Actually, when we do a security classification, as I said, there are two tools. There's a statistical component and a clinical component. Obviously, we look at security risks, so we look at offence severity and previous offences. We look at those things.
In terms of assigning a security classification, that's done by law. We have to assign one to each inmate and do reviews at regular intervals. For those who are in maximum and medium security, we have to review the security classification every two years. However, you can have somebody like Paul Bernardo, who remains a high risk to the safety of the public, yet we can manage this particular offender or offenders like him in a medium-security institution.
It's managing the risk that the offender presents in the institution.