Stop Waiting for Q-Day: Quantum Risk Is a Governance and Contracting Problem You Already Have

On June 17, 2026, Strategic Advisor Amin Lalji spoke at the Ontario Bar Association’s continuing legal education program, Quantum Risk: Why Lawyers Need to Act Now and Where to Start, challenging attendees to consider a single question: does your organization or your client hold information that must remain confidential in ten or twenty years? If so, the quantum clock has already started.

While much of the conversation tends to focus on when quantum computing will break current encryption, that is not the right question for legal and business leaders.

Instead, the focus should mirror any enterprise risk assessment: what data is held, how long it must be protected, and what obligations exist today. In that context, quantum readiness is a risk management decision, not a technology forecast.

The following key issues were addressed during the program:

1. The threat is “harvest now, decrypt later,” so the loss happens before you ever see it

The near-term danger is not a criminal renting a quantum computer to break your encryption this afternoon. It is patient collection. Well-resourced adversaries and nation-states can copy encrypted data today and simply store it, then decrypt it once the hardware matures.

There is no alarm, no ransom note, no outage. A clean security report in 2026 tells you nothing about whether that data is safe in 2032. Any information with a long confidentiality life, privileged communications, deal files, trade secrets, health records and personal data is already exposed.

2. Quantum breaks one kind of encryption, not all of it

This is the distinction that makes the risk manageable. Symmetric encryption, the type of technology behind file and disk protection, largely survives with longer encryption keys. The vulnerable family is public-key cryptography, such as RSA and elliptic-curve cryptography, which secures every website, e-signature, VPN, digitally signed documents and digital certificates your clients rely on. The problem is narrow but deep and it underpins the systems lawyers rely on every day.

3. The standards exist and the deadlines have already arrived

The United States National Institute of Standards and Technology (NIST) finalized the first post-quantum cryptography standards in 2024, establishing a formal migration benchmark. In Canada, the Treasury Board’s Security Policy Implementation Notice requires post-quantum clauses in all new federal contracts by the end of 2026, the Canadian Centre for Cyber Security has published a migration roadmap through 2035, and Bill C-8, which received Royal Assent on June 15, 2026, reinforces the broader regulatory shift toward stronger cyber resilience for critical infrastructure operators, a direction that is consistent with growing expectations around post-quantum readiness.

Recent advances in quantum research have pulled the commonly cited “Q-Day” window forward – the point at which a cryptographically capable quantum computer comes into existence, to the 2027 to 2035 timeframe. Procurement, insurers and regulators will set the pace long before any headlines about a broken algorithm.

4. Quantum and AI are a compounding risk, not two separate ones

Treating these as unrelated understates both. Quantum can strip the cryptographic protection from historical data, while artificial intelligence can mine, correlate and weaponize that data at scale, sharpening social engineering and making bulk analysis of previously inaccessible information possible. And the exposure is not only about confidentiality. A quantum-capable adversary could potentially forge digital certificates, impersonate trusted systems and deliver fake software updates, which puts the integrity of digital signatures and software supply chains squarely on the executive and board agenda.

5. This is enterprise and governance risk, and someone has to own it

Cryptography touches every team, so each one assumes another owns it, and the program stalls. The model that works has a single accountable owner, usually the chief information security officer, with a board mandate and legal counsel embedded throughout.

The professional duties are already engaged, including the duties of competence, confidentiality and privilege, as well as safeguarding obligations under applicable privacy legislation, including PIPEDA federally and PHIPA in Ontario. Those statutes require safeguards appropriate to the sensitivity of the information, and the meaning of “reasonable” shifts as the threat environment shifts. Knowingly relying on encryption that is known to be vulnerable for data that must stay secret for years is a risk that grows quietly and may raise issues of foreseeability in the future.

6. Contracts are the lever lawyers actually control

Most organizations expect their vendors to handle the migration. In practice, few vendors have a dated plan, and a vendor’s delay quietly becomes the client’s exposure. That makes vendor due diligence and contract drafting the most practical place for counsel to add value. Ask vendors for supported algorithms, a dated roadmap, hybrid support and flow-down to their own subcontractors. Build crypto-agility into agreements by preserving the right to swap algorithms without re-engineering. Allocate the risk deliberately through representations and warranties, audit rights, reporting obligations, indemnities, termination rights and step-in rights. Today’s “reasonable security” and encryption clauses will be read, in hindsight, against the post-quantum standard.

7. What to do in the next twelve months

None of this requires waiting for new technology. Inventory where your organization uses cryptography. Identify the data that must remain confidential past 2030 and protect it first. Ask critical vendors for their post-quantum plans in writing. Build crypto-agility so you can change algorithms by configuration rather than by a forklift upgrade. Set internal milestones aligned to the federal timelines, even where no statute yet compels you.

For small or solo practices, the task is more manageable: rely on cloud and practice-management providers that are already migrating, protect long-life files, and document the questions asked and answers received as part of your professional due diligence and due care obligations.

Looking Forward

The biggest surprise, five years from now, will be how much of this turned out to be a governance and contracting problem rather than a physics problem. You do not need to predict Q-Day to act sensibly.

You need to know what you hold, how long it must stay secret, and who is accountable for protecting it. The right posture is neither panic nor passivity. It is to inventory your cryptography, protect long-life data, and begin building crypto-agility now.

This article is a summary for general information only and is not legal advice. It should not be relied upon in respect of any specific situation. Quantum and regulatory developments are moving quickly, so please confirm the current position before acting. For advice on how these developments affect your contracting and compliance programs, please contact Wildeboer Dellelce LLP.