Information & Ethics committee  We participate quite actively on two levels. The first is around the access to information community. We participate in interdepartmental standing meetings of ATIP personnel. Information is exchanged on best practices. As a matter of fact, we recently gave a presentation to other departments on the creation of the chief privacy officer and its mandate in other departments.

Information & Ethics committee  I think the numbers reflect that we take the problem quite seriously and follow through when incidents occur and that there is some consistency across all of our branches in ensuring that the issue is recognized and treated in a consistent fashion.

Information & Ethics committee  There are 150 million pieces of mail that we manage; around 120 million of that correspondence is correspondence coming from the CRA, and the remainder is correspondence coming back in to the CRA. It is 150 million in total.

Information & Ethics committee  That's correct.

Information & Ethics committee  It's about 1,600.

Information & Ethics committee  We have no evidence that that this has ever occurred. A significant majority of the misdirected mail that is sent out doesn't actually contain any personal information, as well.

Information & Ethics committee  Let me begin by giving you a bit of context around the numbers that appeared in written question 255, which I think is the question you're referring to. That response indicated that the CRA had experienced around 2,900 information, privacy, and data breaches in the time period requested.

Information & Ethics committee  Good morning, Mr. Chair, and thank you very much. Good morning to members of the committee. My name is Susan Gardner-Barclay, and I am assistant commissioner of the public affairs branch and chief privacy officer of the Canada Revenue Agency, or CRA. I am joined this morning by Helen Brown, our director general of the security and internal affairs directorate at the CRA's finance and administration branch.