—and responding. The first thing is prevention. This is why on the privacy side parties have a requirement now to have a policy. Again, we will be engaging the parties on that. That requirement will be triggered shortly, and then they will have three months to have those policies. That should include measures to safeguard the data. That's where we are on this.
On February 7th, 2019. See this statement in context.