No, we haven't. The threat risk assessment was just to the Office of the Privacy Commissioner against spam attacks, electronic attacks, or spoofing; or people penetrating who are not employees, getting access to our computer network where people's complaints are and things like that. It didn't have to do with the information sharing agreements.
On May 25th, 2009. See this statement in context.