Thank you.
With respect to recommendation eight, which is to strengthen the annual reporting requirements to cover a broader spectrum of privacy-related activities, can you outline the activities that broader spectrum would include and perhaps why you're recommending their inclusion? In other words, what are we missing that we should be including?