We could reach out to them in our exchanges, but what's important, I think, is that the obligation rests on departments themselves to notify my office if they are using these tools. I wouldn't want to create an expectation that unless we proactively ask all organizations they don't have to provide us with the information. I think it's important that this is how the directive and the policies of Treasury Board are designed. The onus is on the organizations to advise the Privacy Commissioner of the use of those tools, and I would expect them to do so.
On August 8th, 2022. See this statement in context.