That's fine.
I would like to welcome and thank all the public servants here with us today.
Thank you for your presentation, Ms. O'Brien. My first question is for you.
If I understood correctly, in the consultation document of 2017, the intention was to protect consumers against non-authorized use or errors, except in cases of fraud. In Bill C-30, this idea is rather vaguely expressed in sections 17, 18 and 19, under the concept of “Operational Risk Management and Incident Response”, where they are talking about the provider's risk management framework, which must comply with regulations.
Am I to understand that the protection will be set out in regulations? If so, why wasn't it included in the act?