UK govt seeks to use 1689 Act to bury scrutiny on its ID card scheme (Update: now criticised by MPs Human Rights group over "Lax standards" on data security)

User Menu

Home Page

«Mirror of the World»

Support the Site

Contacts

Iraq-War board rules

Articles

Iraq News

Around the World

Historical analysis & facts

Current analysis

Economics

Hot News

Rankings

Forums

RSS feeds

RSS feed for articles and news

Weather

Calendar-Filter

< Feb > < 2010 >

S	M	T	W	T	F	S
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28

Today

UK govt seeks to use 1689 Act to bury scrutiny on its ID card scheme (Update: now criticised by MPs Human Rights group over "Lax standards" on data security)
By: Tony Collins, Computer Weekly/BBC on: 14.03.2008 [01:00 ] (589 reads)

This article was the front page of the most recent edition of the leading IT Professionals newspaper.

How desperate is this govt getting?

Update: UK Govt found to be "lax" on data security

(6855 bytes) [nc]

Government lawyers have asked the High Court to throw out a ruling to publish reviews into the feasibility and progress of the government's ID cards project

http://www.computerweekly.com/Articles/2007/05/15/223912/do-gateway-reviews-produce-results.htm
http://www.computerweekly.com/Articles/2008/03/07/229754/wave-of-criticism-hits-government-id-card-relaunch.htm

on the basis of a piece of 319-year-old English legislation. The hearing is seen as a test case on whether Gateway reviews - independent assessments of risky IT and other projects at critical stages - should be subject to public scrutiny.

If the judge accepts the case put forward by government lawyers, and he has indicated that he may, Gateway reviews on ID cards and other major schemes will remain secret for at least another six months, and possibly much longer.

http://www.computerweekly.com/Articles/2006/10/17/219112/government-hires-legal-experts-to-fight-publication-of-id-card.htm"

The government is using the 1689 Bill of Rights, which establishes the principle that parliamentary proceedings cannot be questioned by the courts, as one central argument in its legal battle to prevent Gateway reviews becoming public. The case will decide whether a ruling by the Information Tribunal that early Gateway reviews on ID cards be published should stand.

Computer Weekly has campaigned for years for Gateway reviews to be made available to the public. The information commissioner and the Information Tribunal have ruled that early Gateway reviews on ID cards be published.

"Disclosure is likely to enhance public debate of issues such as the programme's feasibility and how the ID card scheme is being managed. It would also allow the identification of project risks and practical concerns," said information commissioner Richard Thomas.

But the Treasury's Office of Government Commerce (OGC), which runs the Gateway scheme, wants reviews kept secret. It says that those interviewed as part of the reviews may not be frank and open if reports are to be disclosed. The OGC's barrister Jonathan Swift asked the judge, Stanley Burnton, to reject the ruling that the reviews should be made public in the High Court last week.

Swift said Parliamentary Privilege granted by the 1689 Bill of Rights stopped the courts from questioning or examining parliamentary proceedings. This could undermine the Information Tribunal's ruling, which relied heavily on an investigation into Gateway reviews by the Commons Work and Pensions Committee. Swift, whose arguments about the Bill of Rights were backed by Martin Chamberlain, a lawyer representing the speaker of the House of Commons, suggested the tribunal might have been wrong to quote extensively from the committee's report. The judge appeared to support some of the arguments put by Swift and Chamberlain. If he throws out the tribunal's ruling, it would mean that the tribunal would have to reconsider whether Gateway reviews on ID cards should be published.

http://www.computerweekly.com/Articles/2008/03/07/229762/government-seeks-to-bury-id-card-reviews.htm

'Lax standards' on data security

The government has persistently failed to take data protection "sufficiently seriously," the Joint Committee on Human Rights has warned.

Episodes such as the loss of child benefit discs containing 25m people's details were "symptomatic of lax standards," said MPs and peers.

The report said this did not "inspire confidence" in controversial plans for a National Identity Register.

The government is considering measures to toughen up the Data Protection Act.

The joint committee's report on data protection and human rights notes that it has pointed out its concerns on 18 previous occasions and suggests such lapses may break the Human Rights Act.

The report added: "Recent breaches in data protection by government departments do not encourage us to feel confident about the security of data collected as part of the National Identity Register project."

The committee's chairman, Labour MP Andrew Dismore, said: "People were shocked by the recent loss of child benefit data but that was far from a one-off.

"In fact, it was symptomatic of lax standards in the public sector."

Data losses

It emerged last November that two discs containing the entire child benefit database had been lost after HM Revenue and Customs sent discs to the National Audit Office unregistered and unencrypted.

They contained personal details of 25m people - including bank details, National Insurance numbers and children's names, addresses and dates of birth.

Since then other losses of data have emerged, including the theft of a Royal Navy laptop containing 600,000 people's details.

The committee wants Michael Wills's powers to be expanded

In December it was announced that details of three million British learner drivers, held on a computer hard drive, had gone missing in the US.

The report says such losses are "symptomatic of the government's persistent failure to take data protection safeguards sufficiently seriously".

It notes with surprise that the first the data protection minister, Michael Wills, heard about the loss of the child benefit discs was the official statement made by Chancellor Alistair Darling.

It recommends he be given more powers to "champion best practice in government and ensure that lessons are learnt from data protection breaches."

It also recommends the information commissioner be given more powers for "privacy impact assessments" on government projects.

And it says it expects the government to "take action to foster a positive culture for the protection of personal data by public sector bodies".

Mr Dismore said the child benefit episode had highlighted the "true consequences of the piecemeal approach to data management".

"There has been a rapid increase in the amount of data sharing in the public sector, which can be useful, important and necessary.

"But this has not been matched by the even more necessary strong commitment to safeguard the right to respect for personal data."

A report in January by the Commons Justice Committee called for reckless or repeated breaches of data security to become a criminal offence and found "systemic failings" in the government's handling of personal data.

The Ministry of Justice said at the time that the need to strengthen data protection laws had been recognised before the child benefit discs were lost and a review had been commissioned in October.

And a spokeswoman said Parliament was considering proposals to toughen up the Data Protection Act to include jail terms and fines for those convicted of "unlawfully obtaining or disclosing personal data."

http://news.bbc.co.uk/1/hi/uk_politics/7295467.stm