We need to talk about #BillC22- the largest surveillance bill Canada has ever seen.
It would force every messaging app, cloud service, internet provider and more that we use to build government backdoors into their infrastructure. Permanently.
Tell your MP to kill it now 👇
https://www.openmedia.org/StopC22-mast
That's not just more 🇨🇦 state surveillance.
In 2024, Chinese state hackers broke AT&T+Verizon through a similar backdoor. 1 mil+ people's data was compromised.
Coming soon to 🇨🇦 through #BillC22.
🇨🇦 goes further than US ever did. US law only covers telcos. #BillC22 covers messaging apps, cloud storage, online platforms. It may even cover phone and laptop hardware too.
https://robertdiab.substack.com/p/ottawa-reboots-its-lawful-access
And here's the worst part: #BillC22 requires keeping 1 year of your metadata.
Who you called. Where you were. Which protest you attended. A comprehensive record of the life of every Canadian, ready for a warrant request from law enforcement, or a clever hacker.
Much of the discussion around the new lawful access bill (Bill C-22) has focused on provisions that improved upon Bill C-2, notably the decision to scrap the warrantless information demand power by requiring judicial oversight for access to subscriber information. Yet despite that improvement, there remain serious privacy concerns with the government's latest iteration of lawful access. Buried in the second half of Bill C-22 is a provision granting the government the power to require “core providers” to retain categories of metadata, including transmission data, for up to one year. This is mandatory metadata retention that would require telecom and electronic service providers to store information about the communications of all their users, regardless of whether those users are suspected of anything. It is one of the most privacy invasive tools a government can deploy and the international experience suggests that there are major privacy risks.
#BillC22 in theory does not force "systemic vulnerabilities"; but gov can explicitly reinterpret all terms at will by regulation.
The decades-long battle over lawful access entered a new phase yesterday with the introduction of Bill C-22, the Lawful Access Act. This bill follows the attempt last spring to bury lawful access provisions in Bill C-2, a border measures bill that was the new government’s first piece of substantive legislation. The lawful access elements of the bill faced an immediate backlash given the inclusion of unprecedented rules permitting widespread warrantless access to personal information. Those rules were on very shaky constitutional ground and the government ultimately decided to hit the reset button on lawful access by proceeding with the border measures in a different bill. Lawful access never dies, however. Bill C-22 cover the two main aspects of lawful access: law enforcement access to personal information held by communication service providers such as ISPs and wireless providers and the development of surveillance and monitoring capabilities within Canadian networks. In fact, the bill is separated into two with the first half dealing with “timely access to data and information” and the second establishing the Supporting Authorized Access to Information Act (SAAIA).
🇨🇦 looked at 🇺🇸's surveillance problems and said: hold our beer.
#BillC22 is proposing far greater surveillance, and a permanent treasure of private Canadian data no other democracy demands.
It's wildly dangerous, and we need to shut it down, NOW!
https://www.openmedia.org/StopC22-mast.
🚨 Bill C-22 forces every Canadian internet provider, messaging app & cloud service to build surveillance backdoors and store a year of your data. Foreign state hackers exploited similar legislation in the US. Shut the backdoor: https://openmedia.org/StopC22 #BillC22
OpenMedia
millennial fulcrum