Recommended Contract Clauses for Cryptography (ITSM.00.501)

As your organization increases the use of cryptography to protect your infrastructure and data, there is a growing need to ensure that your organization purchases products and services that provide effective protection. Whether procuring a single-use product or contracting with a service provider such as a cloud service provider (CSP), your organization must consider certain elements to ensure that the product or service will meet your needs. This publication provides advice and guidance on what to consider when procuring products and services that use cryptography, including example clauses.

Data and Resources

Additional Info

Field	Value
Last Updated	April 17, 2026, 21:49 (UTC)
Created	April 17, 2026, 21:49 (UTC)
contact_email	opengov-gouvouvert@cse-cst.gc.ca
criticality_level	[]
geographic_scope	[]
open_canada_collection	publication
open_canada_date_published	2025-09-16 00:00:00
open_canada_keywords	{"en": ["Cryptographic clauses", "Contract requirements", "Security controls"], "fr": ["Clauses cryptographiques", "Exigences contractuelles", "Mesures de sécurité"]}
open_canada_subject	["economics_and_industry", "education_and_training", "government_and_politics", "information_and_communications", "science_and_technology"]
sensitivity_level	unrestricted
title_fr	Clauses contractuelles recommandées pour la cryptographie (ITSM.00.501)
update_frequency	as_needed