Just to be clear, the letter that was sent in June notified Google that the commissioner was initiating an investigation. There has been active correspondence between the commissioner's office and Google representatives throughout the investigation process. She most recently sent them her preliminary letter of findings. I believe that was on October 14.
If I may add to Mr. Caron's answer to your question about PIPEDA, one of the ways the commissioners, acting together, encourage organizations to be more proactive is to take all those principles in PIPEDA and use them in a privacy risk assessment that they should carry out prior out to the deployment of technologies. We call that a PIA, a privacy impact assessment.
PIPEDA provides the tools and principles for any organization to be proactive in identifying and managing the risks before deployment, if they walk through the principles behind PIPEDA and do a proper assessment of the risks using the PIA process. It's done much like an environmental impact assessment. Those are the tools needed to avert the risks of new information technologies, which the commissioner is first to embrace as important and novel advances, as long as the privacy risks are being properly managed in the process.