Protecting our country’s research and innovation ecosystem is a priority for the Government of Canada. The term “research security” refers to a series of measures and policies that protect research or intellectual property from unwanted access, interference, or theft, particularly against threats to national and economic security.
Research security for Canadian businesses travelling abroad
On this page
What are the threats?
In the current geopolitical environment, Canadian researchers, businesses, and universities have become targets for foreign state actors attempting to steal cutting-edge technologies to advance their own objectives. This not only threatens Canada’s national and economic security, but it also poses serious risks for the individuals and organizations that are affected. A research security breach at your company could result in:
- unwanted access and potential interference with your research data or intellectual property
- loss of competitiveness with respect to patent filings or future commercial opportunities
- damaged reputation from a public incident which could affect your future business relationships
- legal or administrative action resulting from failure to comply with a specific legal regime, like export controls or sanctions
Canada’s research security policies are not aimed at limiting trade, investment, or partnerships with any particular country, market, or company. The methods used by individuals and groups who seek to exploit the Canadian research community can be used by any country, or any group, at any time.
Assess your risk profile
When determining how to manage a new or ongoing research and development collaboration, it’s important to identify potential sources of research security risk. The questions on this page can help guide you in conducting an initial due diligence check. These questions are not exhaustive, and do not serve as a pre-screening or endorsement of any particular business or research partnership. Proper risk assessment can help you decide whether to pursue an opportunity or which protective measures to take. These choices will ultimately depend on your company’s risk tolerance.
Know your research
Does your collaboration involve work on a technology that is considered dual-use or sensitive according to Canada’s Sensitive Technology List?
Research areas that are described as dual-use, meaning they have military, intelligence, or dual military/civilian applications, are more likely to present national security risks. Additionally, Canada's Sensitive Technology List (STL) identifies broad technology areas that the Government of Canada considers to be sensitive. The STL can be used to inform work on:
- foreign investment reviews
- export controls
- research security
- other activities to safeguard or safely promote Canadian innovation and development of sensitive technologies
Does your collaboration involve work related to critical minerals?
The Government of Canada has created a list of minerals considered critical for the sustainable economic success of Canada and our allies and to position Canada as a leading mining nation.
Does your collaboration involve work related to critical infrastructure?
Critical infrastructure refers to processes, systems, facilities, technologies, networks, assets and services essential to the health, safety, security or economic well-being of Canadians and the effective functioning of government.
Learn more about Canada’s National Strategy for Critical Infrastructure.
Does your collaboration involve the use of sensitive personal data or large data sets?
Personal data should be protected by security measures appropriate for the sensitivity of the information. Some personal data is inherently sensitive and may require a higher degree of protection, such as:
- health and financial data
- ethnic and racial origins
- political opinions
- genetic and biometric data
Large datasets can be analyzed to reveal patterns, trends, and associations. This is especially relevant for data related to human behaviour and interactions that may have ethical, commercial, or legal impact at the individual, domestic, or international level.
Does your collaboration involve any technology or goods that are included on the Export Control List (ECL) of the Export and Import Permits Act (EIPA)?
The ECL defines which goods and technology are controlled for export from Canada to other countries, regardless of how they are delivered. Completing this checklist does not exempt you from your obligations under the EIPA.
To learn more about navigating the ECL, refer to the Guide on Canada’s Export Control List.
Know your partner
Are there any indications that your partner organization(s) could have conflicts of interest or be subject to foreign government influence, interference or control?
The extent of foreign state influence on a business entity can be difficult to assess. An enterprise that is state-owned or subject to state influence may behave in ways that are inconsistent with market principles due to the support they may receive from their government. Moreover, some states have laws or practices that compel all entities and individuals to provide information, technology, and intellectual property to their governments.
Are there any indications that suggest a lack of transparency or unethical behaviour from your partner organization(s) that may impact the collaboration?
Indicators of unethical behaviour could include:
- individuals associated with your partner organization(s) that have been charged, admitted guilt or been convicted of fraud, bribery, espionage, or corruption in any jurisdiction
- a partner organization that has been charged, admitted guilt, or convicted of intellectual property, copyright or patent theft in any jurisdiction
- a partner organization that has committed illegal offences related to import or export controls and/or controlled goods
An indicator of a lack of transparency could be if your partner organization fails to disclose unethical behaviour that you uncover through your own due diligence searches. Focus on events from the past five years, as well as older incidents that could have a lasting impact on the organization’s reputation.
Is your partner organization, or the country where it is based, currently subject to sanctions imposed by Canada?
Sanctions imposed by Canada on specific countries and persons (individuals or entities) can include a variety of measures, such as:
- asset freezes
- dealings bans
- restrictions or prohibitions on trade, financial transactions or other economic activity between persons in Canada (and Canadians outside of Canada) and the sanctioned country/persons
Learn about current sanctions imposed by Canada.
Additional resources
- Use of the National Security Guidelines for Research Partnerships (NSGRP) is now a requirement for federally-funded research partnerships involving a private sector partner and a Canadian university.
- All federally-funded research projects at Canadian universities and affiliated research institutions are also subject to the Policy on Sensitive Technology Research and Affiliations of Concern.
- The Investment Canada Act addresses national security concerns related to foreign investments into Canada, including acquisitions of Canadian businesses.
- Consult the Government of Canada’s Guide on conducting Open Source Due Diligence on partner organizations.
- Prior to any international travel, consult Global Affairs Canada’s travel advice and advisories for your destination.
- Public Safety Canada offers training for researchers and university staff through its Safeguarding science modules.
- Explore the Government of Canada’s online research security hub.
Contacts
To report a research security issue or seek assistance while doing business abroad, contact the Trade Commissioner Service.
For assistance within Canada or general inquiries, please contact the Global Affairs Canada Research Security team at d-gacrs-amcsr@international.gc.ca.