I think privacy breaches are always something that we have to be guarding against, and my office should be informed of them when they occur, and the more sensitive the information an organization holds, the stronger the protection should be in terms of those breaches. That's fundamentally important.
I think the potentially highly intrusive nature of these tools warrants that they be looked at from a privacy standpoint. Whatever the tool is, it needs to be looked at from its impact and needs to be looked at in terms of proportionality and minimal use, and, if there's a risk of private sector use, well, that has to be looked at within that context of private sector use, which is going to have far different justifications from the public sector in terms of law enforcement.