Information & Ethics committee  I'm sorry; my apologies. The first two, the duty to protect and the data matching, were considered separately, and they were considered to be at least connected to the reporting by the federal Privacy Commissioner. Within the discussion we had at the Canadian Bar Association, b

Information & Ethics committee  My apology; I believe it is included in the necessity one. One moment.

Information & Ethics committee  I think there may be a little bit of confusion, because we have PIPEDA, the private sector legislation, which has been in force and was just subject to its five-year review. When it was passed, PIPEDA didn't have a breach notification requirement explicitly stated in it, but amon

Information & Ethics committee  We don't specifically say within the brief, so I'm kind of moving into my own views on this, but yes, I would say those are not trivial.

Information & Ethics committee  Sure, and it does—

Information & Ethics committee  It's our view that the government should be controlled with respect to the security safeguards and notification rules to standards at least as strong as will be in the private sector. It's an important maxim—at least in the more modern principles of personal information protect

Information & Ethics committee  Thank you for the opportunity. We're looking at the Canadian federal Privacy Act, which when it was passed in 1982 was undoubtedly on the cutting edge of privacy legislation. But it's starting to show its age. It was built based on what are referred to as the OECD guidelines, w