絕に people can ask questions over lunch. Let's just go for one or two, just very quickly. It is one down here. I'm literally going to limit it to two questions. There is one there. It is a question for Kwahan. I was quite surprised that you didn't mention Safe Harbor anywhere, because I mean it is certainly our belief that we can transfer data outside of the European economic area providing it is to a country that complies with Safe Harbor directive. So I just wondered what your views were on that. Chwain, dyna'n gofyn i'r tuwch. Y Llywodraeth SAFE HARBER is just for the US. There's a whitelist of certain countries. So if it's a whitelist of countries, it's fine. If it's a SAFE HARBER, it should be okay, but in the UK. But European regulators have raised a lot of doubts about SAFE HARBER. And in future, they might try and kill it. Or at least put a deadline on it. So it can be tricky if you're outside the UK. I think UK is probably okay as long as the data is kept in the US. Is there one more at the back? Is there a question at the back there? And then we'll take the very last one over there and that'll be it. I'm Tony Scott, web developer. The law does seem to line with reality. An immediate thought that springs to mind with me is to solve very fine and good saying to keep personal data within the EEA. But it doesn't take it into account where the internet is working. There's a package, package that doesn't recognise national borders. from neighbours, I've got a client on them. The pockets would go anywhere around the world. If each pocket in theory could go a totally different route, any in every country in the world. I didn't have time to mention it, there is an exemption for mere transit. End of the question about follow the sun practices, is that mere transit? Thanks. A very last question, very briefly if you can please. Do we need to worry about the Patriot Act in the US? In terms of commercial or legal sense of data? Again, that is kind of... because US cloud providers are dominant, there's a lot of emphasis on the Patriot Act, but actually all countries have laws which enable them to get your data. It's just that US cloud providers are dominant. In many ways, because I said earlier on, a lot of cloud providers actually put in their terms that they have the right for their own protection, they have the right to disclose data if they're requested by authorities. In many ways, this is a personal data issue about can you transfer the data outside the EEA? The information commissioner has said, if you are a cloud user, you've signed up for a US cloud provider. If they do transfer data under the Patriot Act, you're not necessarily in trouble because it's not you doing it, it's the cloud provider that's doing it, and if they do it because they were required to by law as opposed to being simply asked, then they're protected by law because they're required to. But in many ways, it's not just that. If you have got a cloud provider who's US based, you might have data transferred out to them, but if you have another cloud provider, you might get data that's sucked out of there by their local country. So it's not just the US that you have to worry about, it's all countries really. OK, thank you. Can we just say very quickly, thank you to our three speakers in this session.