Yes. If I could just add to that, I think the door is already open, because you could have a categorical outline of unsolicited commercial e-mail messages unless you have the explicit consent of the supposed recipient. The door has opened by opening up this existing business relationship exemption, because really, whether I have a commercial relationship with an organization doesn't tell you anything about whether I actually want an e-mail from them. So there already is an assumption being made, and at least in my own personal view, I don't want to receive the e-mails that I don't want to receive, and I want to receive all the other ones.
Try to legislate that. That's the problem. If you put it in a position of being about empowering consumers to be able to make choices about what goes into their inbox, and assuming that the consumers are reasonable people, maybe you need to fine-tune it so that you actually throw out the existing business relationship provision, because that doesn't necessarily tell you whether they want it, and you base it on a principle of consent, like we have in PIPEDA and other statutes.
You can say that they have your explicit consent to send you an e-mail, so they can go ahead. They can do that and you get to fine-tune it. They can send you e-mail messages about insurance services, but you can tell them not to send anything about mortgages. That gives the consumer even more control. There can be implied consent, and implied consent is always going to be determined by the circumstances, and it is going to be held to a reasonable standard, not a reasonable marketer's standard, not a “reasonable otherwise” standard, but what would be considered reasonable in society generally. That may be the middle ground. That's certainly not the position that's been put forward by the CBA, but there is hopefully some food for thought there.