Mr. Chair, Bill C-26, an act respecting cybersecurity, is currently in the Senate awaiting second-reading. This will create mandatory reporting obligations for critical infrastructure, but only for those that are federally regulated—that's four sectors.
On October 10th, 2024. See this statement in context.