We have a vetting mechanism internally.
Regarding the release of information, some contracts are repetitive in nature, like those for protection services in various missions, and there are the same kinds of issues, so we know exactly what we're looking for and we have processes in place to withhold specific information.
In the instance of individual, specific and unique contracts, there is a review on a quarterly basis before the report is published during which the data is scrubbed in accordance with certain criteria. It's validated by internal staff, from both security and information management, and then it's moved forward for publication if it's deemed non-sensitive or not subject to national security.