Regulatory Framework Authority

Statutory Reference Cabinet

The Canadian AI
Legislative Index

01 / JURISDICTIONAL SPLIT

Federal Authority

Focusing on cross-border trade, data privacy under the Digital Charter, and the proposed governance of high-impact systems via AIDA.

02 / REGIONAL ADAPTATION

Provincial Mandates

Detailing Quebec’s Law 25, Ontario’s public sector directives, and British Columbia’s privacy commissioner precedents.

The Artificial Intelligence and Data Act (AIDA)

As a central pillar of Bill C-27, AIDA represents Canada's first systematic attempt to regulate the design, development, and deployment of artificial intelligence systems within the private sector. The act distinguishes between general AI and high-impact systems, introducing significant accountability requirements for the latter.

Current Legislative Status

Bill C-27 is currently in the Committee Stage. Organizations are advised to pursue proactive governance strategies ahead of Royal Assent.

High-Impact Systems

Classification criteria for AI that poses significant risk to the health, safety, or fundamental rights of citizens, requiring rigorous bias testing.

Enforcement Mechanisms

Detailing the proposed Artificial Intelligence and Data Commissioner (AIDC) role and the ministerial powers for auditing and production orders.

Transparency Duties

Mandates for clear public disclosure regarding system intent, training data origins, and the methodology of output generation.

Criminal Penalties

Administrative monetary penalties reaching up to 3% of global revenue or $10 million CAD for serious regulatory non-compliance.

Provincial Variations

Regional Jurisdictional Alignment

Quebec AI Regulation

Quebec: Law 25

Formerly Bill 64, this framework introduces strict transparency requirements for automated decision-making. Organizations must inform individuals when their personal information is processed by an automated system, providing explanations for decisions upon request.

  • Privacy Impact Assessments required.
  • Explicit opt-out for profiling.
Ontario AI Guidelines

Ontario: Sectoral Trust

Ontario prioritizes trust-based frameworks for the public sector. The Artificial Intelligence Guidance focuses on ethical procurement and the use of algorithmic tools in government services, emphasizing bias mitigation and fairness in citizen-facing deployments.

  • Ethical procurement checklists.
  • Inter-agency oversight committees.
Western Canada Privacy Precedents

British Columbia

The BC Privacy Commissioner has established critical stances on facial recognition and biometric AI. Guidance leans heavily toward PIPA compliance, ensuring that AI-driven data collection remains proportional to the specific business purpose.

  • Biometric consent protocols.
  • Commissioner-led audits on AI privacy.
Translating Statute to Strategy

Knowledge is the first step toward mitigation.

Navigating the jurisdictional overlap between PIPEDA, AIDA, and provincial statutes requires precision. We provide the interpreting layer between legislative text and operational reality.

Federal vs. Provincial Oversight

The sector and geographic data flow determine which regulatory authority holds jurisdiction. Use this as a baseline reference for scoping AI assessments.

Criteria Private Sector (General) Quebec (Law 25)
Primary Statute PIPEDA / Proposed AIDA Act Respecting the Protection of PI
Oversight Body OPC / AI Commissioner Commission d'accès à l'information (CAI)
Core AI Duty Risk-based impact assessment Right to explanation and transparency

Documentation Freshness Notice:

LEGISLATION STATUS: BILL C-27 AT COMMITTEE STAGE — UPDATED JUNE 2026