Mr. Speaker, I forgot to ask my colleague's views on something that is important to me, which is the issue that we are dealing with at the privacy committee under PIPEDA. We are thinking of changing the personal information protection legislation to include the duty to notify. Thirty-four U.S. states have an absolute duty to notify individuals if their personal information has been compromised or if there has been a breach of identity.
Does the member agree that there should be a mandatory duty for the banks to notify people, even if they suffered no injury and even if the bank corrected the mistake before any material loss was suffered, so people will know how the bank is handling their personal information?