Canada-China Relations Committee on April 8th, 2024

Just to go back to the question, have you reviewed or have you met with CSIS to review the existing personnel in the agency to see whether the security clearances are in fact appropriate?

I am not responsible for that. I think the Public Health Agency—

You haven't met with them on it.

I would not meet with CSIS.

In terms of the security reviews of employees, I would turn to the officials on that—to Madam Jeffrey, if I could. That would be on her side of the fence.

Go ahead, Ms. Jeffrey.

Thank you for that.

To get to the crux of the issue, I think it's important that PHAC and other agencies within the government have security processes for really important information like this. It is a bit concerning to know that CSIS was the only agency that identified this information vulnerability prior to PHAC. I believe that Canadians expect, in an agency that has an immense amount of information on individuals, particularly personal information, that there be some kind of security oversight internal to the ministry.

I think this could have been largely prevented by way of the recent changes that you've discussed publicly, Minister. Those changes could have been made much sooner, I believe, which could have reduced some of the risk that's present to this case.

In one quick answer, if you could do this whole thing again, would you have released the documents sooner?

No, because the process by which we released the documents was incredibly important.

Maybe I can rest on this moment for a second. National security is not the only issue present here. There's also consideration for protecting employee privacy, and if you're going to waive that.... The people who serve in the public service have that right—as in any job, by the way. I was head of Heart and Stroke. We let people go. Sometimes it was painful, because they would have a story of why they were let go that was completely inaccurate, but I wasn't allowed to comment. The reason I'm not allowed to comment is that employee confidentiality is extremely important. To waive that is a big deal. When we waive it, I think we have to think through these issues.

What I liked about this process was that a weakness was identified in NSICOP—challenging redactions. We were able to create a process in the ad hoc committee that allowed those, through an independent arbiter, to be released with maximum transparency while protecting the partnerships we have with our Five Eyes partners to make sure that employee information and national security are protected.

What I think is worth doing—

Do you think that has impacted, however, our credibility to our allies at NATO and to the Five Eyes, for example?

I think the fact that we were so cautious in dealing with this issue and that we worked through a way of ensuring both transparency and public interest and making sure that we still maintained our commitments to protect our processes—

I don't know if we did that, though, because it was an information breach.

There are two different questions.

Maybe I misunderstood your question. I apologize. I thought your question was on how we handled the release of the documents—

That was the first question. The second question was related to the impacts on our allies.

Right. On the second question—and I think this bears thinking about—these employees were long-term employees, from 2003 and 2006, published—

I think that's why it's concerning, though, Minister.

It is for me too. These are Canadian citizens, eminent scientists.

Has it impacted our allies to know that we—

Yes, it has and it has in this way.

Yes, I think—

Gentlemen, I need to intervene because Mr. Desjarlais' time has expired.

Thank you, Chair.

It's time to go to Mr. Chong for five minutes.

That's correct.