Avoiding complicity in mistreatment by foreign entities: Annual report

Table of contents


The Avoiding Complicity in Mistreatment by Foreign Entities Act (ACA, or ‘the Act’) came into force on July 13, 2019. The Act authorizes, and sometimes requires, the Governor in Council to issue written directions to deputy heads regarding:

On , the Governor in Council, on the recommendation of the Minister of Public Safety and Emergency Preparedness (the Minister), pursuant to paragraph 3(2)(f) of the Act, issued the Order in Council (OiC) Directions for Avoiding Complicity in Mistreatment by Foreign Entities (the OiC) to the President of the Canada Border Services Agency (CBSA, or ‘the Agency’).

Every deputy head to whom directions have been issued must, before March 1 of each year, submit to the appropriate Minister a report in respect of the implementation of those directions during the previous calendar year.

This Report developed by the CBSA is presented to the Minister and covers the period from to .


The mandate and role of the Canada Border Services Agency

The CBSA was established by the Canada Border Services Agency Act and is an integral part of the Public Safety Portfolio. The Agency works to ensure Canada's security and prosperity by managing the access of people and goods to and from Canada. It also enforces more than 90 acts and regulations that keep our country and Canadians safe.

The Agency's legislative, regulatory and partnership responsibilities include the followingFootnote 2:

Information Sharing Practices and Arrangements

The CBSA relies on information to execute its border management responsibilities safely and efficiently. The Agency collects, retains, and shares information strictly within the parameters of its border management mandate, as set out by CBSA program legislation. The CBSA’s information-sharing activities can be characterized as follows:

Although the CBSA has numerous partnerships and manages a substantial amount of information, given the context described above, its information sharing activities are generally low-risk in terms of possible association with mistreatment.

The CBSA recognizes that one of its key responsibilities is to be a steward of the information in its control. In line with the OiC, the CBSA continues to implement measures to augment its management of information-sharing activities.

Implementation of the directions

Interdepartmental coordination

In developing its policy in support of the OiC, the CBSA has ensured that it is applying a compatible and complementary approach to that of other federal partners in terms of how it assesses risk associated with its information-sharing activities with foreign entities.

In line with this approach, the CBSA continues to be an active participant in the Public Safety-led Information-Sharing Coordination Group (ISCG). The ISCG is the primary interdepartmental forum for supporting interdepartmental collaboration and information-sharing between members as they implement the Act and the corresponding Directions.

The three primary objectives of ISCG are to:

Updated policies, guidance, and procedures

The existing CBSA Policy and Operational Guidelines regarding the 2017 Ministerial Directive to the CBSA, which the 2019 OiC replaces, remain in effect and provide an interim measure for ensuring that the CBSA avoids implication in potential mistreatment as it transitions to a more formalized risk-assessment framework. Under this policy, CBSA officials must consult the Information Sharing & Collaborative Arrangements Policy (ISCAP) Unit if they are applying the Ministerial Directive to decisions regarding the disclosure of information, the making of a request for information, or specific uses of information should these activities be associated with a risk of human rights abuses.

Once finalized in 2022, the updated ACA Policy will be published on the CBSA intranet, along with any associated standard operating procedures. Together, these documents will be available for agency-wide use, and will provide both policy and operational guidance to CBSA officials. As per best practices, an awareness campaign, including formal communications regarding the release of the policy, will be carried out.

Country profiles

The CBSA maintains Serious Inadmissibility & Mistreatment Country Assessments (SIMCA) that reflect the security, organized crime and human rights environment in identified countries of concern. The country assessments, while primarily focused on supporting immigration screening, are available for review by all CBSA personnel engaged in information sharing with foreign entities and serve to inform personnel on the risk of mistreatment linked or associated with deciding to collect from, disclose to, or use information sourced from foreign entities.

The SIMCA provides the basis for the CBSA’s risk assessment process as part of its responsibilities under the ACA and related OiC.

Mistreatment risk assessment

The CBSA developed a risk assessment methodology for assessing the risk of mistreatment by a foreign country and/or entity. Risk level classifications are based on who should have access to the information and how much harm could result if the information were disclosed, exchanged, or unavailable.

The risk assessment methodology applied to CBSA information sharing activities establishes the level of the risk by simultaneously considering the level of mistreatment risk associated with a specific international entity and the sensitivity of information involved in the activity. The final risk rating is determined by cross-referencing the risk level associated with the country against the risk level associated with the type of information being shared.

Senior Management Risk Assessment Committee

High risk decisions will be referred to a Director General-level Senior Management Risk Assessment Committee (SMRAC), which will act as an objective arbiter of risk as it pertains to the sharing of information which may result in mistreatment or use of information which may have been derived from mistreatment. The SMRAC is to be convened on an as-needed basis to determine whether there exists the substantial risk of mistreatment if information is shared with a foreign entity or that there is a substantial risk that information that has been received by the CBSA from a foreign entity has been obtained as a result of mistreatment.

Where risk is deemed present, a Risk Assessment Package will be prepared. After considering the information contained within the package, the SMRAC is tasked with making one of three decisions as they pertain to the substantial risk of mistreatment:

The SMRAC will also be responsible for referring any decisions to the CBSA President (DM Level), as necessary, and will ensure the CBSA’s implementation of the OiC is fully compliant with associated legislation (i.e. ACA).

This process will complement existing CBSA information sharing policies and procedures in order to maximize operational efficiency while ensuring that the CBSA adheres to the requirements of the Mistreatment OiC.


The CBSA provides general information-sharing training online and in-person to staff. CBSA employees regularly conducting information-sharing activities, or those whose responsibilities may bring them into information-sharing scenarios, have access to additional training on information-sharing tailored to their particular roles and responsibilities. This approach ensures that training is commensurate with any potential risk in sharing information.

Activity Report

The CBSA’s 2021 report includes OiC-related activities conducted from to .

Cases of substantial risk

Cases of Substantial Risk for the Period to
Type of case: Disclosure of information Request for information Use of information
Number of cases requiring Deputy Minister Determination: 0 0 0

Restriction of arrangements

CBSA had 0 cases of restrictions being applied to any arrangement due to concerns related to mistreatment for the period to .

Date modified: