Agenda
Day 1
January 29, 2025
Registration and Continental Breakfast
CANADA QUANTUM AND ADVANCED COMPUTING RESTRICTIONS OUTLOOK
A Close Look at the New Canadian Export Controls on Quantum Computing and Advanced Semiconductors: How Canadian Industry is Responding and Defining ECL Requirements
David AsgeirssonResearch Partnerships and Intellectual PropertyXanadu
Robert BrookfieldDirector General, Trade and Export Controls BureauGlobal Affairs Canada
Brenda SwickPartnerCassels Brock & Blackwell LLP (Canada)
Lisa LambertChief Executive OfficerQuantum Industry Canada
Canadian technology companies must now navigate a complex regulatory environment to comply with Canada’s new quantum and semiconductor restrictions. This session will offer key steps and best practices around updating compliance programs, upskilling staff, updated ECL classifications, license requirements and more risk management and due diligence measures.
- Comparing parallels of Canadian law to US semiconductor law
- Updated due diligence around:
- Defining what is “quantum” under these new controls
- Technology for the development or production of semiconductor devices or microchips using Gate-All-Around Field Effect Transistor (GAAFET) structures, e., nanosheet, nanowire, and gate-all-around transistor technology
- Equipment designed or modified for isotropic and anisotropic dry etching, which is critical in the making of GAAFET structures
- Advanced Scanning Electron Microscope (SEM) equipment for imaging semiconductor or integrated circuits, or to perform chip design recovery meeting a specific set of metrics
- Technical specifications of products and matching them new control list entries
- Update to Group 5 of the ECL – Item 5506 titled “Other Strategic Goods and Technology (All Destinations Other than the United States)”
- Determining if an export license is required for specific transactions
- CASE STUDY: Implementation of a robust compliance program that includes policies and procedures for identifying and controlling exports of restricted items
Networking Break
Managing Canadian Employee and Contractor/Subcontractor Engagement Under the ITAR, EAR and Controlled Goods Program: Avoiding Costly Missteps Around TAA Clauses, ITAR Exemptions and Deemed Reexports
Laura PalenciaTrade Compliance ManagerThales Canada, Defence and Security
Lynn Van BurenGlobal Compliance CounselSpire Global, Inc. (USA)
- Interpreting ITAR 126.18 exemptions for intra-company transfers
- Understanding definition of a regular and non-regular employee
- ITAR 126.5 export exemption: How do you meet conditions for the exemption and maintain ITAR compliance?
- What is DDTC proposing as the new definition of a “defence service” license requirement? How do you qualify for Canadian exemptions?
- HYPOTHETICAL EXERCISE: Understanding the TAA Contract Employee clause to avoid potential violations
- Do’s and don’ts for applying EAR Part 734.20/734.18 requirements and exceptions
- Practical impact of U.S. export controls on hiring and staffing decision-making
- Best practices for communications with HR
- Export control restrictions for nationals of sanctioned countries and other parties
- Privacy, anti-discrimination and human rights considerations affecting screening
Networking Lunch
CHINA REEXPORT COMPLIANCE THINK TANK #1: TWO TRICKY AREAS (HYPOTHETICALS AND AUDIENCE POLLING)
EAR 734.9 (b) and Foreign Direct Product Rule (FDPR) and 734.4/de minimis Thresholds: How to Apply Complex Requirements and Avoid Key Compliance Traps
Ulrika SwansonPartnerCassidy Levy Kent (USA)
Ken PurchaseSenior Director, Global Trade Requirements Management, Office of General CounselPratt & Whitney
Julia ZorziHead of Export ComplianceWestinghouse Electric Company (USA)
Using hypothetical scenarios and audience feedback, this session will work through the complexities around how FDPR and de minimis work in practice:
- Common misconceptions around 734.9 (b) FDPR:
- Reexporting products to China that incorporate U.S.-origin technology or components and the related FDPR complexities
- When you need to secure export licenses from BIS if the products or technologies are subject to U.S. export controls
- Reexporting products to China that incorporate U.S.-origin technology or components and the related FDPR complexities
- 734.4 de minimis threshold decision-making
- Tracking and reporting shipments accurately
- Working with logistics providers to manage thresholds effectively
- Valuation methods to prevent under-valuation and misclassification of goods
- Updating employee training and monitoring across your organization: Concrete examples
- HYPOTHETICAL EXERCISES: Our experts will discuss the “how to” aspects of navigating multiple layers of compliance and how these U.S. rules apply to Canadian operations
- Understanding FDPR enforcement actions by the U.S.: Recent case examples and possible parallels
CASE STUDIES
How Canadian Industry is Approaching U.S. Advanced Semiconductor Rule Compliance Classification and October 2023 Rule Update Challenges and Beyond
Joe GustavusPrincipalMiller, Canfield, Paddock and Stone, P.L.C.
During this timely session, delve into the finer points of the new October 2023 rules along with ones already in place, and discuss how they will affect export operations and supply chains in expected (and unexpected ways) and how they might parallel with Canadian semiconductor restriction requirements.
Topics will include:
- New changes to technical parameters
- Expansion of ICs Controlled under ECCN 3A090
- Affirmative identification of items that “meet or exceed the performance parameters of 3A090 or 4A090” under new ECCN paragraphs and related export clearance requirements
- Semiconductor Manufacturing Equipment: Removal of ECCN 3B090, transfer of entries and expansion of ECCNs 3B001 and 3B002
- Expansion of End-Use Licensing Requirements in EAR § 744.23
Networking Break
RUSSIA CIRCUMVENTION/DIVERSION RISK MITIGATION
Supplier Circumvention and Your Screening Program: Monitoring Third-Party Intermediaries to Mitigate the Risk of Export and Sanctions Violations
Jennifer LeahySenior Leader
International Trade Compliance CanadaGE Aerospace
Barbara LinneyPartnerBaker Hostetler (USA)
Clifford SosnowPartnerFasken Martineau DuMoulin LLP (Canada)
What can Canadian industry do to more quickly flag actual or suspected circumvention and diversion? Building on the Pre-Conference Workshop, this session will dissect the nuances of recent export controls with respect to Russia and Belarus, and changes to historical transshipment routes, such as the shift from traditional transshipment hubs in the EU to third countries with less strict export regulations. The discussion will also cover recent schemes-and how they were uncovered.
- How circumvention and diversion schemes are evolving-and the newest warning signs
- Conducting thorough due diligence on partners and suppliers
- Monitoring and auditing transactions and supply chains
- Staying updated on sanctions lists and regulatory changes
- When to seek outside counsel
- Dovetailing export and sanctions risk detection
Hypothetical Scenarios and Audience Polling
The Grey Areas of ITAR and EAR Licensing of U.S. Person Activities Abroad
Kim MyersPartnerAkin Gump Strauss Hauer & Feld LLP (USA)
During this highly anticipated session, delve into the practical and legal consequences for you as a Canadian employer if your U.S. employee fails to comply with these ITAR and EAR licensing requirements
- Clarifying ITAR and EAR licensing requirements for U.S. persons working abroad: What restrictions apply to the types of activities in which the U.S. employee can engage?
- Navigating the road mines in State/DDTC’s updated Guidance for USPAB Authorization Requests (Revision 2.0) as of 09/03/2024, especially with respect to U.S. employees’ furnishing defense services to your vendors, subcontractors, actual or potential customers, or other foreign entities with whom your U.S. employee may work directly
- Demystifying the “alphabet soup” of categories in Commerce/BIS new licensing requirements on U.S. person controls
- Guiding your U.S. person employees to obtain authorization to work on development projects under the ITAR and EAR licensing requirements
Close of Day One
Day 2
January 30, 2025
Co-Chairs’ Opening Remarks
CLOUD COMPUTING COMPLIANCE/GLOBAL REGULATORY OUTLOOK
The Multijurisdictional AI, and Cloud Computing Landscape and the Interplay with Export Controls: The Real-World Impact of U.S., EU and German Regulatory Efforts, and the Key Differences with Canadian Requirements
Wendy J. WagnerPartnerGowling WLG (Canada)
Stephan MuellerPartnerOppenhoff (Germany)
Opher ShweikiPartnerAkin Gump Strauss Hauer & Feld LLP (USA)
How is industry tackling other jurisdictions’ cloud computing control efforts? What might Canada learn? And what compliance complications have arisen as the globe catches up with cloud regulatory controls?
- Government of Canada:
- Performing security categorization: Attributing “High Watermark” risk profiles of cloud security
- Cloud security control profile selections
- Determining scope of security responsibility for various cloud service models
- Performing security assessments
- The U.S. AI EO and new cloud provider requirements: BIS cloud-specific details, including cloud ”Infrastructure as a Service” provisions and cloud reporting requirements
- Reporting requirements for Frontier AI Developers and Compute Providers
- Is providing computational capacity service an export?
- Are deemed export licenses needed for foreign national IT administrators?
- Who is considered the “exporter” of the cloud content, the user or cloud provider?
- Managing export controls around provision of access information (keys)
- The EU AI Act:
- What is the definition of an “artificial intelligence system”?
- The changes it will require from AI companies: How soon will they take affect?
- Defining DIGITALEUROPE EU export control guidelines:
- The definition of “export” when encrypted technology is sent outside of the EU
- The definition of software “exports” when the software is provided as a service (Saas)
- Germany:
- Managing compliance around “potential access” to controlled tech/software
- The technologies’ potential misuse in violation of human rights, including restricting fundamental freedoms.
Networking Break
CHINA THINK TANK #2: ADVANCED SCENARIOS (HYPOTHETICALS AND AUDIENCE POLLING)
The Future of Foreign Military, Security, and Intelligence End Use/Users Rules: Military/Intelligence Proposed Rule Revisions and Mitigating New Extraterritorial Enforcement Risks
Boris ZadkovicDirector, Global Trade ComplianceL3Harris Technologies Inc.
Kim StrosniderPartnerCovington & Burling LLP (USA)
- End use and end user-based export controls revisions
- Proposed addition of Intelligence End User Rule (IEU)
- Proposed addition of Foreign-Security End User Rule (FSEU)
- New and expanded U.S. Person Activities controls
- Revisions to the definition of U.S. person “support”
- New and updated license review policies: Applications submitted under the new and revised MEU, MSEU, and IEU Rules, and corresponding U.S. person activities controls
- New destination-based controls for certain Facial Recognition Systems
- Understanding the extraterritorial due diligence needed behind MEU revisions
- How industry is updating screening, compliance policies and procedures: What are best practices?
- Getting previous Returned Without Action (RWA) notices approved:
- Hypothetical Scenario: What do you do if a customer’s subcontractor ends up on the MEU list, even if they have no military intent? How do you prove to BIS that this subcontractor will avoid military activities to get your RWA approved?
- License applications, approvals, and denials: What are the lessons learned from ever-evolving trends?
SECTOR-SPECIFIC ROUNDTABLES
Aerospace/Defense, Technology, Manufacturing, Logistics, Automotive: Export Compliance Experts and Managers Share Their Best-Practices in a Closed Door Setting
During this session, attendees will split up, joining your sector’s table. Each table will have a sector-focused discussion moderator to get conversation started and record the group’s key takeaways.
Networking Luncheon
Cloud Computing and Export Compliance: Managing Workloads in Compliance with Controlled Goods, ECL, ITAR, and EAR
Melanie RosenblathProgram Manager – Security ComplianceMicrosoft Canada Inc.
Orisia GammellChief Legal Counsel, Export Control, Head of Export Control Innovation TeamSAP (USA)
- Comparing and contrasting the U.S. versus Canadian landscapes: Essential compliance requirements for controlled data and cloud computing
- Using cloud services and SaaS tools in compliance with Canada’s Controlled Goods Program
- Best practices and customer-side configurations
- Considerations and pending guidance around use of cloud services for export-controlled workloads managed by Canadian industry (Canada’s ECL, U.S. EAR and ITAR controls) – specifically, data processing outside of Canada
- Assessing the significance of cloud enablement to support data protection and digital transformation for government and industry
- Assessing BIS proposals that U.S. cloud service providers report to the BIS when foreign customers use their services to train large artificial intelligence (AI) models
- Using cloud services and SaaS tools in compliance with Canada’s Controlled Goods Program
Networking Break
The Most Complex Classification Challenges and How to Resolve Them: Practical Guidance for Navigating Canadian, ITAR and EAR Dilemmas
Gordon ClarkeDirector, Engineering, & Regulatory AffairsCesaroni Technology Inc.
Kate SeamanDirector, Security and Trade ComplianceTop Aces (Canada)
During this in-depth session, experts will walk you through some of the most vexing requirements and the key classifications missteps to avoid before it’s too late.
The scenarios will cover key challenges, including:
- What is (and isn’t) “specially designed”?
- Practical approaches to streamlining your compliance classification process
- The influence of controlling technology during the design phase on product classification
- Conducting an inventory of components throughout your supply chain and their impact on your classification
- Verifying the accuracy of the classification before transferring, sharing, or disposing of items
- Addressing differences in the treatment of dual and third-country nationals and technology transfers under ECL, ITAR, and EAR
- Evaluating discrepancies in the categorization of EAR, ITAR, and Canadian ECL, CPG
- How to handle opposing or different classifications from one country to the next
Reaching CMMC 2.0 and CPCSC Maturity: Demystifying Compliance Requirements, Overcoming Implementation Challenges and Understanding Canadian/US Regulatory Parallels
Paula Folkes-DallaireAssociate Assistant Deputy MinisterPublic Services and Procurement Canada
Eric CrusiusPartnerHolland & Knight LLP (USA)
Stacy Bostjanick SESChief Defense Industrial Base Cybersecurity, Chief Information OfficerU.S. Department of Defense
- DoD’s “CMMC 2.0”:
- The process, limitations, and limited waivers to ensure the most comprehensive CMMC 2.0 implementation
- Understanding the necessary maturity level required based on your company’s involvement with DoD contracts
- Analyzing the evolving changes and requirements because of the alignment of CMMC to NIST standard
- Dispelling common misconceptions about CMMC 2.0 program requirements
- Special issues and strategies for Canadian companies to satisfy CMMC requirements
- Canadas’s Program for Cyber Security Certification (CPCSC):
- How Canada’s new Cybersecurity Program aligns with the CMMC -and how it is different
- The prospect of mutual recognition by the U.S. under the U.S. Cybersecurity Maturity Model Certification (CMMC)
- Implementation timelines and resources for Small and Medium Enterprises (SMEs)