Google, Apple Sounds Alarm On Canada

Google’s warning lands because it points to a deeper fear: once a government requires built-in access to private communications, the line between lawful investigation and permanent surveillance gets dangerously thin.

Quick Take

Bill C-22 is framed by supporters as a lawful-access bill, but critics say its design pushes Canada toward a lasting surveillance infrastructure.^[5]^[6]
Google and other tech companies warned that mandated access capabilities can weaken encryption and create security risks beyond the original target.^[1]^[4]
The bill’s metadata-retention rules matter because metadata can reveal who people contact, where they go, and when they move.^[1]^[3]
Supporters argue the bill still requires authorized process and does not authorize mass surveillance, creating a sharp policy split.^[5]^[6]

Why the Phrase “Surveillance Infrastructure” Stuck

The phrase “surveillance infrastructure” resonates because it describes a system, not a single police request. Google’s concern, as reported in the research package, is that requiring companies to build access-ready systems creates a standing capability that can outlive any one investigation and expose more people than the case at hand.^[1] That is the central political problem: once the machinery exists, the temptation to expand its use rarely disappears.

Bill C-22 also goes beyond ordinary warrant talk by requiring some providers to retain categories of metadata for up to one year.^[3] That is not the same as storing message content, but it is still highly revealing. As the Electronic Frontier Foundation noted, metadata can show who you communicate with, where you go, and when you do it.^[1] In practical terms, that can sketch a person’s life with unnerving accuracy.

What Critics Say the Bill Actually Does

Critics argue the bill creates a backdoor problem by design. OpenMedia says Bill C-22 would force internet providers, messaging apps, and cloud services to build surveillance backdoors and store a year of data.^[2] The Internet Society adds that forcing digital services to weaken security gives a key to anyone who wants access, not just police.^[4] That is why the backlash has come from both privacy advocates and major technology companies.

Michael Geist’s analysis focuses on the metadata provisions and calls them mandatory retention of information about all users, regardless of suspicion.^[3] He argues the bill shifts the default from preserving data about specific suspects to retaining data about everyone.^[3] That shift matters because it changes the relationship between citizens and service providers. The ordinary Canadian becomes a data subject first and a suspect only later, if ever.

What Supporters Say in Response

Supporters of the bill reject the mass-surveillance label. Public Safety Canada says Part 2 of Bill C-22 does not create new authorities for law enforcement agencies and the Canadian Security Intelligence Service to intercept communications or obtain information. The federal government also says the bill would not authorize mass surveillance or any surveillance at all.^[6] On paper, that is a narrow legal defense: the bill is meant to help providers comply with already authorized requests, not to erase judicial oversight.

The strongest counterargument is procedural, not philosophical. Officials say the state still needs lawful authorization before accessing information.^[5] That matters, because a warrant is supposed to separate investigation from intrusion. But critics respond that a warrant requirement does not solve the architecture problem if the law still compels companies to create retainment and access systems in the first place.^[2]^[3]^[4] In their view, the danger is not only who can ask, but what must exist for asking to work.

The Real Fight Beneath the Politics

This debate is really about whether governments can demand access-ready digital systems without degrading the security of everyone who uses them. The pro-bill argument says targeted lawful access can coexist with privacy and cybersecurity.^[5] The anti-bill argument says that claim collapses in the real world, because a backdoor, retention mandate, or weakened encryption is never confined to the intended user. One weakness becomes many weaknesses.

That is why Google’s warning matters beyond one bill. It captures the basic conservative instinct that institutions built to collect power often keep that power, and then ask for more. Bill C-22 may be sold as a tool for investigators, but the research shows why critics hear something else: a durable surveillance framework, a year of retained metadata, and a permanent security compromise hidden inside the promise of public safety.^[1]^[2]^[3]^[4]