Thank you, Minister.
Indeed, December 4 was when the privacy and responsible data team, which is a team within the office of the chief information officer, followed up with all 13 organizations.
We came up with a series of six questions. Obviously, the first question was on whether your institution used the tools or software described in the article. The second question was on which personal information banks were associated with those programs or activities, because a PIA is required on a program or an activity, not an actual tool. Then, what are the legal authorities under which those programs or activities operate? We then asked whether or not the program area consulted their section 10 delegate as to whether or not the Privacy Act was addressed in looking at those tools, and we also asked some questions about the procurement of those tools as well.