Information & Ethics Committee on March 24th, 2022

I think that's going to be a very difficult one to answer quickly, but one thing I will maybe suggest that you look into is this concept of ethics by design, which is essentially taking ethical considerations throughout your development cycle from initial data collection through algorithmic development and through questions you should ask yourself around productionization and the monitoring of those systems. There's a lot of detail you can pull together on that. There are a number of organizations that practise in that, as does Borealis.

It's too late to regulate data harvesting, because we can't go back in time. However, we can regulate the use of technology.

What people don't always understand very clearly is that the idea driving the technologies we are talking about is acquiring lots of data and using it to train the systems. The desired outcome is facial recognition, meaning the ability to identify whether someone is such and such a person. It creates an explicit model. In technology and engineering, there is usually a data entry phase during which information is processed with a view to results. That's not the model here. Now, implicit models are created which, on the basis of observation, processing and the analysis of many data sets, can provide the expected results. The players who succeeded in doing that by collecting all kinds of data over the past 10 years now have a competitive advantage compared to these models. It's something that's very difficult to reproduce. They are true black boxes.

My view is that this would be extremely difficult, because you can't travel back in time.

That would very likely be necessary.

The crux of the matter is the stockpile of data. A glance at the numbers that show how the situation has evolved show that the quantity of data being stored in cloud platforms is exponential. Once the wheel starts to turn, it's difficult to turn it back.

I'll focus my comments on AI regulation broadly. Right now in Canada, we lack an end-to-end regulation, and there are several changes that need to be made. I'll point you in the direction of a recent framework published by the EU Commission—this is a draft framework, but it's very likely to go into practice in 2022—that tackles issues of artificial intelligence and the risks associated, anything from privacy and human rights to very technical concepts of robustness and stability.

Ultimately, every time we develop one of these systems, we should be doing an impact assessment. As I noted in my remarks, the oversight of these systems should be based on risk materiality, meaning for very high-risk systems. There should be some level of scrutiny in the requirements around their usage and testing. Testing covers a very broad range of technical concepts, like robustness, stability, bias and fairness, and thresholds have to be put in place. Granted, these are context-dependent, so they would have to be put in place by the developers in order for us to ensure that there is accountability.

I will also note—and this is something I think is often forgotten—that these systems are stochastic. This means that when we put them in production, we may have a really good sense of how they'll behave today, but as our data changes in the future, we need to make sure we're continually monitoring the systems to ensure that they are working in the way we had initially intended. If they're not working in that way anymore, they need to be pulled from production and reassessed before they are put back out. This is particularly true in high-risk use cases like criminal identification.

In Canada, in part because police forces have been cautious and measured in adopting this technology and are using it in relatively limited ways, I do not know of such examples.

In the United States, where the uptake has been faster and less cautious, our sister organization, the American Civil Liberties Union, currently has litigation in several states fighting for men—all of them Black—who were misidentified by this technology. One in particular, Mr. Williams, had police come to his home, handcuff him and drag him out of his home in front of his minor children.

While it's true that there are rules in place to minimize mass surveillance from those agencies, as was mentioned, in recent draft guidance to law enforcement agencies, the Privacy Commissioner raised the concern that because the laws around this are currently a patchwork, there are concerns that there are loopholes and that there will be ways for federal agencies and law enforcement agencies to engage in mass surveillance that otherwise would be considered unlawful.

There's a lack of clarity around that right now. The lack of discussion and the lack of forthcomingness from federal agencies to discuss their use of facial recognition technology is what raises these deep concerns that they could be engaging in forms of surveillance that are unlawful or which otherwise would be considered unlawful, but are doing so because of this patchwork of legislation.

There are also debates around what's considered mass surveillance. For example, the RCMP scrape information about individuals online and keep those in databases. We know they have been doing that. This is beyond facial recognition, but they would argue they have a right to collect that information, whereas others have been challenging it as we have, saying that it's a form of mass surveillance that needs to be regulated.

Mr. Chair, yes, I believe so.

In our current legislative regime, there are wide gaps that seem to have been exploited at this time to allow some uses of this technology in ways that have yet to be critiqued or examined in front of a judge. I think that's going to happen probably in the near future here in Canada, but it can be pre-empted if we sit down and think very carefully through whether there are ways this can be done safely.

In some cases, the answer is going to be no. CCLA supports a complete ban on mass surveillance uses of this technology.

In some cases, such as the current police use of facial recognition technology in conjunction with mug shot databases, for example, even those uses are not necessarily uncontroversial. We simply haven't thought about them. Police use of FRT for mug shot databases is being conducted on legacy databases that have their own issues of bias and discrimination that we have known about for a really long time.

I think it's not just the mass surveillance aspects of this, but also the more targeted ones that we haven't grappled with.

It's a resounding no.

As I mentioned, we take ethics very seriously in the design of any of our algorithmic systems. This was definitely not a use case that would have come across our desk at RBC.

CCLA particularly supports a moratorium for police and national security uses of this technology, because those are situations where the consequences, if we get them wrong, are literally life-altering for individuals.

That said, it would be beneficial to have a general moratorium, because what we know is that private sector vendors are selling technologies to public sector actors, including law enforcement and national security bodies. The way that our current privacy law regime works is that those two sides, public and private, are governed in some ways under different sets of regulations, which only exacerbates the difficulty of effectively regulating this area.

We really need a coherent approach to thinking through how to develop protections in this regard.