Okay.
Are those privacy impact assessments the same in nature as what has been proposed by the Privacy Commissioner, or are they different?
What she's asking for is a PIA, a privacy impact assessment. What you're telling me is that Treasury Board currently requires a privacy impact assessment as a matter of policy. Is she asking for something that's already in place, or do you know if there's a difference between what she has proposed and what Treasury Board guidelines require?