§01The regulatory landscape.
Cannabis security in Canada is governed by Health Canada's Physical Security Directive at the licensed-producer level and by provincial retail regulators (OCS, AGLC, BCLDB, SQDC, and equivalents) at the retail level. Municipal by-laws layer on top.
§02Intrusion detection.
24/7 monitored intrusion detection with dual signal paths (IP + cellular backup). Motion detection on every restricted-access room. Panel supervision to a UL/ULC-listed monitoring station — SOC 2 audited where possible.
§03Video surveillance.
Every restricted-access area, every point of egress, and every destruction event captured on video, retained 12 months minimum. Camera health checks daily — a broken camera is a compliance failure.
§04Access control.
Two-factor authentication into vaults and restricted areas. Access-attempt logging. Anti-passback where practical. Terminated employees' credentials revoked within one shift.
§05Personnel screening.
Health Canada requires Security Clearance for LP key personnel. Guards deployed to LP sites should be BST/PSISA licensed plus WHMIS-certified. Guardian Shield adds NVCI training for retail-facing deployments.
§06Destruction events.
Destruction of cannabis product requires witnessed, video-recorded, and documented protocols. Two officers minimum on-site during destruction. Chain of custody logged.
§07Retail-specific requirements.
Retail dispensaries add customer-facing complexity: age verification, panic buttons at every till, drop-safe protocols for cash, and municipal secondary-review windows. Regional variance matters — SQDC requirements differ from OCS.
§08The annual audit.
Health Canada and provincial regulators can arrive unannounced. The winning audit posture is documentation-first: every camera health check, every incident, every destruction event, timestamped and retrievable within five minutes.