I think it's a shared responsibility. Everyone has to take precautions, like buckling our seat belts. People have a personal responsibility, but I can assure you that the agency is focusing a tremendous amount of effort, energy, investment and training on protecting people from identity theft.
Again, the information in question was obtained through systems outside the CRA. People used that information to get into our system. The CRA is implementing a number of measures. For example, in order to access an account, users are required to click on all the squares of an image that feature a bicycle. That's already a way of ensuring that a person, not a machine, is trying to get into the system. Another way is entering a code sent to a cellphone. A number of similar measures are being put in place. You know what I'm talking about, right?