Thank you, Chair. Through you, I would like to ask our two officials about the impacts of this language and if this is not already covered.
My rationale and thinking are that if a sector is already required to report, then whether or not they pay ransomware, the request or the breach would trigger the reporting, in my understanding of it, but I would like to know if I'm wrong.