Previous SectionIndexHome Page


Disclosure from the Register: Unlawful Activities



'(1)   This section shall have effect in relation to any disclosure from the Register which is authorised by provisions in sections 19 to 23.



(2)   It shall be unlawful for any person who obtains information about an individual from the Register to retain copies of that information for the purpose of duplicating the Register or part of the Register.



(3)   It shall be unlawful for any person who obtains information about a particular individual from the Register to disclose that information about that individual to another public authority unless an entry relating to that disclosure is recorded in the Register for that individual.



(4)   It shall be unlawful for any person who obtains information about a particular individual from the Register to disclose that information about that individual to another person for his (the second person's) purpose where the other person is not authorised to obtain that information directly from the Register.



(5)   The term "connected with" shall not be construed as meaning that the connection with a particular event is remote or unlikely, but to the contrary, that the connection with an event is significant or that failure to obtain the information from the Register could prejudice an investigation into that event.



(6)   The phrase "in the interests of national security" shall be construed as meaning that failure to obtain the information from the Register would cause prejudice to the objective of safeguarding national security.



(7)   Any person who obtains information from the Register shall take all reasonable steps to ensure that any obtaining, use or disclosure of the information is consistent with the requirements of the Human Rights Act 1998 (c. 42).'.—[Patrick Mercer.]

Brought up, and read the First time.

Patrick Mercer (Newark) (Con): I beg to move, That the clause be read a Second time.

Madam Deputy Speaker (Sylvia Heal): With this it will be convenient to discuss the following: New clause 6—The Register and CCTV Systems—



   'Use of the National Identity Register in conjunction with CCTV systems shall be considered to be directed surveillance for the purposes of Part 2 of the Regulation of Investigatory Powers Act 2000 (c. 23).'.

Government amendment No. 53.

Amendment No. 46, in clause 22, page 19, line 43, after 'information', insert



'not falling within paragraph 9 of Schedule 1'.

Government amendments Nos. 54 and 55.

Amendment No. 47, in clause 22, page 20, line 1, after 'person', insert 'in the United Kingdom'.


 
10 Feb 2005 : Column 1720
 

Amendment No. 30, in clause 23, page 20, line 13, leave out 'reasonably practicable' and insert 'possible'.

Amendment No. 32, in clause 23, page 20, line 26, leave out from 'person' to end of line 28.

Amendment No. 31, in clause 23, page 20, line 47, at end insert—



'(6)   The Secretary of State must not make any regulations under this section unless a draft of such regulations has been laid before Parliament and approved by a resolution of each House.'.

Patrick Mercer: I am conscious that we have a lot to get through in a very short space of time. Certainly, Conservative Members feel that we did not have enough time to cover as many clauses as we would have liked in Committee, where we constantly ran out of time, although I hope that I spoke with great brevity. I will try to do so again today, so that Members who are interested in speaking to their amendments in the available 15 minutes or so will have the opportunity to take part in the debate.

I will speak briefly to new clause 3, as well as amendments Nos. 30 to 32. It is designed to address the issue of disclosure from the register in terms of unlawful activities. First and foremost, I am extremely concerned about the wide powers in clause 19(1), which, to remind the House, says:

I am concerned about such wide powers to disclose information held on the register without the consent of registered individuals. The range of eligible authorities under clause 19(2)—the director general of the Security Service, the chief of the Secret Intelligence Service, the director of the Government Communications Headquarters and the director general of the Serious Organised Crime Agency—means that far too wide a register of individuals can be concerned with this. Moreover, the test on what information can be disclosed to such bodies—in other words, "for purposes connected with"—is insufficient. That is why new clause 3 would provide that the

4.15 pm

Similarly, the authorisation to disclose information that does not fall within paragraph 9 of schedule 1 to a chief officer of police for the prevention and detection of crime under clause 19(4) is far too wide. I shall not bore hon. Members by talking about that in great detail except to underline that subsection (4) specifies

New clause 3 tries to redefine that by stating:


 
10 Feb 2005 : Column 1721
 

I am concerned that the police could conceivably have information routinely disclosed through the powers of the clause. I also view the disclosure of information that does not fall within paragraph 9 of schedule 1 to a prescribed Department

in clause 19(5) as not tight enough. The provisions need to be much more clearly focused and new clause 3 achieves that.

I am worried about the powers of disclosure in clause 21(2), which would allow disclosure to a person who provides "inaccurate or incomplete information" of the discrepancies between it and the information recorded on the register. Regardless of whether the person who provides the information is an individual who represents himself or herself to an organisation for entitlement or an organisation that requests information to check against what an individual provides, disclosing the discrepancies would be most unwise.

The seventh data protection principle requires data controllers to take appropriate technical and organisational measures against unauthorised or unlawful processing of personal data and against accidental loss, destruction or damage to personal data. Given the importance of the national register and its security and the number of linking organisations, that will be tremendously difficult and technical. Above all, the managerial task, which includes staff vetting, and dealing with the rules and different cultures across the many organisations, will be difficult. To ensure that the principle is met, there should be clear information for users about how their data will be used, processed and transferred. We need unambiguous consent—that is essential—and I believe that new clause 3 would cover that.

I am concerned about the extended powers of disclosure without consent in clause 22. Previous clauses provide an extensive list of personnel, some of whom we have covered, who may get access to an individual's information. However, clause 22 provides the Home Secretary with an opportunity to add people and purposes by order. Again, it is far too slackly defined and bestows far too much power.


Next Section IndexHome Page