Canada Amends Bill C-22 After Backlash

Canada is revising its controversial Bill C-22, aiming to safeguard encryption and clarify metadata rules after facing significant backlash from the tech industry.

The Canadian government has announced it will amend its proposed lawful access legislation, known as Bill C-22. This decision comes after intense criticism from a broad coalition of tech companies, privacy advocates, and VPN providers who raised alarms about the bill's original text. The core concerns centered on provisions that could have been interpreted to undermine strong encryption and impose unclear obligations on companies regarding the retention of user metadata. The government's proposed changes are specifically intended to address these two key areas, aiming to provide greater clarity and protect fundamental security practices.

This development is crucial for any technology company with users or operations in Canada. The original draft of Bill C-22 created significant uncertainty for developers, security teams, and legal departments. Critics argued it could compel companies to create "backdoors" in their encrypted products or services, fundamentally weakening user privacy and data security. The amendments signal a potential shift towards a more balanced approach, one that respects the importance of encryption while still defining a framework for law enforcement access. The final text will directly impact compliance strategies, data handling policies, and the technical design of services offered in the Canadian market.