I thank the member for his question.
One feature of generally accepted best practices is that they continue to evolve with the state of the technology. It's one of the reasons we believe it's an important consideration for inclusion within the act, so that it continues to ensure that it meets the state of the art.
We have concerns that absent a commitment to generally accepted best practices, organizations would not have a North Star or a guide as to what they should be doing as it relates to the anonymization of information. There could be a plethora of approaches taken.
Generally accepted best practices would vary, but I think you'd find within industry and within users a lot that they could turn to as it relates to that.
That would be my primary response.