CIRA has received complaints about the harvesting and resale of historic whois data. While they maintain a TOS against this practice CIRA knows the policy is not being followed. CIRA would generally ignore complaints about this situation and would simply refuse to respond. Now the matter was brought up to the Privacy Commissioner's Office (along with the issue of the bogus lawsuit filed by DomainTools.com) so CIRA has finally responded and said they contacted DomainTools.com. However, CIRA is refusing to release the correspondent to the public and their lawyer is telling members of the public that if they want to see the letter they will have to take legal action against CIRA! So much for the openness and transparency claimed in their bylaws. At least ICANN publishes their correspondence. A web page has been set up to follow the issue at: http://whoissecurity.com/ca-whois-harvesting/