After ~$93M External-Manager Loss
The collapsed DeFi yield protocol Stream Finance began collecting potential creditor and claimant information via an online form, following roughly $93M in losses attributed to an external fund manager — while cautioning that form submission does not confirm any claim, entitlement or right to payment. It re-surfaces external-manager / off-protocol counterparty opacity as a distinct DeFi-yield audit field. Claims-intake stage.
💰 Cross-Border Flows & Magnitudes
Capital, illicit-flow, and macro throughput references this window
APAC Focus
Flow / Channel Magnitude Status
2025 stablecoin transaction volume (Verda est.) >$28T Macro throughput
DPRK-attributed DeFi theft (KelpDAO + Drift) ~$575M Illicit outflow
Ionic Digital private placement (Celsius reorg → AI/HPC) ~$400M Capital raise
Stream Finance external-manager loss (claims open) ~$93M DeFi loss
Lion Group → PT Nusantara (Indonesia fintech) ~$12M / 10% Cross-border M&A
Hyper Foundation grants → USDH-affected developers ~$10M Ecosystem grant
Corporate BTC treasuries (Fidelity aggregate) ~1.265M BTC Treasury aggregate
Ionic institutional backers (Citadel / Oaktree / Attestor) Mainstream Institutional participation
Etherlink bridge exposure (pre-emptive pause) $0 confirmed Loss averted
Coinbase BTC premium index (US demand) ~40 days negative Demand indicator
📊 Systemic Risk Indicators
Watch-list signals from this window
Alert Status
Indicator Reading Status
DPRK-attributed DeFi theft named by 3 states ~$575M State-actor / sanctions
Etherlink EVM Bridge attack attempt Transfers paused Bridge integrity
Stream Finance external-manager loss ~$93M / claims open DeFi counterparty
Coinbase BTC premium negative streak (US) ~40 days US demand softness
SecondFi / EMURGO (Cardano) wallet incident Return in ~2 weeks Wallet-key security
ZetaChain legacy cross-chain shutdown (AI-memory pivot) Final withdrawal window Migration liquidity
Russia CBR cooling-off / ad-restriction trajectory Consultation Capital-control drift
Hyper Foundation USDH stablecoin retirement ~$10M migration grants Stablecoin sunset ops
Azerbaijan pre-license grey market Draft pending Emerging perimeter
✅ Required Actions
APAC operator priority list
Urgent
1️⃣
Add "Sanctioned-Actor DeFi Exposure" Screening After Trilateral DPRK Naming
With the US-Japan-Korea working group publicly naming KelpDAO (~$290M) and Drift (~$285M), any protocol attributed to a sanctioned actor now carries sanctions-compliance implications beyond the theft loss itself. APAC operators should: (a) add a "named / attributed to sanctioned actor" flag to protocol due diligence; (b) trace inbound flows for exposure to attributed-protocol addresses; (c) extend background-check policy to outsourced developers and IT contractors, given the named IT-worker-infiltration vector. This is coordination-stage intelligence, but the fund-flow-attribution expectation is already actionable.
2️⃣
Re-Audit Bridge Guardian Integrity + DeFi External-Manager Counterparty Risk
This window's Etherlink EVM-Bridge attack attempt (all transfers paused) and Stream Finance ~$93M external-manager loss (creditor intake open) fall into two audit categories standard reports rarely cover: (a) bridge message verification / guardian-key configuration and pause-response playbook; (b) whether a DeFi yield product routes capital to an external, off-protocol manager, and how that manager is disclosed and constrained. Any bridge-dependent or externally-managed yield exposure should be re-reviewed for these specific fields before further allocation.
3️⃣
Prepare for AUSTRAC July 1 Professional-Services AML Expansion
From July 1, Australian real estate, legal, conveyancing and accounting providers begin identity and source-of-funds checks — closing the professional-services off-ramp for crypto-origin capital. Australia-exposed operators should: (a) expect counterparties in these sectors to request source-of-funds documentation for crypto-origin funds; (b) align internal source-of-funds attestation formats to what these gatekeepers will now require; (c) use the accompanying AUSTRAC InBrief as the operational reference for updated reporting expectations.
4️⃣
Track Emerging-Market Licensing + Regulator RegTech as a Rising Compliance Floor
Two signals raise the baseline: Azerbaijan's completed draft crypto-asset law (license + AML/CFT + KYC, year-end target) shows another grey market moving to a licensed perimeter; FINMA/IOSCO's stated acceleration of AI/RegTech supervision implies finer-grained on-chain monitoring expectations. APAC advisory teams should: (a) map which emerging jurisdictions are drafting VASP perimeters (Azerbaijan-type) for regional coverage planning; (b) assume supervisory tooling — and therefore AML data-quality expectations — will tighten; (c) treat verifiable off-chain attestation (DefiLlama-type) as a forward option for reserve-proof / source-of-funds workflows.
🎯 Cross-Jurisdictional Policy Impact Matrix
Regulatory actions and market implications across jurisdictions (this window)
Real-Time Tracking
Jurisdiction Recent Action Impact Scope Market Effect Timeline
Australia (AUSTRAC) July 1 professional-services AML expansion AML Perimeter Crypto → property/legal off-ramp gap closes Live
Australia (AUSTRAC) InBrief: reform progress + CEO mid-year update AML Ops VASP transition + reporting expectations tracked Active
US / Japan / Korea Trilateral DPRK cyber working group (KelpDAO/Drift named) State Security Sanctions screening extends to DeFi protocols Coordination
Russia (CBR) Stablecoin consultation (sanctions/reserve framing) Cross-Border Enhanced screening on ruble-adjacent flow Consultation
Azerbaijan (CBA) Draft crypto-asset law (license + AML/CFT + KYC) Emerging Licensing Grey market moves toward licensed perimeter Draft
Indonesia (SE Asia) Nasdaq-listed inbound fintech M&A (Lion Group → PT Nusantara) Regional Capital Cross-border fintech consolidation via equity Announced
Switzerland / Global (FINMA / IOSCO) Regulators accelerate AI + RegTech adoption Supervision Tech Finer on-chain monitoring / AML expectations Stated
EU (ECON) DeFi / staking / NFT regulatory-scope assessment (ECON) Regulatory Scope Spillover precedent for APAC scope debates Report (Jul 7 next)
Global (Etherlink) EVM Bridge attack attempt → pre-emptive pause Bridge Integrity Bridge trust-assumption audit re-confirmed Investigating
Global (Stream Finance) External-manager loss → creditor intake opened Counterparty Risk Off-protocol manager risk becomes audit field Claims
US (Capital Markets) Ionic Digital $400M (Celsius reorg → AI/HPC) Estate-to-AI Crypto-estate capital recycles into AI/HPC Closed
Global (Verda est.) 2025 stablecoin volume >$28T > Visa + Mastercard Payments Scale Stablecoin rails already systemic, EM-led Estimate
Global (DefiLlama) Off-chain attestation service (bank-balance verification) RWA / DID Infra Reserve-proof / KYC-once building block Planned
Global (Hyper Foundation) $10M grants for USDH-affected developers Orderly Wind-Down Retired-stablecoin migration support Active
🚨 Critical Intelligence Summary
Top 5 actionable insights for compliance and risk management
Priority Actions
🔴
1. DPRK Trilateral Naming Turns "Sanctioned-Actor DeFi Exposure" Into a Screening Requirement
The US-Japan-Korea trilateral working group's explicit naming of KelpDAO (~$290M) and Drift (~$285M) — roughly $575M combined — moves DeFi-theft incidents from a technical/insurance topic into state-security coordination, with Japan and Korea as APAC anchors. The actionable implication is that a protocol attributed to a sanctioned actor now carries sanctions-compliance weight beyond the loss itself: fund-flow tracing to attributed addresses, sanctions-list screening, and outsourced-developer / IT-worker background checks become named due-diligence fields. This is coordination-stage intelligence rather than a binding rule, but the attribution-and-screening expectation is already operationally actionable for APAC operators.
🔴
2. Bridge + DeFi External-Manager Failures Recur — Audit Categories Keep Widening
Two independent DeFi structural failures this window keep the same audit gap live: Etherlink (Tezos EVM L2) pre-emptively paused all cross-chain transfers after an EVM-Bridge attack attempt (no confirmed loss), and Stream Finance opened creditor intake after ~$93M in losses attributed to an external fund manager. Neither is systemic in isolation, but together they re-confirm two fields standard audits rarely cover: bridge message/guardian-key integrity and pause-response playbooks; and off-protocol external-manager counterparty risk in DeFi yield. Any bridge-dependent asset or externally-managed yield product should be re-reviewed for these specific fields before further allocation — the pattern is that checklist categories widen faster than audits evolve.
🟠
3. AUSTRAC July 1 Professional-Services AML Expansion Closes the Crypto Off-Ramp Gap
From July 1, Australian real estate, legal, conveyancing and accounting service providers begin requiring customer identity and source-of-funds explanation — extending AML gatekeeping beyond VASPs into the professional-services rails most used to convert crypto gains into property and legal-escrow positions. Combined with the accompanying AUSTRAC InBrief (reform progress + CEO mid-year update + VASP transition tracking) and AUSTRAC's elevated regional coordination posture, this marks APAC AML enforcement moving toward end-to-end fund-flow attribution. Australia-exposed operators should expect these gatekeepers to request source-of-funds documentation for crypto-origin capital, and should align internal attestation formats accordingly. Effective milestone; field-level scope tracked via AUSTRAC Online.
🟠
4. Russia CBR Consultation + Azerbaijan Draft: Sanctions Screening and Emerging Perimeters Both Rising
Two central-bank signals raise the APAC compliance floor from opposite directions. Russia's CBR stablecoin consultation pushes ruble-pegged instrument design, reserve disclosure and cross-border settlement onto APAC banks/VASPs/PSPs as a sanctions-and-reserve-transparency test, warranting enhanced screening on ruble-adjacent or CIS-routed flow. Azerbaijan's completed draft crypto-asset law (license + AML/CFT + KYC, year-end target) shows another grey market moving to a licensed perimeter. Both are pre-binding (consultation / draft), but directionally they mean sanctions-screening discipline and emerging-market licensing coverage should be mapped now rather than after enactment.
🟢
5. Regulator RegTech Uptake + $28T Stablecoin Macro: Compliance Baseline Rising While Rails Are Already Systemic
FINMA/IOSCO Chair Amstad's statement that regulators are accelerating AI and RegTech adoption — including for crypto-market supervision — signals finer-grained on-chain monitoring and AML data-quality expectations for licensed operators. Against that, Verda Ventures' estimate that 2025 stablecoin volume exceeded $28 trillion (above Visa and Mastercard combined), with demand emerging-market-led, confirms the rails are already systemic. The combined read for APAC: supervisory tooling is tightening at the same moment stablecoin usage is largest in the very emerging markets where licensing perimeters are still forming — making local on/off-ramp licensing, verifiable reserve attestation (e.g., DefiLlama-type off-chain attestation as a forward option), and FX-substitution monitoring the binding policy questions. Estimate-based macro figure; supervisory remarks are guidance-level.