Tech Giants WARNING of Canada’s BACKDOOR Push

Canada’s new lawful-access fight is not really about one bill; it is about whether the federal government is normalizing a surveillance architecture that reaches into everyday communications.

Quick Take

Google warned that Bill C-22 could create a “surveillance infrastructure” and weaken end-to-end encryption. ^[6]
Apple and other critics say the bill would force providers to build backdoors and retain user metadata for up to one year. ^[1]^[2]^[3]
Ottawa says the measure is meant to support lawful investigations, not mass surveillance. ^[5]^[6]
The dispute turns on a familiar question: can access mandates stay targeted, or do they create permanent security risks for everyone? ^[1]^[2]^[3]

Why the warning from Google matters

Google’s warning landed because it used language that goes beyond ordinary privacy criticism. In its filing, the company said Bill C-22 would establish a “surveillance infrastructure,” and related reporting said the company objected to weakening encrypted services to make that system work. That is the core concern for many users: once a government compels access pathways, those pathways can become part of the permanent structure of the internet rather than a narrow investigative tool. ^[6]

Apple has raised a similar alarm, arguing that building a backdoor into encrypted devices or services creates risk for everyone, not only the intended target. Critics say the bill would force companies to store metadata for up to a year and could even require providers to maintain mechanisms that help law enforcement reach data later. Supporters of the law may see that as practical policing. Opponents see it as a design choice that turns private communications into a managed access system. ^[1]^[2]^[3]

What Bill C-22 would actually do

The strongest factual dispute is over scope. Public Safety Canada says Part 2 of Bill C-22 does not create new powers for law enforcement or the Canadian Security Intelligence Service to intercept communications or obtain information. Government materials also say the bill is meant to strengthen timely access for investigations, while maintaining lawful process. That framing matters because Ottawa is presenting the bill as a compliance framework, not a mass-surveillance program. ^[5]^[6]

Critics do not accept that framing. The Electronic Frontier Foundation says the bill would force digital services, including telecoms and messaging apps, to record and retain metadata for a full year and expand information sharing with foreign governments. Michael Geist’s analysis likewise says the bill would require “core providers” to retain categories of metadata, including transmission data and location-related information, for up to one year. Those details are why the debate centers on infrastructure, not just warrants. ^[1]^[2]

Why privacy advocates see a broader danger

The deeper fear is that mandated retention changes the default relationship between citizens and service providers. Instead of preserving data only when investigators have a specific reason to seek it, the bill would make large amounts of information available because it was required to exist in the first place. The Electronic Frontier Foundation and the Internet Society both argue that encryption backdoors and retention mandates can create systemic vulnerabilities, since a weakness built for one purpose can be exploited by others. ^[1]^[3]

That concern is politically broad because it touches public trust, economic security, and civil liberties at the same time. Conservatives who worry about state overreach can see a surveillance state in the making, while liberals who worry about corporate and government concentration can see another example of ordinary people absorbing the risk while institutions claim control. Ottawa insists the law is targeted; critics say the architecture itself is the problem. The unresolved issue is whether a system designed for access can stay limited once it exists. ^[1]^[5]^[6]