What makes it not a realistic expectation? According to other references, the USA cannot compel companies to run scans on their own customers.