Canada’s Push for ‘Digital Sovereignty’ Gains Momentum with New AI and Privacy Strategy

Canada is focusing on “digital sovereignty” through a multi-pronged strategy that aims to strengthen national control over artificial intelligence systems, personal data governance, and digital infrastructure. The initiative, led by Innovation, Science and Economic Development Canada (ISED), reflects growing concerns over foreign influence in critical technologies and the need to align digital policy with Canadian values.

The main aim of the plan is a commitment to regulate AI systems more robustly, particularly those deployed in sensitive sectors such as healthcare, finance, and public services. Officials have indicated that Canada’s forthcoming Artificial Intelligence and Data Act (AIDA) will include provisions for algorithmic transparency, risk classification, and mandatory audits for high-impact systems. The legislation is currently under parliamentary review and is expected to be an important part of Canada’s digital governance framework.

In parallel, the government is advancing reforms to privacy law through Bill C-27, which includes the Consumer Privacy Protection Act and the creation of a new Data Protection Tribunal. These reforms aim to modernise Canada’s outdated privacy regime and introduce stronger enforcement mechanisms, including penalties for non-compliance and clearer consent requirements.

The digital sovereignty agenda also includes efforts to localise data storage, reduce dependency on foreign cloud providers, and promote domestic innovation in AI and cybersecurity. Officials have emphasised the importance of building trusted infrastructure that supports Canadian businesses while safeguarding citizen rights.

📰 Mini Headlines

LinkedIn Updates Privacy Policy: User Data Used for AI by Default

LinkedIn has updated its privacy policy to allow the use of member data, including profile details, connections, and content, for training its AI models by default. The change applies globally and includes data from public posts and interactions. Users who wish to opt out must manually adjust their settings under the “Manage Your Data” section. The platform clarified that private messages and sensitive data are excluded from training. Microsoft, LinkedIn’s parent company, stated that the step was taken in order to improve AI-powered features such as writing assistance and job recommendations.

Privacy Policy

Read More → https://www.helpnetsecurity.com/2025/09/18/linkedin-ai-data-privacy-policy/

Italy Passes Comprehensive AI Law Focused on Privacy and Child Safety

Italy has enacted a landmark AI law that has established strict rules around privacy, algorithmic oversight, and child protection. The legislation has mandated transparency in AI decision-making, independent audits for high-risk systems, and safeguards against profiling minors. Companies deploying AI in sensitive sectors must undergo prior risk assessments and ensure human oversight. The law also introduces penalties for non-compliance and sets up a national AI authority to monitor implementation.

AI Law

Read More → https://www.medianama.com/2025/09/223-italy-ai-law-privacy-oversight-safety/

India Finalises DPDP Rules Ahead of Hosting AI Impact Summit 2026

India will host the AI Impact Summit in 2026. The summit will be a global forum focused on responsible AI, data governance, and equitable innovation. It is expected to bring together policymakers, tech leaders, and researchers to shape international norms around AI safety and ethics. Officials said India aims to position itself as a regulatory thought leader and showcase its digital governance model. In preparation, the government has finalised rules under the Digital Personal Data Protection Act, 2023. These rules will serve as a foundational framework for AI deployment.

AI Impact Summit

Read More → https://currentaffairs.adda247.com/india-finalises-dpdp-rules-to-host-ai-impact-summit-2026/amp/

EU Data Act Comes into Force, Expanding Access and Control Over Industrial Data

The European Union’s Data Act officially came into force this week. It has introduced sweeping rules to govern access to non-personal data generated by connected devices and industrial systems. The legislation mandates that users have the right to access and share data collected by products they use. It also sets conditions for data sharing with third parties and public authorities in order to boost innovation and competition. The Act complements the EU’s GDPR and AI Act, and ensures fairness, transparency, and interoperability across sectors.

EU Data Act

Read More → https://www.alstonprivacy.com/the-eu-data-act-comes-into-force/