Industry and Technology Committee on March 23rd, 2026

It's actually an advantage to have AI that is reliable. In fact, it can be a niche advantage that Canada can offer the world if we do push forward sufficiently in that direction.

On autonomous weapons, it's clearly a tricky situation, because if you're in a war—I'm thinking about Ukraine—and your adversaries are using AI without any restraint and you don't, you might think you're in trouble, but we have no choice. We should not be sacrificing our values and our democracies because of the challenge of war. We should do our best with the constraints we have.

We can deal with the ethical questions about, say, the use of weapons that can be automated, both on the technical front.... For example, I mentioned the work we're doing at LawZero. We want the AI used in those contexts to obey the international laws of war. We also need societal and legal guardrails, but we can work on both fronts.

I think that, to an extent, I have already answered the question about autonomous weapons. I would say that we must work on countermeasures. The problem with powerful artificial intelligence possibly being in the hands of people abusing that power is that, currently, democratic, social and international institutions are not robust enough to counter those challenges, either militarily or in any other area. We must innovate. With autonomous weapons, the military response to the use of artificial intelligence is going to have to be strengthened to provide a greater power. We want the power to be used for defence, but not for attacks on innocent people. How can we be sure that rules of that kind are followed? By developing appropriate technology and, at the same time, by making institutions strong enough, especially in terms of transparency, to stand up to it and prevent abuse.

The same challenge applies to the public servants who are going to lose their jobs. We have to start with a comprehensive long-term strategy—let's say over five years and eventually over ten years—to decide what to do with those who are going to lose their jobs. In terms of economics, the solution cannot simply be to offer them assistance. We can certainly do that, but we have to make sure that we have enough money to provide that assistance. If the profits generated by automation are sent elsewhere, we will not have the means to assist.

We must also work on developing an artificial intelligence economy, both in Canada and with our partners. That will protect us by making sure that the benefits of automation will be distributed to those who need them.

I'll feel bad if you only ask the questions of me.

Yes.

What we should not do is try to establish confidence through marketing: “It's all going to be fine; don't worry. You won't lose your job, your children won't have any problems, your data will be safe and no rogue AI will emerge.” I think that would be a terrible mistake, but that is often what leaders in companies and governments tend to do.

We should be honest with people, and they should also understand that there's a lot of uncertainty around all those risks, but that requires a public discussion. That's the first point.

The second point is that it is possible to build regulations that do not prescribe a particular way to solve the problem. The general principle is very simple: a regulation for the harms that AI could create in society. It's the same principle we ask builders of bridges, trains, planes or the factories that deal with our meat to follow. The companies building those systems have to demonstrate to the public that their products will be safe. They choose how to demonstrate it. They choose what technology they use to build their systems. They should come up with a scientifically valid estimation of the risks and how they can mitigate them.

You think I can square this circle.

My view on these kinds of questions is that they are social choices, and economic choices in some cases. For, say, Canadian companies that are exporting and competing against American companies, for example, if they don't use technology that allows them to be competitive, they're going to lose, so for them it's going to be very difficult to do anything but. There's a sense that those decisions are not just decisions we can take alone in Canada. They're decisions we should discuss with our partners around the world.

In cases of government services, it should be a choice. Yes, we could be more efficient, but then what's going to happen with the people who lose their jobs? We shouldn't hide behind the idea that it's all going to be fine. We should have a plan to deal with that and a plan that is discussed with our society and our citizens, because we have to face that challenge collectively. It's not easy, and I shouldn't be the one telling you the answer. It's something we should discuss collectively.

Perhaps I could answer that by reflecting on and accentuating a couple of things that Professor Bengio and Professor Geist have said.

What we're talking about here in terms of the governance of AI is the principle of accountability. There's been a lot of analysis of accountability in privacy issues. It means that organizations do the risk assessment, do the analysis of the problems they're likely to face and stand ready to demonstrate compliance. They don't necessarily have to do it, but they stand ready to demonstrate it.

Last year, there was a proposal to develop codes of practice around AIDA that really didn't go anywhere. The process was flawed, in my judgment, but codes of practice play a really important role here too. They may be on the company level or they may be in terms of industrial associations. My central point here is that just because we're dealing with amazingly new and potentially powerful technologies, it does not mean that the governance issues are any different from what they were when we were talking about these problems 30 years ago, as I was. I gave testimony before the committee that looked at PIPEDA back in 2000.

We should be learning about what works and what doesn't from those experiences. We're not talking about imposing prescriptive regulation and we're not talking about self-regulation; we're talking about co-regulation, meaning that the companies are incented to do the right thing and are punished if they do not.

You've given me a very broad question, so I'm going to take the liberty of making a couple of other comments.

On the question of consultation, I don't regard this issue, AI, as just another policy question. It's not just another law and policy that requires the standard stakeholder consultation. It is so general. It is so pervasive. It is going to affect all aspects of our lives, so the consultation process also needs to be fundamentally different. For example, I would like the government to think critically about citizens' assemblies in this area.

Professor Bengio is putting his thumb up. Good.

Citizens' assemblies can play more than the role of getting feedback from ordinary citizens about what they think about these issues. Citizens are going to be exposed to this and are being exposed to it constantly, but they're also going to be hurt by it. Your constituents are going to be denied, and are being denied, rights and services because of decisions that are made in automated machines without proper human oversight. Citizens' assemblies, I think, can play a very critical role here.

On this question of digital sovereignty, I have no insights into whether a new CPPA is coming along soon from ISED, but we hope that it will. We also hope that it will be strengthened with respect to the issue concerning the international flows of personal data. I think this is accentuating what Professor Geist said.

The previous version just said that a company had to do diligence when it sent information elsewhere. It had to ensure that the rules in Canada were applied. It didn't matter whether that company was based in Ontario, Europe, a developed country or elsewhere with authoritarian regimes, so there's something deeply wrong, in my view, with the way the government has been thinking about the protection of the international flows of personal data.

We have some views about that. I hope that when this committee—assuming it's this committee—comes to look at a new view of CPPA, it will consider these questions about digital sovereignty and think very critically not only about the stronger rules that need to be in place to ensure that Canadians' personal data remains in Canada and the role for data localization, but also about the rules being really strong when that data is transferred overseas.

I hope that addressed your question, Mr. Bains.

Thank you for the invitation to appear today.

My name is Ali Dehghantanha. I am a professor and Canada research chair in cybersecurity and threat intelligence at the University of Guelph, and I also work closely with industry on securing real-world AI systems. I would like to focus my remarks on a critical gap that is currently limiting Canada's ability to fully realize the benefits of artificial intelligence in strategic sectors.

Today, the primary barrier to AI adoption is not capability; it is trust. Across sectors, organizations are increasingly capable of building and deploying AI systems. However, they are often unable to safely operationalize these systems at scale due to concerns around security, misuse, reliability and regulatory exposure. In sectors like advanced manufacturing and construction, where AI-driven automation meets physical safety, the stakes of this trust gap are particularly high.

In practice, we are seeing that AI systems are being deployed without sufficient mechanisms to continuously monitor, verify and remediate risks once they are in operation. This creates what I would describe as an AI security deadlock, where innovation is technically possible but deployment is slowed or blocked by unresolved risk.

Current approaches to AI governance tend to focus on pre-deployment checks, model evaluation or static compliance frameworks. While these are important, they are not sufficient for modern AI systems, which are dynamic, adaptive and increasingly integrated into critical workflows.

What is missing is a run-time layer of control—an infrastructure that continually observes AI behaviour, detects failures or misuse, and actively intervenes to correct or contain those issues in real time. This is similar to how cybersecurity evolved. We do not secure systems today solely through a design-time review; we rely on continuous monitoring, detection and response. AI systems require a similar paradigm. Furthermore, this run-time approach allows for robust security oversight without requiring access to a company's proprietary source code or sensitive training data, protecting Canadian intellectual property while ensuring safety.

From a policy perspective, I would suggest three priority areas.

First, Canada should support the development of standards and frameworks for continuous AI risk monitoring and post-deployment assurance. This includes defining what “safe operation” means in practice—not just at deployment, but throughout the life cycle of AI systems.

Second, we should incentivize secure AI deployment, not just AI deployment. Many current programs focus on building AI capabilities, but fewer address the operational challenge of deploying these systems safely in high-stakes environments.

Third, Canada has the opportunity to lead in the emerging domain of AI security and risk orchestration. Supporting domestic companies and research efforts in this space can strengthen both our economic position and our digital sovereignty. As we look toward the horizon of quantum computing, the need for these real-time adaptive security layers to protect our AI infrastructure against next-generation threats becomes even more urgent.

Finally, I would like to emphasize that the goal is not to slow down AI innovation but to enable it. By addressing the security and trust gap, we can unlock faster, safer and more responsible adoption of AI across Canada's strategic industries.

Thank you. I look forward to your questions.