UKPOL.CO.UK

Tag: Data Loss

  • Joanna Cherry – 2021 Speech on Data Loss at the Home Office

    Joanna Cherry – 2021 Speech on Data Loss at the Home Office

    The speech made by Joanna Cherry, the SNP MP for Edinburgh South West, in the House of Commons on 18 January 2021.

    I thank the Minister for advance sight of his statement. Two weeks ago, the Home Secretary was boasting that the United Kingdom is now a safer place because of Brexit. However, before it was disbanded by the Government, the Select Committee on the Future Relationship with the European Union heard detailed expert evidence explaining why the United Kingdom is not a safer place as a result of the law enforcement part of the Brexit deal. One of the key reasons is that we have lost real-time access to Europe-wide databases on criminal records, DNA, fingerprints and, indeed, intelligence. That is not just my view but the expert view of Lord Ian Blair, the former Metropolitan Police Commissioner, and Lord Peter Ricketts, the former National Security Adviser. Now that situation has been further exacerbated by this loss of important fingerprint, DNA and arrest history records, which the police use for real-time checks on our own UK-wide databases.

    Mr Speaker, you really couldn’t make it up, yet curiously the Home Secretary is nowhere to be seen. Instead, she has sent her junior Minister to take the flak. I have two areas of questions for him. First, was this data cleaning operation in any way connected to the removal of records from the police national computer following the end of the transition period? Does the 400,000 figure include the 40,000 records that were removed from the police national computer post Brexit, or is it on top of that? Secondly, given the UK-wide nature of the database, what discussions have taken place with police forces in the devolved nations? Will the Minister commit to full co-operation with Police Scotland and other devolved forces until this issue is resolved?

  • Nick Thomas-Symonds – 2021 Speech on Data Loss at the Home Office

    Nick Thomas-Symonds – 2021 Speech on Data Loss at the Home Office

    The speech made by Nick Thomas-Symonds, the Shadow Home Secretary, in the House of Commons on 18 January 2021.

    I am grateful to the policing Minister for his statement and for advance sight of it, and I am grateful to him for his briefing over the weekend, but I must ask where the Home Secretary is. The loss of hundreds of thousands of pieces of data—data so important for apprehending suspects and safeguarding vulnerable people—is extraordinarily serious. It was the Home Secretary who needed to show leadership and take control. That is what previous Home Secretaries have done in a crisis. On the Passport Office, Windrush and knife crime, whatever their mistakes, Home Secretaries came to and answered to this House; they did not just offer a media clip, as has happened today. This Home Secretary, who is failing on violent crime and failing on the Windrush compensation scheme, with chaos on border testing, and who was found to have broken the ministerial code, will now not even answer to Parliament and the public on this most serious of issues. The Home Secretary likes to talk tough, but when the going gets tough, she is nowhere to be seen.

    Will the Minister tell us when the Home Secretary first knew about the data loss and why the public had to find out from the media? Given that the initial reports were of 150,000 items of data, and the figure now seems to be over 400,000, can the Minister be sure of how much data has actually been lost? In his statement, the Minister said that on 10 January the process of deletion was stopped, but will he confirm that the faulty script was introduced into the police national computer on 23 November, meaning that the problem was not identified for 48 days?

    The Minister said in his statement on Friday that

    “the loss relates to individuals who were arrested and then released with no further action”.

    This is serious in itself. For example, let us consider cases of domestic abuse: when suspects are released, the data becomes very important to protecting victims and making further arrests. In a letter, Deputy Chief Constable Malik, the National Police Chiefs Council lead for the police national computer, said that the deleted DNA contains

    “records…marked for indefinite retention following conviction of serious offences.”

    This is, therefore, not only data on individuals released with no further action; it includes data about convicted criminals, so will the Minister now correct the statement that he issued on Friday?

    Will the Minister confirm whether 26,000 DNA records and 30,000 fingerprint records held on separate databases have been deleted? Will he assure the House that the engagement with the PNC to delete the Schengen information system—SIS II—database was unrelated? What is the full impact on the UK visa system from the data loss, and how is it affecting ongoing police investigations and intelligence gathering?

    The PNC and the police national database are due to be replaced by the national law enforcement data programme, but the assessment by the Infrastructure and Projects Authority is that the successful delivery of the project is in doubt. Is it still in doubt? If so, why? There are reports that 18 months ago senior police outlined that the Home Office was not investing in the PNC and that it presented a significant risk to the police’s ability to protect the public. Was that warning heeded?

    Finally, if it is not possible to recover data via the process currently under way, what contingency plans are in place to seek to recover the data via other means? Does the Minister accept that maintaining the security of this vital data is critical to addressing crime, bringing criminals to justice and keeping our communities safe, and that if the Home Office is not doing that, it is failing the public?

  • Kit Malthouse – 2021 Statement on Data Loss at the Home Office

    Kit Malthouse – 2021 Statement on Data Loss at the Home Office

    The statement made by Kit Malthouse, the Policing Minister, in the House of Commons on 18 January 2021.

    With permission, Mr Speaker, I would like to make a statement about the technical issues that we have experienced with the police national computer over the past week.

    The records and information held by the police help to keep us safe, but they, like many other public bodies, have an obligation to ensure that the information they hold is properly managed. As I am sure you are aware, Mr Speaker, not all information and records held by the police can be held indefinitely. To ensure that the police are complying with their legal obligations in respect of the records they hold, a regular housekeeping process is undertaken to delete personal data and records from the police national computer and linked databases: in this case, data relating to individuals who were investigated by the police but where no further action was taken. This is undertaken for a variety of reasons, but chiefly to abide by legal obligations.

    With such a large database, holding some 13 million records, an automated process is used to remove records that the police national computer has no legal right to hold. A weekly update was designed by engineers and applied to the police national computer, which then automatically triggers deletions across the PNC, and other linked databases. Last week, the Home Office became aware that, as a result of human error, the software that triggers these automatic deletions contained defective coding and had inadvertently deleted records that it should not have, and indeed had not deleted some records that should have been deleted. An estimated 213,000 offence records, 175,000 arrest records and 15,000 person records are being investigated as potentially having been deleted. It is worth the House noting that multiple records can be held against the same individual, so the number of individuals affected by this incident is likely to be lower. Operational partners are still able to access the police national computer, which holds, as I say, over 13 million records. Clearly this situation is very serious, and I understand that colleagues across this House will have concerns, which of course I share.

    By your leave, Mr Speaker, I want to set out for the House the steps that we have taken to deal with this complex incident. On the evening of 10 January—the same day the Home Office became aware of the incident—engineers put a stop on the automated process to ensure that no further deletions took place. All similar automated processes have also been suspended. Early last week, Home Office civil servants and engineers worked quickly to alert the police and other operational colleagues, and established a bronze, silver and gold command to manage the incident and co-ordinate a rapid response. The gold command provided rapid guidance for police forces and other partners to ensure that they were kept abreast of the situation.

    Secondly, Home Office officials and engineers, working closely with the National Police Chiefs Council, police forces and other partners, immediately initiated rapid work, through the gold command, to assess the full scale and impact of the incident. This included undertaking a robust and detailed assessment and verification of all affected records, followed by developing and implementing a plan to recover as much of the data and records as is possible, and to develop plans to mitigate the impacts of any lost data. This is being done in four phases. Phase 1 involves writing and testing a code to bring back accurate lists of what has been deleted as a result of the incident. Phase 2 will involve running that code and then doing detailed analysis on the return to fully analyse the records that have been lost and establish the full impact. Phase 3 will be to begin the recovery of the data from the police national computer and other linked systems. Phase 4 will involve work to ensure that we are deleting any data that should have been deleted as usual when this incident first began. Phase 1 of the process has taken place over the weekend, and I am assured that it has gone well. The second phase is now under way, and I will hopefully have an update in the next few days.

    While any loss of data is unacceptable, other tried-and-tested law enforcement systems are in place that contain linked data and reports to support policing partners in their day-to-day efforts to keep us safe: for example, the police national database or other local systems. The police are able to use these systems to do simultaneous checks.

    I urge patience while we continue our rapid internal investigation and begin the recovery. I hope the House will appreciate that the task in front of us is a complex one. Public safety is the top priority of everyone working at the Home Office, and I have full faith that Home Office engineers, our partners in the National Police Chiefs Council and police forces throughout the country, with whom we are working, are doing all they can to restore the data. Although that is rightly our immediate priority, the Home Secretary and I have commissioned an internal review as to the circumstances that led to this incident, so that lessons can be learned. I will update the House regularly on the process. I commend this statement to the House.

  • Nick Thomas-Symonds – 2021 Comments on Priti Patel Refusing to Appear in Commons

    Nick Thomas-Symonds – 2021 Comments on Priti Patel Refusing to Appear in Commons

    The comments made by Nick Thomas-Symonds, the Shadow Home Secretary, on 18 January 2021.

    It’s shameful – and, frankly, embarrassing – for the Home Secretary not to come to Parliament today.

    It’s an abject failure of leadership and dereliction of duty not to grip a crisis that has seen 400,000 records deleted and criminals set to walk free.

  • Priti Patel / Home Office – 2021 Statement on 150,000 Arrest Records Deleted by Home Office

    Priti Patel / Home Office – 2021 Statement on 150,000 Arrest Records Deleted by Home Office

    The statement issued by the Home Office on 15 January 2021.

    The technical issue with the Police National Computer has been resolved, and we are working at pace with law enforcement partners to assess its impact.

    The issue related to people arrested and released where no further action had been taken and no records of criminal or dangerous persons have been deleted. No further records can be deleted.

  • Nick Thomas-Symonds – 2021 Statement on 150,000 Arrest Records Deleted by Home Office

    Nick Thomas-Symonds – 2021 Statement on 150,000 Arrest Records Deleted by Home Office

    The statement made by Nick Thomas-Symonds, the Shadow Home Secretary, on 15 January 2021.

    This is an extraordinarily serious security breach that presents huge dangers for public safety.

    The incompetence of this shambolic Government cannot be allowed to put people at risk, let criminals go free and deny victims justice.

    The Home Secretary must take responsibility for this serious problem. She must – urgently – make a statement about what has gone wrong, the extent of the issue, and what action is being taken to reassure the public. Answers must be given.