Marking 20 years
of bold journalism,
reader supported.
Rights + Justice

Shelving Bill C-30 Didn't Save Your Privacy

Internet surveillance law is dead but not Canada's telecom transparency gap.

Michael Geist 26 Feb

Michael Geist holds the Canada Research Chair in Internet and E-commerce Law at the University of Ottawa, Faculty of Law. He can reached at [email protected] or online at

image atom
RCMP asked telecoms for customer info 28,000 times in 2010.

The government's recent decision to kill its online surveillance legislation marked a remarkable policy shift. The outcry over the plan to require Internet providers to install surveillance capabilities within their networks and to disclose of subscriber information on demand without court oversight sparked an enormous backlash, leading to the tacit acknowledgment that the proposal was at odds with public opinion.

While many Canadians welcomed the end of Bill C-30, the year-long battle over the bill placed the spotlight on an ongoing problem with the current system of voluntary disclosure of subscriber information: Internet providers and telecom companies disclose customer information to law enforcement tens of thousands of times every year without court oversight.

The law permits these disclosures with no reporting requirements or accountability mechanisms built into the process. According to data obtained under the Access to Information Act, the RCMP alone made over 28,000 requests for customer name and address information in 2010. These requests go unreported - subscribers don't know their information has been disclosed and the Internet providers and telecom companies aren't talking either. 

Bill C-30 would have introduced new reporting requirements for these disclosures, which might have allowed for insights into what Internet providers and police are doing with subscriber information. The proposed reporting requirements needed some tweaking -- there was nothing to stop police from by-passing the reporting requirements by voluntarily collecting the information -- but the commitment to increased transparency on personal information disclosures was a long overdue reform.

Those provisions may have died with Bill C-30, but the government should move quickly to establish a statutorily mandated reporting system for disclosures of personal information by telecom and Internet providers.

Google earliest to open up

Some Internet companies have voluntarily established transparency programs. Google was the first to do so, having posted transparency reports every six months since 2009. The company's latest transparency report provides information on requests to remove data from its search index, copyright complaints, and demands from governmental authorities for user data.

The most recent Canadian data indicates that the company receives nearly 100 requests for user data each year from governmental authorities. Over the past 18 months, Google complied with only one-quarter of such requests.

Twitter recently followed Google's example by issuing its own transparency report. While the U.S. had by far the most requests for user data, Canada ranked third worldwide (tied with the United Kingdom) with 11 requests in the first six months of 2012. Much like Google, Twitter complied with only a minority of requests.

While companies such as Google and Twitter voluntarily report requests for user data, Canada's telecom giants remain silent, offering no details on the number of requests, the rate of compliance, or how many Canadians are affected by the disclosures.

Secret telecom working group

In fact, in the months leading up to the introduction of Bill C-30, Canadian telecom companies formed a secret working group designed to create an open channel for talks between telecom providers and government. Rather than focusing on customer privacy, those meetings included discussions on developing a compensation formula for the costs associated with disclosing subscriber information.

Both government and the providers should move to address Canada's telecom transparency gap. The government could revive the disclosure reporting requirements by including those provisions in either Bill C-55 (a warrantless surveillance bill tabled on the same day the government announced that it was killing Bill C-30) or Bill C-12 (the languishing privacy reform bill).

The telecom providers, led by Bell, Rogers, Telus, and Videotron, should follow the example established by Google and Twitter by closing the telecom transparency gap. Their customers deserve regular reports on their disclosure practices as well as aggregate data on actual disclosures of customer information without court oversight.  [Tyee]

Read more: Rights + Justice, Politics

  • Share:

Facts matter. Get The Tyee's in-depth journalism delivered to your inbox for free

Tyee Commenting Guidelines

Comments that violate guidelines risk being deleted, and violations may result in a temporary or permanent user ban. Maintain the spirit of good conversation to stay in the discussion.
*Please note The Tyee is not a forum for spreading misinformation about COVID-19, denying its existence or minimizing its risk to public health.


  • Be thoughtful about how your words may affect the communities you are addressing. Language matters
  • Challenge arguments, not commenters
  • Flag trolls and guideline violations
  • Treat all with respect and curiosity, learn from differences of opinion
  • Verify facts, debunk rumours, point out logical fallacies
  • Add context and background
  • Note typos and reporting blind spots
  • Stay on topic

Do not:

  • Use sexist, classist, racist, homophobic or transphobic language
  • Ridicule, misgender, bully, threaten, name call, troll or wish harm on others
  • Personally attack authors or contributors
  • Spread misinformation or perpetuate conspiracies
  • Libel, defame or publish falsehoods
  • Attempt to guess other commenters’ real-life identities
  • Post links without providing context


The Barometer

Are You Concerned about AI?

Take this week's poll