Apple and Google are warning that Canada’s proposed online safety legislation could allow authorities to secretly force technology companies to weaken encryption protections on phones, cloud platforms, and messaging services.
The concerns center around Bill C-22, legislation currently being debated in Canada’s House of Commons. The bill is designed to expand lawful access powers for law enforcement and intelligence agencies investigating security threats and criminal activity. Canadian officials say the proposal would help authorities obtain digital evidence faster and respond more effectively to national security risks.
However, Apple, Google, Meta, and privacy advocates argue the legislation could create a framework allowing the government to quietly order companies to build surveillance capabilities or bypass encryption systems without informing users.
During testimony before Canada’s Standing Committee on Public Safety and National Security, representatives from Apple and Google pushed lawmakers to add stronger encryption protections and mandatory judicial oversight to the bill.
Google’s director for government affairs and public policy in Canada, Jeanette Patell, warned that secret government orders would undermine transparency and public trust. Apple similarly argued the bill could damage privacy protections users rely on to secure personal communications, financial information, and sensitive data.
The proposed law does not explicitly require companies to break encryption. Still, critics say vague language surrounding “systemic vulnerabilities” and lawful access powers could pressure firms into creating hidden backdoors or weakening security architectures over time.
Apple pointed to its recent conflict with the United Kingdom as an example of the risks posed by secret government demands. Last year, Apple withdrew encrypted cloud backup services from the UK after reportedly receiving a confidential order requiring access to encrypted user data.
When Canadian lawmakers asked whether Apple could leave Canada if forced to weaken encryption, Apple executive Erik Neuenschwander declined to speculate but said the company hoped amendments would be made to the legislation.
Meta also warned the bill could force companies to install government spyware or maintain capabilities that circumvent encryption protections. The company said such measures could ultimately make users less secure by introducing exploitable weaknesses into systems designed to resist cyberattacks and surveillance.
Public Safety Canada rejected claims that the legislation would require systemic vulnerabilities to be introduced into encrypted services. Government officials said the bill is intended to remain “encryption neutral” while still allowing lawful investigations into serious threats.