In terms of weaknesses of the systems for information collection and storage, I'm not sure that we can see what those weaknesses are. The committee, frankly, would be in a better position to interrogate those systems.
In terms of weaknesses in the way that the framing around the collection of this information is done, I'd just go back to my point that basically every detail about the information that's going to be collected is left to be prescribed in regulations. We might want to consider whether that's entirely appropriate or whether some of those details should be included in the legislation just so it's really clear what we're collecting, how it can be collected, and from whom. How do we ensure the integrity of that information if we can't interrogate those facts?