Yes, although we had committee testimony with respect to that standard in the context of SCISA, and we had government agencies saying that disclosure on the basis of relevancy is important, but of course, there's the collection of the recipient agencies. It depends upon their mandate. CSIS has a “strictly necessary” mandate, but other agencies don't in fact have that necessity standard as recipient agencies. There's probably a problem there if we don't heed the Privacy Commissioner's words and import the necessity standard across the board.
Speaking of mandates, again this gets to Justice Noël's decision, but we had Professors Forcese and Roach come before us and say that it's very important that we make crystal clear that receiving recipients must operate within their existing mandates and legal authorities, and that agencies put in place protocols for ensuring the reliability of shared information, as per the Arar commission recommendations.
I wonder, Ministers, if you would have something to say in response to the professors.