Canadian AI Governance Remains Patchwork: Privacy, Employment and Regulator Channels Active
In the absence of AIDA — dropped when Parliament was prorogued in January 2025 — Canadian AI compliance continues to develop through provincial employment disclosure requirements, OPC enforcement of PIPEDA principles, Quebec Law 25 data residency rules, and OSFI Guideline E-23 (effective May 2027 for financial institutions).
BY TRANSATLANTIC DESK · JUNE 3, 2026 · 1 MIN READ
In the absence of AIDA — dropped when Parliament was prorogued in January 2025 — Canadian AI compliance continues to develop through provincial employment disclosure requirements, OPC enforcement of PIPEDA principles, Quebec Law 25 data residency rules, and OSFI Guideline E-23 (effective May 2027 for financial institutions). The Federation of Law Societies of Canada's 2025 statement and Law Society of Ontario technology-competence guidance place existing professional duties — competence, confidentiality, supervision — squarely over AI tool use, with two reported Canadian court decisions having already sanctioned counsel for AI-hallucinated citations. Legal teams in Canada should treat privilege-safe data governance as the non-negotiable first step, with formal AI legislation remaining a medium-term rather than immediate compliance horizon.