Mandate of the Communications Security Establishment Commissioner

Overview

My mandate under the National Defence Act consists of three key functions:

  1. reviewing CSEC activities to ensure they comply with the law;
  2. conducting investigations I deem necessary in response to complaints about CSEC; and
  3. informing the Minister of National Defence and the Attorney General of Canada of any CSEC activities that I believe may not be in compliance with the law.

Under the Security of Information Act, I also have a mandate to receive information from persons who are permanently bound to secrecy if they believe it is in the public interest to release special operational information of CSEC. To date, no such matters have been reported to a Commissioner.

Reviewing CSEC activities

The purpose of my review mandate is:

Conducting investigations

My mandate includes undertaking any investigation I deem necessary in response to a written complaint — for example to determine whether CSEC has engaged, or is engaging, in unlawful activity or is not taking sufficient measures to protect the privacy of Canadians.

Once a written complaint is received, if I determine that it has merit and relates to my mandate, I have all the powers of a Commissioner under Part II of the Inquiries Act to access and review any information held by CSEC. I may also interview — under oath, if necessary — any CSEC employee to establish the facts concerning a complaint. I advise the complainant, the Minister of National Defence and the Chief of CSEC about the results of a formal complaint investigation. If I believe that CSEC may not have complied with the law, I would report this to the Minister and to the Attorney General of Canada.

Informing the Minister

Under my mandate, I also:

My reviews focus on CSEC's compliance with its legal, ministerial and policy requirements. While it is my primary duty to report any non-compliance by CSEC, a necessary element of my mandate also includes informing CSEC of any activities that I believe might present, or have the potential to present, a risk of non-compliance, such as an unlawful interception of a private communication or other invasion of the privacy of a Canadian. If I am not satisfied that CSEC is responding to my concerns appropriately, I have the authority and the duty to report them to the Minister of National Defence. A number of my reports have included recommendations aimed at prevention. It is my goal to strengthen CSEC practices that contribute to compliance and incorporate measures that protect the privacy of Canadians. I believe it is ultimately more useful to prevent unlawful activity than to identify it after the fact.

Independence

While I submit my reports to the Minister responsible for CSEC, my office is independent and separate from the Department of National Defence. My review mandate is supported by the powers I have under the Inquiries Act. These powers ensure my access to all CSEC information and employees and include the power of subpoena. The independence of my mandate is further supported by the way my office is funded — it has been allocated its own appropriation from Parliament rather than receiving funding from the Department of National Defence.

Annex A contains the text of the relevant sections of the National Defence Act and the Security of Information Act relating to my role and mandate as CSE Commissioner. Annex B describes the history of the Office of the CSE Commissioner.

Date modified: