I'd raise two considerations.
One is that this would not be consistent with the definition that currently appears in Quebec's privacy law, which requires information to be anonymized according to generally accepted best practices. There would be a deviation between those two, which is not in and of itself necessarily.... They are separate statutes, but in terms of company obligations and how companies will be able to live up to both of those statutes, where consistency can be found, it can be very helpful.
The other is that “generally accepted best practices”, as you note, is a well-established construct that allows for standards and certifications to continue to keep pace with the movement of technology and the construct. It being absent suggests that you're held to a standard without the notion that you are, in fact, to draw upon the state of the art as it relates to the meeting of the obligation.