Because, Mr. Speaker, as a result of a particular audit to which the hon. member makes reference we have taken action.
I would note that we have identified respective regional IT security co-ordinators and we have defined their mandate. I would note that we have formalized the communications mechanism across HRDC, so everyone knows how the information is to be managed. I would also note that we have included an IT security structure and organization in all our security awareness programs.
We did an audit, we found shortcomings and we took action. That is how it is supposed to work.