Modernizing policy, partnerships and transparency

Table of Contents

Executive spotlight

Modernizing the CSIS Act: Enabling CSIS to Better Protect Canada and all Canadians

As Deputy Director of Policy and Strategic Partnerships, Nicole Giles is responsible for strategic policy development, legislation and strengthening CSIS’ relationships and engagement with oversight bodies, foreign partners, and Canadians.

This was an important year for CSIS. Not only did we celebrate 40 years of protecting national security, but our legislation, the CSIS Act, received the most significant updates since its enactment in 1984. We recognised that the Act had aged, and that we needed to better equip CSIS in the face of an increasingly complex threat environment and rapid technological change.

As Deputy Director of Policy and Strategic Partnerships, I had the honour of directing the effort to modernize the CSIS Act. This was truly a team endeavour. Its success is owed to the contributions of individuals from across CSIS, the Government of Canada, and Canada. Many Canadians played a key role by taking the time to provide their diverse perspectives on the proposed modifications to the CSIS Act. A total of 360 Canadians provided written submissions and CSIS met directly with over 200 stakeholders, representing a wide-range of interests—provincial, territorial and Indigenous, business, academic, and ethnic, religious and cultural—from Whitehorse to Halifax, and many cities in between. Throughout the process, Canadians generally noted the need for changes to the CSIS Act, and agreed that existing gaps were problematic. Many indicated that the proposed amendments could better equip CSIS and the government to respond to national security threats such as foreign interference, and their input ultimately informed the amendments proposed by the government to the CSIS Act in Bill C-70, An Act respecting countering foreign interference.

On June 19, 2024, Bill C-70 received royal assent, helping fill a number of key gaps in CSIS’ authorities. Bill C-70 also provided the government with stronger measures to protect national security through amendments to the Security of Information Act, the Criminal Code, and the Canada Evidence Act, as well as via the establishment of a foreign influence transparency registry.

With these amendments, CSIS is better able to equip a broader range of national security stakeholders, operate in a digital era, and respond to changes in the threat environment, while remaining accountable to all Canadians.

With the amendments to information disclosure, CSIS can now share information with entities or persons outside the Government of Canada to proactively build resiliency to threats. This ability will help build society-wide resilience by increasing our partners’ ability to understand and recognize threats, and to protect their people, information, assets, as well as Canada’s interests. In 2024, CSIS conducted 28 resiliency briefings since the Act came into force, and we are continuing to deliver resiliency briefings in 2025. We have moved quickly to share threat information with provincial and territorial governments, Indigenous organizations, religious and community groups, and national advocacy organisations like the Business Council of Canada, a network composed of chief executives from Canada’s leading enterprises across the private sector.

Our new legislative amendments also provide CSIS with expanded judicial authorizations modeled on authorities routinely relied on by Canadian law enforcement and intelligence services in other democracies. For instance, CSIS now has the ability to request a single-use warrant to conduct a one-off investigative technique, such as examining the content of a USB key that may contain information that advances a national security investigation. The single-use warrant is less intrusive than a traditional warrant as it does not authorize ongoing collection, but like all warrants and orders, it still requires Federal Court approval and remains subject to robust oversight by the Minister and the National Security and Intelligence Review Agency.

The amendments to CSIS’ dataset regime increase the efficiency of the collection and use of datasets, and the retention timeline from 90 to 180 days for CSIS to decrypt, translate and evaluate datasets before seeking permission from the Minister of Public Safety to retain them. This is an important change as datasets can vary in size from a few entries to billions of records.

In addition, the amendments to the CSIS Act closed a technical gap to allow CSIS to collect information from within Canada that is located outside Canada, when the information is about the activities of foreign individuals in Canada.

I’ve said before that whole-of-society threats require whole-of-society responses. The process to modernize the CSIS Act demonstrates how effective a whole-of-society response can be. This is what separates us from our adversaries, and makes us stronger.

"With these amendments, CSIS is better able to equip a broader range of national security stakeholders, operate in a digital era, and respond to changes in the threat environment, while remaining accountable to all Canadians."

Nicole Giles, Deputy Director of Policy and Strategic Partnerships at the Canadian Security Intelligence Service.

Building partnerships through engagement

CSIS’ outreach and engagement activities aim to develop relationships with, work alongside, and learn directly from Canadians to build a whole-of-society approach to mitigate national security threats.

Academic outreach

In 2024, CSIS’ academic outreach program continued to bridge the worlds of academia and intelligence through roundtable events, workshops, and via the production of commissioned papers. By drawing regularly on experts and taking a multidisciplinary approach, CSIS plays an active role in fostering a clearer understanding of security issues, a process that benefits both CSIS’ experts, as well as the researchers and specialists that collaborate with us.

In 2024, CSIS continued to deliver its flagship academic outreach program: the Expert Briefing series, which hosts leading academics and researchers for briefings usually attended by over 500 Government of Canada participants per session. The 2024 series touched on topics including the threat and implications of increased Russia-China coordination, supply chain vulnerabilities in hardware, moral injury and its potential impact on intelligence officers, and the psychology of ideologically motivated violent extremist actors.

In October 2024, CSIS hosted the University of Waterloo’s Institute of Quantum Computing (IQC) for a discussion with Government of Canada officials on the state of quantum research and development in Canada. The meeting was the latest in a series of engagements between CSIS and IQC, including CSIS participation on a panel discussion at Quantum Connections hosted by IQC in May 2024. By encouraging exchanges and collaboration with critical strategic sectors, CSIS is better informed and can leverage the expertise of Canada’s rich research sector while increasing resiliency to malicious actors.

In June 2024, CSIS organized a workshop for international partners headquartered at the North Atlantic Treaty Organization (NATO) in Brussels, Belgium. This first-of-its-kind event brought together representatives from all NATO member states to discuss pressing intelligence threats to the alliance, focusing on a solutions-oriented approach to our greatest adversaries. International cooperation and alliances are more important than ever as we face a multi-faceted threat environment. CSIS looks forward to continuing to build on these efforts with NATO and other partners in 2025.

To recognize CSIS’ 40th anniversary, CSIS was a key sponsor of a conference organized by the University of New Brunswick entitled “Canadian Intelligence History at the Crossroads: Historical Reflections on the Occasion of CSIS’ 40th Anniversary.” Offering commentaries on Canadian intelligence history from leading academics, the event sought to explore CSIS’ recent past and inspire a new generation of intelligence history scholars. CSIS was pleased to host the conference’s second day, where CSIS Deputy Director, Policy and Strategic Partnerships, Nicole Giles offered the keynote address reflecting on the past, present and future of intelligence history, and encouraging the next generation of practitioners to learn from our past so as to shape our future.

Engagement activities

CSIS’ stakeholder engagement program continued to expand and deepen relationships with key stakeholders across the community advocacy, academic, and private sectors; and with Indigenous partners across Canada. CSIS continued to engage various stakeholders in early 2024 as part of the public consultations on Bill C-70: An Act respecting countering foreign interference. Insights gleaned from these consultations were incorporated into the legislation, and proved critical to the successful passage of the Bill. Through the modernized authorities resulting from An Act respecting countering foreign interference, CSIS has been able to quickly deliver national security resiliency briefings to key partners across all sectors of society, helping protect key national security interests from threats of espionage, foreign interference, and extremist violence.

In July 2024, CSIS was invited to present at the 42nd Annual Meeting of the Federal-Provincial-Territorial Ministers Responsible for the Status of Women to provide information about the threats from incel and gender-based violent extremism, as well as an overview of CSIS’ various activities with government and civil society partners to combat such threats. CSIS also provided expert advice to Government of Canada funding advisory boards working with civil society and community organizations to counter violent extremism.

CSIS has been working with Canadian businesses and business associations, including the Business Council of Canada (BCC) as well as the Canadian Chamber of Commerce, to enhance communication between the public and private sectors, as well as to build resiliency and minimize security threats. This past year, CSIS travelled to London to meet with MI5’s National Protective Security Authority and to Washington to meet with the FBI’s Domestic Security Alliance Council, as well as the Cybersecurity and Infrastructure Security Agency, in partnership with private industry leaders with the BCC. These joint engagements provided opportunities to learn best practices on sharing information between the public and private sectors, as security agencies work with private industry to mitigate against threats, especially where critical infrastructure is concerned. CSIS has already had robust and regular engagements with businesses and business associations to deliver threat briefings to support informed decision-making, including to the Canadian Chamber of Commerce and to the BCC’s National Security Working Group and National Security Executive Network.

Indigenous, Arctic and Northern engagement

In 2024, CSIS continued engagements with Arctic and Northern partners, including governments, communities, Indigenous groups, local leadership, and research institutes. This engagement work in the region is focused on ensuring partners have relevant information to build and maintain resiliency against current and emerging threats. Throughout the year, CSIS officials traveled to Nunavut, the Northwest Territories, the Yukon, and Nunavik (Northern Quebec), in addition to hosting senior officials and leadership from key Northern and Indigenous partner organizations at our headquarters. These various activities have considerably advanced CSIS objectives to build meaningful partnerships in the Arctic and North that help inform CSIS’ understanding of the region’s dynamics and to contribute to a safer, and more secure and prosperous environment for its residents and all Canadians.

In addition to continuing to develop relationships with First Nations, Inuit, and Métis organizations and governments, CSIS continued to work with Indigenous partners in 2024 to implement the United Nations Declaration on the Rights of Indigenous Peoples Act, the Government of Canada’s legislation to implement the United Nations Declaration on the Rights of Indigenous Peoples (UN Declaration). CSIS the only intelligence service in the world to have made UN Declaration commitments. In June 2024, CSIS released a publication detailing our UN Declaration Act commitments and providing highlights of their implementation at CSIS.

In early 2024, as part of our UN Declaration Act Action Plan commitments, CSIS worked with the Métis Nation British Columbia to develop a training video on Métis history, culture, and perspectives, to assist in cultural competency training for CSIS officers.

In June 2024, CSIS took over as Chair of the Five Eyes Indigenous Network, a position CSIS will hold until June 2025. The Network was created to consider Indigenous perspectives and security intelligence outcomes affecting Indigenous Peoples across Five Eyes countries. CSIS looks forward to continuing to work with Indigenous and international partners through this initiative into 2025.

“The Business Council of Canada is proud of the strategic partnership it has forged with CSIS to enhance the Canadian private sector’s awareness of, and resiliency against, malicious threat activity targeting Canadian businesses in every sector and region of our country. Through increased information sharing and collaboration, Canadian businesses have been able to better protect their employees, customers, and the communities in which they operate."

- Goldy Hyder, President and Chief Executive Officer, Business Council of Canada

“As Canadians, we are concerned about foreign government interference that undermines our democratic processes and intimidates our citizens. At the same time, as Asian Canadians marginalized by systemic anti-Asian racism, we must ensure that security-related laws and policies do not become tools of oppression that target and deny the rights of Asian and racialized communities. We support CSIS focus on combating racially-motivated hate and threats, and urge CSIS to continue building trust with Asian Canadian communities through meaningful engagement to protect Canada’s democracy and values of inclusion and equity.”

- Amy Go, President, Chinese Canadian National Council for Social Justice

“Collaboration with external partners is vital for national security. Civil society and the private sector face direct threats and also hold key pieces of the security puzzle. The workshops, briefings, and outreach by CSIS’ Academic Outreach and Stakeholder Engagement are critically important in furthering Canada’s national security.”

– Maria Robson-Morrow, Intelligence Project, Belfer Center for Science and International Affairs at the Harvard Kennedy School

“It remains crucial for CSIS to continue in its positive efforts to repair trust and build meaningful relationships with Canadian Muslim communities.”

– Amira Elghawaby, Canada’s Special Representative on Combatting Islamophobia

“When we began planning a conference on Canadian intelligence history in 2022 we were unsure what support, if any, we would get from the government. Over the next two years, however, CSIS proved to be our strongest advocate. The success of the conference reinforced my firm belief that intelligence history is at its strongest when historians and practitioners work together to both share and compare our understandings of the past.

– Sarah-Jane Corke, Associate Professor, University of New Brunswick

Policy and accountability

Protecting national security and Canada’s interests requires CSIS to be a policy-driven organization that is accountable to Canadians and Parliament.

Lawful Access Advisory Committee

For law enforcement and national security agencies in Canada, lawful access is essential in the prevention, investigation, and prosecution of serious offences, and in the investigation of threats to the security of Canada. Lawful access entails the collection of data, such as documentation, computer data, and other information from telecommunications companies to investigate suspected threats to Canada’s national security in a legal and ethical manner that protects the rights and freedoms of Canadians. However, no centralized program exists in Canada that fully addresses lawful access requirements and initiatives responsible for coordinating, developing, implementing, or maintaining lawful access systems. The rapid evolution of technology has also increased the complexity and inefficiencies that impact the ability of law enforcement and national security agencies to keep investigative capability up to date.

As part of the RCMP' and CSIS’ ongoing effort to address lawful access challenges, the Lawful Access Advisory Committee (LAAC) was created in 2023. LAAC is an advisory body composed of senior level lawful access representatives from Canadian telecommunications companies, all levels of law enforcement, CSIS and other federal departments. LAAC provides a collaborative forum for members from both government and private industry to identify and openly discuss challenges pertaining to lawful access, and develop potential solutions to address challenges in a way that ensures full and fair representation for all stakeholders.

External review and oversight

CSIS is dedicated to upholding the highest standards of transparency and accountability, ensuring that its operations comply with Canadian law, including the CSIS Act and the Canadian Charter of Rights and Freedoms, adhere to direction from the Minister and the courts, and align with Government of Canada policies.

External review by the National Security and Intelligence Committee of Parliamentarians (NSICOP) and the National Security and Intelligence Review Agency (NSIRA) provides CSIS with findings and recommendations that offer opportunities for improvement. CSIS carefully considers each recommendation, and when in agreement, takes action to implement change when feasible. Independent external review also fosters a culture of compliance, transparency, and continuous improvement at CSIS while keeping Canadians informed of key national security issues. To this end, CSIS has been responding publically to review body recommendations since 2022.

CSIS devotes significant attention to the review process. In 2024, there were a total of 28 national security reviews involving CSIS by NSICOP and NSIRA. Of these reviews, 18 are ongoing. CSIS received 86 requests for information and briefings from review bodies. CSIS actively engages in fact checking and the redaction of reviews for public release to ensure balance between public interest, national security and the protection of classified information, such as human source information. CSIS welcomes external review as an investment in ensuring CSIS remains accountable in fulfilling its requirements as Canada’s security intelligence service.

Since 2018, CSIS has received 136 non-binding recommendations from review bodies. Of these, CSIS has accepted 106 and partially accepted 19. In the past year, CSIS received 8 final NSIRA reports. CSIS responds publicly to all recommendations it reviews. For example, on NSIRA’s review of the dataset regime, CSIS agreed with most recommendations even as CSIS had a different perspective on several key issues. The implementation of recommendations is an important way to ensure CSIS remains compliant with the law and is continuously improving, leading to better national security outcomes for Canadians. Even where CSIS disagrees, the publication of responses to review body recommendations supports transparency and can enrich the national security conversation in Canada.

Under the NSIRA Act, anyone can submit a complaint to NSIRA about a CSIS activity or the denial of a security clearance. There has been a 200% increase in complaints in 2024 compared to 2023. Of the complaints received in 2024, 77% are allegations of delays related to the processing timelines of CSIS’ security screening of immigration applications. While there are high volumes of applications awaiting security screening, CSIS continues to take the time required to carefully screen applications to ensure the safety of Canadians and Canada. Application processing is not expedited in response to complaints. CSIS takes NSIRA’s findings and recommendations on complaints seriously and implements changes quickly when necessary. Of the four complaint investigations concluded in 2024, NSIRA found all allegations against CSIS to be unsupported.

The Intelligence Commissioner (IC) provides an important additional layer of oversight and accountability for CSIS. The IC reviews decisions of the Minister of Public Safety on classes of datasets, and approves the retention of a foreign dataset under Section 11.17 of the CSIS Act. The IC also approves the categories of acts and omissions that designated CSIS employees can commit while in the function of their duties that would otherwise constitute offences. With the goal of further increasing transparency, the office of the IC and CSIS work together in a way that protects against national security injury to publish IC decisions on its website. In 2024, the IC rendered six decisions involving CSIS.

For CSIS, protecting privacy and personal information is foundational. CSIS limits the collection, use, retention and disclosure of personal information to what is necessary and proportional to meet our mandate. CSIS collaborates closely with government agencies to develop and refine privacy standards that meet the evolving needs and expectations of Canadians. CSIS engages with the Office of the Privacy Commissioner and the Treasury Board Secretariat to identify and implement best practices in privacy protection, ensuring CSIS programs are aligned with the principles of the Privacy Act. In the past calendar year, CSIS has completed its review of 12 privacy breaches (6 founded but non-material, 2 unfounded, 4 underway); 32 privacy breaches related to non-compliance (12 founded but non-material, 3 unfounded and 17 in progress), conducted 28 privacy needs assessments (16 completed, 12 currently underway) and is currently drafting 13 new privacy impact assessments.

Operational policy

CSIS continues to focus on modernizing its policies and procedures to reflect the requirements of a modern intelligence service. A series of new operational policy documents have been published over the past year, with an emphasis on improved operational decision-making, managing investigative activities, and enhancing disclosure of information and intelligence. Responding to the Ministerial Direction on Threats to the Security of Canada directed at Parliament and Parliamentarians, issued to CSIS in 2023 also required updated guidance and improved interdepartmental coordination.

Prior to An Act respecting countering foreign interference receiving royal assent, CSIS began developing a rigorous and carefully considered plan to implement new and expanded authorities under the CSIS Act in a way that prioritizes the safety, security, and privacy of Canadians, including through the articulation of functional guidance. CSIS is also developing new and updated guidance for employees to support its ability to operate lawfully in a modern data-dominated threat landscape, while respecting the Charter, Privacy Act and Canadians’ privacy. CSIS is taking a careful and deliberate approach to ensure the effective and compliant implementation of these new authorities. Throughout this process, CSIS will remain fully transparent and accountable to the Minister, the Federal Court, as well as oversight and review bodies.

CSIS is also implementing new judicial authorizations authorities in cooperation with Public Safety and the Federal Court. This includes validating and revising existing multi-step warrant processes as needed, along with accompanying internal approvals and prioritizations, as well as collaborative review with Public Safety and legal counsel, before seeking the Minister’s approval and submission to the Court. In implementing these authorities, CSIS will ensure that the rigorous processes through which Canadians’ privacy and rights are safeguarded remain central.

Justification Framework

The Justification Framework provides legal authority for CSIS employees who are designated by the Minister of Public Safety and persons acting under their direction, such as human sources, to engage in activities that would otherwise constitute offences. This means that when a CSIS employee, or human source acting at their direction, engages in activities with a suspected terrorist in the hope of gaining their confidence, they are protected from criminal liability. For example, the very act of providing direction to a human source operating covertly within a suspected terrorist entity could potentially engage terrorism offences in the Criminal Code. Another example is providing electronic items, such as a cell phone, to enable the human source’s access to vital information or to contact CSIS.

As a first layer of accountability, the Framework requires the Minister of Public Safety to determine, at least once a year, the classes of acts or omissions that designated CSIS employees may be justified in committing or directing another person to commit, and this determination is only valid after it is reviewed and approved by the Intelligence Commissioner. As a second layer of accountability, and as an added layer of transparency, Section 20.1(24) of the Justification Framework also requires the Minister to publicly release certain information. The following table provides the information required to fulfill Section 20.1(24), by fiscal year:

Justification Framework table	2021–2022	2022–2023	2023–2024
Number of emergency designations under s. 20.1(8)	0	0	0
Number of authorizations to direct the commission of acts or omissions under s. 20.1(12)	172	173	178
Number of directions under s. 20.1(15)(b)	0	0	0

Page details

2025-07-14

Language selection

Search