Information since 10 Aug 2025, 2:47 a.m.
| Parliamentary Debates |
|---|
|
Crime and Policing Bill
100 speeches (26,958 words) Committee stage part one Monday 15th December 2025 - Lords Chamber Home Office Mentions: 1: None is no longer needed because of the general data protection override in section 183A of the Data Protection Act - Link to Speech |
|
Online Safety Act 2023: Repeal
82 speeches (22,817 words) Monday 15th December 2025 - Westminster Hall Department for Digital, Culture, Media & Sport Mentions: 1: Lewis Atkinson (Lab - Sunderland Central) obligations—in the same way that any person would meet obligations such as those under the Data Protection Act - Link to Speech |
|
Cammell Laird Workers’ Imprisonment: Public Inquiry
15 speeches (4,429 words) Wednesday 10th December 2025 - Commons Chamber Ministry of Justice Mentions: 1: Jake Richards (Lab - Rother Valley) The 2010 blacklisting regulations are reinforced by powers in the Data Protection Act 2018, which protect - Link to Speech |
| Select Committee Documents |
|---|
|
Thursday 18th December 2025
Written Evidence - Northumbria University, Northumbria University, and Northumbria University RAI0020 - Human Rights and the Regulation of AI Human Rights and the Regulation of AI - Human Rights (Joint Committee) Found: Although the UK has the Human Rights Act 1998 and the Data Protection Act, the UK does not have specific |
| Written Answers |
|---|
|
Police: Biometrics
Asked by: Lord Taylor of Warwick (Non-affiliated - Life peer) Tuesday 23rd December 2025 Question to the Home Office: To ask His Majesty's Government what steps they are taking to ensure that any use of live facial recognition cameras by law enforcement bodies is subject to clear safeguards to protect privacy and human rights. Answered by Lord Hanson of Flint - Minister of State (Home Office) When deploying facial recognition technology, police forces must comply with existing legislation including the Human Rights Act 1998, Equality Act 2010, Data Protection Act 2018, Police and Criminal Evidence Act 1984, as well as their own published policies. For live facial recognition, police forces must also follow the College of Policing’s Authorised Professional Practice (APP) on Live Facial Recognition. Forces must also give due regard to the Surveillance Camera Code of Practice, which is supplemented by published policing policies.
On 4 December the Government launched a 10 week public consultation on law enforcement use of biometrics, facial recognition and similar technologies. We are consulting on a new legal framework to create consistent, durable rules and appropriate safeguards for biometrics and facial recognition. This framework will aim to strike the right balance between public protection and privacy. The consultation will close week commencing 9 Feb 2026. |
|
Biometrics: Children
Asked by: Baroness Jones of Moulsecoomb (Green Party - Life peer) Tuesday 23rd December 2025 Question to the Home Office: To ask His Majesty's Government what plans they have to restrict the circumstances in which children may be added to facial recognition watchlists. Answered by Lord Hanson of Flint - Minister of State (Home Office) Facial recognition is a crucial tool that helps the police locate missing people, suspects, and those wanted by the courts. In some cases, under the existing legal framework this includes vulnerable individuals such as missing children. When using facial recognition technology, police forces must comply with legislation including the Human Rights Act 1998, Equality Act 2010, Data Protection Act 2018, Police and Criminal Evidence Act 1984, as well as their own published policies. For live facial recognition, police forces must also follow the College of Policing’s Authorised Professional Practice (APP) on Live Facial Recognition.
On 4th December the Government launched a consultation on a new legal framework for law enforcement use of biometrics, facial recognition and similar technologies. During the consultation we want to hear views on when and how biometrics, facial recognition and similar technologies should be used, and what safeguards and oversight are needed. |
|
Biometrics: Children
Asked by: Lord Alton of Liverpool (Crossbench - Life peer) Tuesday 23rd December 2025 Question to the Home Office: To ask His Majesty's Government whether they plan to introduce limits on the circumstances in which police forces can add children to facial recognition watchlists. Answered by Lord Hanson of Flint - Minister of State (Home Office) Facial recognition is a crucial tool that helps the police locate missing people, suspects, and those wanted by the courts. In some cases, under the existing legal framework this includes vulnerable individuals such as missing children. When using facial recognition technology, police forces must comply with legislation including the Human Rights Act 1998, Equality Act 2010, Data Protection Act 2018, Police and Criminal Evidence Act 1984, as well as their own published policies. For live facial recognition, police forces must also follow the College of Policing’s Authorised Professional Practice (APP) on Live Facial Recognition.
On 4th December the Government launched a consultation on a new legal framework for law enforcement use of biometrics, facial recognition and similar technologies. During the consultation we want to hear views on when and how biometrics, facial recognition and similar technologies should be used, and what safeguards and oversight are needed. |
|
Medical Records
Asked by: Helen Maguire (Liberal Democrat - Epsom and Ewell) Monday 22nd December 2025 Question to the Department of Health and Social Care: To ask the Secretary of State for Health and Social Care, what assessment his Department has made of making patient records owned by the patient. Answered by Zubir Ahmed - Parliamentary Under-Secretary (Department of Health and Social Care) Health records are not owned by patients, as the providers of care who create and maintain the records are the data controllers, although all patients have the right to access their records under the Data Protection Act 2018. Patients also have the legal right to ask for factual inaccuracies to be amended. The general practice (GP) record can be viewed online on the NHS App, or by logging onto the National Health Service website. Individuals can alternatively contact their practice to view their record. To view a hospital record, individuals can ask the trust where they are a patient. As part of the 10-Year Health Plan, we are developing a single patient record which will give patients greater control over their records, and act as a patient passport to seamless care. It will provide a single, secure, and authoritative account of their data by bringing together all of a patient’s medical information from different records in one place, for example GP and hospital data, and patients will be able to view the record securely on the NHS App and add their own data, for example from a wearable device. |
|
Department for Culture, Media and Sport: Disciplinary Proceedings
Asked by: Neil O'Brien (Conservative - Harborough, Oadby and Wigston) Thursday 18th December 2025 Question to the Department for Digital, Culture, Media & Sport: To ask the Secretary of State for Culture, Media and Sport, how many disciplinary cases were concluded against civil servants in (a) her Department and (b) its agencies by (i) outcome and (ii) whether the primary allegation related to (A) performance and (B) conduct in the last twelve months. Answered by Ian Murray - Minister of State (Department for Science, Innovation and Technology) In the last 12 months, there have been 6 disciplinary cases that have concluded within DCMS. All related to an allegation of misconduct.
We cannot provide the outcome of closed disciplinary cases. Doing so would breach the Data Protection Act and risk identifying individual cases where the case count is five or less, as the information relates to someone other than the data subjects.
DCMS does not hold information regarding its agencies, including its arms-length and public bodies. This is because they are independent employers from the department.
Poor performance is addressed under a separate management procedure.
|
|
Police: Biometrics
Asked by: Wendy Morton (Conservative - Aldridge-Brownhills) Wednesday 17th December 2025 Question to the Home Office: To ask the Secretary of State for the Home Department, with reference to the Written Statement entitled Consultation on a new legal framework for law enforcement use of biometrics, facial recognition and similar technologies, published on 4 December 2025, HCWS1129, what assessment her Department has made of current police practice regarding the deployment of facial recognition and related technologies; how operational consistency across police forces will be ensured under the proposed new framework; and what plans she has to strengthen oversight mechanisms, including independent scrutiny, to guarantee that law enforcement agencies use these technologies only within clearly defined legal parameters and with transparent accountability. Answered by Sarah Jones - Minister of State (Home Office) The Government recognises the importance of ensuring the use of facial recognition and similar biometric technologies by law enforcement remains proportionate to the seriousness of the harm being addressed. The consultation launched on 4 December seeks views on whether seriousness of harm should be a factor to decide how and when law enforcement organisations can acquire, retain, and use biometrics, facial recognition, and similar technology. The consultation also asks for views on what factors are relevant to consider when assessing ‘seriousness’ of harm and for which purposes should law enforcement organisations be allowed to use these technologies. We do not intend to publish an impact assessment specifically on the potential implications for civil liberties as part of the consultation process. However, alongside the consultation we have published an equalities impact assessment which makes clear the Government’s commitment to building public trust by highlighting the specific legal frameworks that will be put in place and the statutory bodies for oversight, which will apply to everyone in England and Wales. We recognise that to maintain public confidence we must ensure individual rights, privacy and data security are protected. We believe that the use of biometric and inferential technology should always be demonstrably ‘necessary’ and ‘proportionate’ to the objective being sought. Furthermore, a clear and consistent justification for interference with people’s rights is required. Threshold setting and decision making needs to be attributed to, and shared appropriately between, Parliament, Ministers, independent oversight bodies, and law enforcement organisations. The consultation seeks views on what factors are relevant to consider when assessing interference with privacy so as to ensure the legal framework reflects the views of the public. When using facial recognition technology, police forces must comply with existing legislation including the Human Rights Act 1998, Equality Act 2010, Data Protection Act 2018, Police and Criminal Evidence Act 1984, as well as their own published policies. For live facial recognition, police forces must also follow the College of Policing’s Authorised Professional Practice (APP) on Live Facial Recognition. Oversight of police practice regarding deployment of facial recognition and related technologies is currently provided by regulators and public bodies, including the Biometrics and Surveillance Camera Commissioner, the Information Commissioner, HMICFRS, Equality and Human Rights Commission, and the Independent Office for Police Conduct. The courts system also plays a vital role in ensuring the law is upheld. The Government recognises the importance of independent scrutiny to ensure operational consistency across forces under new framework. That is why the consultation explained the government’s proposal to create a single regulatory and oversight body to oversee law enforcement use of biometrics, facial recognition and similar technologies. The Government envisage giving this body the necessary powers to provide assurance that law enforcement use of biometric technologies is legal, responsible, and necessary. These powers could include setting standards to assure scientific validity, issuing codes of practice and investigating instances where a technology has been misused, hacked or accessed without authorisation. |
|
Police: Biometrics
Asked by: Wendy Morton (Conservative - Aldridge-Brownhills) Wednesday 17th December 2025 Question to the Home Office: To ask the Secretary of State for the Home Department, with reference to the Written Statement entitled Consultation on a new legal framework for law enforcement use of biometrics, facial recognition and similar technologies, published on 4 December 2025, HCWS1129, what assessment she has made of the safeguards required to ensure that the use of facial recognition and similar biometric technologies by law enforcement remains proportionate to the seriousness of the harm being addressed; what steps she plans to take to ensure that the legal framework maintains public confidence in the protection of individual rights, privacy and data security; and whether she intends to publish an impact assessment on the potential implications for civil liberties as part of the consultation process. Answered by Sarah Jones - Minister of State (Home Office) The Government recognises the importance of ensuring the use of facial recognition and similar biometric technologies by law enforcement remains proportionate to the seriousness of the harm being addressed. The consultation launched on 4 December seeks views on whether seriousness of harm should be a factor to decide how and when law enforcement organisations can acquire, retain, and use biometrics, facial recognition, and similar technology. The consultation also asks for views on what factors are relevant to consider when assessing ‘seriousness’ of harm and for which purposes should law enforcement organisations be allowed to use these technologies. We do not intend to publish an impact assessment specifically on the potential implications for civil liberties as part of the consultation process. However, alongside the consultation we have published an equalities impact assessment which makes clear the Government’s commitment to building public trust by highlighting the specific legal frameworks that will be put in place and the statutory bodies for oversight, which will apply to everyone in England and Wales. We recognise that to maintain public confidence we must ensure individual rights, privacy and data security are protected. We believe that the use of biometric and inferential technology should always be demonstrably ‘necessary’ and ‘proportionate’ to the objective being sought. Furthermore, a clear and consistent justification for interference with people’s rights is required. Threshold setting and decision making needs to be attributed to, and shared appropriately between, Parliament, Ministers, independent oversight bodies, and law enforcement organisations. The consultation seeks views on what factors are relevant to consider when assessing interference with privacy so as to ensure the legal framework reflects the views of the public. When using facial recognition technology, police forces must comply with existing legislation including the Human Rights Act 1998, Equality Act 2010, Data Protection Act 2018, Police and Criminal Evidence Act 1984, as well as their own published policies. For live facial recognition, police forces must also follow the College of Policing’s Authorised Professional Practice (APP) on Live Facial Recognition. Oversight of police practice regarding deployment of facial recognition and related technologies is currently provided by regulators and public bodies, including the Biometrics and Surveillance Camera Commissioner, the Information Commissioner, HMICFRS, Equality and Human Rights Commission, and the Independent Office for Police Conduct. The courts system also plays a vital role in ensuring the law is upheld. The Government recognises the importance of independent scrutiny to ensure operational consistency across forces under new framework. That is why the consultation explained the government’s proposal to create a single regulatory and oversight body to oversee law enforcement use of biometrics, facial recognition and similar technologies. The Government envisage giving this body the necessary powers to provide assurance that law enforcement use of biometric technologies is legal, responsible, and necessary. These powers could include setting standards to assure scientific validity, issuing codes of practice and investigating instances where a technology has been misused, hacked or accessed without authorisation. |
|
Police: Biometrics
Asked by: Wendy Morton (Conservative - Aldridge-Brownhills) Wednesday 17th December 2025 Question to the Home Office: To ask the Secretary of State for the Home Department, with reference to the Written Statement entitled Consultation on a new legal framework for law enforcement use of biometrics, facial recognition and similar technologies, published on 4 December 2025, HCWS1129, what assessment her Department has made of the effectiveness of police practice in the deployment of facial recognition and other biometric technologies; and whether she plans to enhance oversight and independent scrutiny of that deployment. Answered by Sarah Jones - Minister of State (Home Office) The Government recognises the importance of ensuring the use of facial recognition and similar biometric technologies by law enforcement remains proportionate to the seriousness of the harm being addressed. The consultation launched on 4 December seeks views on whether seriousness of harm should be a factor to decide how and when law enforcement organisations can acquire, retain, and use biometrics, facial recognition, and similar technology. The consultation also asks for views on what factors are relevant to consider when assessing ‘seriousness’ of harm and for which purposes should law enforcement organisations be allowed to use these technologies. We do not intend to publish an impact assessment specifically on the potential implications for civil liberties as part of the consultation process. However, alongside the consultation we have published an equalities impact assessment which makes clear the Government’s commitment to building public trust by highlighting the specific legal frameworks that will be put in place and the statutory bodies for oversight, which will apply to everyone in England and Wales. We recognise that to maintain public confidence we must ensure individual rights, privacy and data security are protected. We believe that the use of biometric and inferential technology should always be demonstrably ‘necessary’ and ‘proportionate’ to the objective being sought. Furthermore, a clear and consistent justification for interference with people’s rights is required. Threshold setting and decision making needs to be attributed to, and shared appropriately between, Parliament, Ministers, independent oversight bodies, and law enforcement organisations. The consultation seeks views on what factors are relevant to consider when assessing interference with privacy so as to ensure the legal framework reflects the views of the public. When using facial recognition technology, police forces must comply with existing legislation including the Human Rights Act 1998, Equality Act 2010, Data Protection Act 2018, Police and Criminal Evidence Act 1984, as well as their own published policies. For live facial recognition, police forces must also follow the College of Policing’s Authorised Professional Practice (APP) on Live Facial Recognition. Oversight of police practice regarding deployment of facial recognition and related technologies is currently provided by regulators and public bodies, including the Biometrics and Surveillance Camera Commissioner, the Information Commissioner, HMICFRS, Equality and Human Rights Commission, and the Independent Office for Police Conduct. The courts system also plays a vital role in ensuring the law is upheld. The Government recognises the importance of independent scrutiny to ensure operational consistency across forces under new framework. That is why the consultation explained the government’s proposal to create a single regulatory and oversight body to oversee law enforcement use of biometrics, facial recognition and similar technologies. The Government envisage giving this body the necessary powers to provide assurance that law enforcement use of biometric technologies is legal, responsible, and necessary. These powers could include setting standards to assure scientific validity, issuing codes of practice and investigating instances where a technology has been misused, hacked or accessed without authorisation. |
|
Artificial Intelligence: Safety
Asked by: Dawn Butler (Labour - Brent East) Wednesday 17th December 2025 Question to the Department for Science, Innovation & Technology: To ask the Secretary of State for Science, Innovation and Technology, pursuant to the answer of 9 December to Question 96093, what steps the Government is taking to safeguard individuals from non-sexually explicit deepfakes, digital impersonation, and the misuse of personal identity. Answered by Kanishka Narayan - Parliamentary Under Secretary of State (Department for Science, Innovation and Technology) Solutions that help to determine what media is real and what is AI-generated are key to tackling a range of AI risks. The government is undertaking work to explore the potential methods for detecting AI-generated content. The UK’s Online Safety Act has introduced duties on in scope services to tackle digital impersonation where it amounts to an existing offence, including false statements about a candidate's character or conduct ahead of or during an election. The UK also has strong data protection laws to help tackle the misuse of personal identity, through the UK GDPR and the Data Protection Act 2018. These laws require that any personal data processing is lawful, fair and transparent. |
|
Genomics: Information Sharing
Asked by: Gavin Williamson (Conservative - Stone, Great Wyrley and Penkridge) Thursday 11th December 2025 Question to the Department for Science, Innovation & Technology: To ask the Secretary of State for Science, Innovation and Technology, what mechanisms are in place to ensure that UK institutions and companies comply with the GDPR, the Data Protection Act 2018, and other relevant national security requirements when sharing genomic data internationally. Answered by Ian Murray - Minister of State (Department for Science, Innovation and Technology) The UK has one of the most robust data protection regimes in the world, with all organisations required to comply with our legislation to safeguard UK personal data when transferring it overseas. Failure to do so can result in enforcement action. Our data regulator, the Information Commissioner’s Office, has powers to take enforcement action and issue hefty fines. Individuals who consider that their data has been misused can also take legal action. |
|
Media: Dispute Resolution
Asked by: Kevin Hollinrake (Conservative - Thirsk and Malton) Wednesday 3rd December 2025 Question to the Department for Digital, Culture, Media & Sport: To ask the Secretary of State for Culture, Media and Sport, what assessment she has made of the current operational status of the IPSO Arbitration Scheme, including whether arbitrators are presently being appointed to claims, and what evaluation she has made of the implications of any such delays for the public’s ability to access timely and effective redress. Answered by Ian Murray - Minister of State (Department for Science, Innovation and Technology) The UK has a self-regulatory system for the press, which is independent from Government. This is vital to ensure the public has access to accurate and trustworthy information from a range of different sources. The Government therefore does not intervene in or evaluate the work of IPSO. However, under Section 179 of the Data Protection Act every three years the Secretary of State must lay before Parliament a report on the use and effectiveness of alternative dispute resolution procedures, such as arbitration, in cases involving a failure or alleged failure by relevant media organisations to comply with data protection legislation. The most recent report was presented to Parliament in May 2024 and was carried independently of DCMS by David Rossington, as the Independent Reviewer. The report is published on the Gov.uk website: https://assets.publishing.service.gov.uk/media/67d2ded5fb8db2176d5e97d0/Formatted_240312_SECOND_REPORT_UNDER_SECTION_179_OF_THE_DATA_PROTECTION_ACT_v3__FINAL__accessible.pdf. |
|
Children: Data Protection
Asked by: Bell Ribeiro-Addy (Labour - Clapham and Brixton Hill) Tuesday 2nd December 2025 Question to the Department for Education: To ask the Secretary of State for Education, whether she plans to carry out a data privacy impact assessment for the Children’s Wellbeing and Schools Bill. Answered by Georgia Gould - Minister of State (Education) The department is ensuring that measures outlined in the Children’s Wellbeing and Schools Bill align with data protection principles, as set out in the Data Protection Act 2018, UK General Data Protection Regulations (UK GDPR) and the Data (Use and Access) Act 2025.
The department has met its obligation under Article 36(4) of UK GDPR to consult with the Information Commissioner’s Office (ICO) on relevant measures involving the use of personal data, such as the Children Not in School registers.
The department is engaging with the ICO to ensure that any data protection risks identified are properly mitigated and is carrying out data protection impact assessments, where relevant.
|
| Secondary Legislation |
|---|
|
Cheshire and Warrington Combined Authority Order 2026 This Order establishes the Cheshire and Warrington Combined Authority (“the Combined Authority”) and provides for the election of the mayor and confers certain functions of local authorities and other public authorities on the Combined Authority. Parliamentary Status - Text of Legislation - Draft affirmative Laid: Thursday 18th December - In Force: Not stated Found: , the Police and Justice Act 2006 (c. 48) and amended by paragraph 45 of Schedule 19 to the Data Protection Act |
|
Cumbria Combined Authority Order 2026 This Order establishes the Cumbria Combined Authority (“the Combined Authority”), provides for the election of a mayor and confers certain of the functions of local authorities and other public authorities on the Combined Authority. Parliamentary Status - Text of Legislation - Draft affirmative Laid: Thursday 18th December - In Force: Not stated Found: , the Police and Justice Act 2006 (c. 48) and amended by paragraph 45 of Schedule 19 to the Data Protection Act |
|
Data (Use and Access) Act 2025 (Consequential and Other Amendments) Regulations 2025 These Regulations make amendments which are consequential on provisions in the Data (Use and Access) Act 2025 (c. 18) (“the 2025 Act”). They also make related changes in relation to recordable offences. Parliamentary Status - Text of Legislation - Made negative Laid: Wednesday 17th December - In Force: Not stated Found: In accordance with section 182(2) of the Data Protection Act 2018, the Secretary of State has consulted |
| Department Publications - Guidance |
|---|
|
Tuesday 23rd December 2025
Home Office Source Page: Law Enforcement Data Service (LEDS) data protection policy Document: (PDF) Found: statutory obligations relating to the management of personal data in LEDS arising from the Data Protection Act |
|
Tuesday 23rd December 2025
Home Office Source Page: Law Enforcement Data Service (LEDS) data protection policy Document: Law Enforcement Data Service (LEDS) data protection policy (webpage) Found: statutory obligations relating to the management of personal data in LEDS arising from the Data Protection Act |
|
Monday 22nd December 2025
Foreign, Commonwealth & Development Office Source Page: Fiscal incentives for private sector research and development investment in Kenya Document: Volume 5.2: Contract section 2, standard terms and conditions (webpage) Found: “DPA 2018” means the Data Protection Act 2018“Default” means any breach of the obligations of the Supplier |
|
Monday 22nd December 2025
Foreign, Commonwealth & Development Office Source Page: Generating evidence from UK-supported energy pilots in Uganda to inform policy coherence, scale and investment for the energy transition Document: Volume 5.2: Contract section 2, standard terms and conditions (webpage) Found: “DPA 2018” means the Data Protection Act 2018“Default” means any breach of the obligations of the Supplier |
|
Thursday 18th December 2025
Home Office Source Page: Law Enforcement Data Service (LEDS) privacy notice Document: Law Enforcement Data Service (LEDS) privacy notice (webpage) Found: statutory obligations relating to the management of personal data in LEDS arising from the Data Protection Act |
|
Thursday 18th December 2025
Home Office Source Page: Law Enforcement Data Service (LEDS) privacy notice Document: (PDF) Found: statutory obligations relating to the management of personal data in LEDS arising from the Data Protection Act |
|
Tuesday 16th December 2025
Ministry of Housing, Communities and Local Government Source Page: Development Management Fund: privacy notice Document: Development Management Fund: privacy notice (webpage) Found: following is to explain your rights and give you the information you are be entitled to under the Data Protection Act |
|
Tuesday 16th December 2025
Department for Energy Security & Net Zero Source Page: CCUS Humber capture project market survey Document: (webpage) Found: may be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Monday 15th December 2025
Foreign, Commonwealth & Development Office Source Page: Mapping constraints, opportunities and reforms for inclusive job creation in Kenya Document: Volume 5.2: Contract section 2, standard terms and conditions (webpage) Found: “DPA 2018” means the Data Protection Act 2018“Default” means any breach of the obligations of the Supplier |
|
Monday 15th December 2025
Department for Energy Security & Net Zero Source Page: DESNZ Public Attitudes Tracker: technical report, Winter 2024 to Summer 2025 Document: (PDF) Found: will be processed in accordance with the MRS Code of Conduct, and in compliance with the Data Protection Act |
|
Friday 12th December 2025
Foreign, Commonwealth & Development Office Source Page: Evaluating UK-Southern Africa higher education research partnerships Document: Volume 5.2: Contract section 2, standard terms and conditions (webpage) Found: “DPA 2018” means the Data Protection Act 2018“Default” means any breach of the obligations of the Supplier |
|
Tuesday 9th December 2025
Ministry of Housing, Communities and Local Government Source Page: Community-led Housing Research: privacy notice Document: Community-led Housing Research: privacy notice (webpage) Found: process data only within the limits of UK data protection laws, including the UK GDPR and the Data Protection Act |
|
Thursday 4th December 2025
Foreign, Commonwealth & Development Office Source Page: Mental health support for British nationals in Uzbekistan Document: Mental health support for British nationals in Uzbekistan (webpage) Found: holds and uses data for purposes notified to the Information Commissioner under GDPR and the Data Protection Act |
|
Monday 1st December 2025
Home Office Source Page: Victim information requests: code of practice Document: (PDF) Found: State by order to make provisions which are equivalent to those in Part 1 of the CPIA 1996 Data Protection Act |
|
Monday 1st December 2025
Home Office Source Page: Victim information requests: code of practice Document: (PDF) Found: State by order to make provisions which are equivalent to those in Part 1 of the CPIA 1996 Data Protection Act |
|
Monday 1st December 2025
Department for Business and Trade Source Page: Music Export Growth Scheme (MEGS) privacy notice Document: Music Export Growth Scheme (MEGS) privacy notice (webpage) Found: with data protection law, including the UK General Data Protection Regulation (GDPR) and the Data Protection Act |
|
Monday 1st December 2025
Cabinet Office Source Page: Model Grant Funding Agreement (MGFA) Document: (PDF) Found: commissions or agencies from time to time carrying out functions on its behalf; DPA 2018 means the Data Protection Act |
| Department Publications - Policy paper |
|---|
|
Friday 19th December 2025
Ministry of Justice Source Page: Responding to human rights judgments: 2024 to 2025 Document: (PDF) Found: General measures The Data Protection Act 2018 (DPA), which came into force in May 2018, requires periodic |
|
Friday 19th December 2025
Ministry of Justice Source Page: Responding to human rights judgments: 2024 to 2025 Document: (PDF) Found: General measures The Data Protection Act 2018 (DPA), which came into force in May 2018, requires periodic |
|
Thursday 4th December 2025
Home Office Source Page: Crime and Policing Bill 2025: equality impact assessments Document: (PDF) Found: authority, must comply with the ECHR (under section 6 of the Human Rights Act 1998) as well as the Data Protection Act |
| Department Publications - Transparency |
|---|
|
Thursday 18th December 2025
Cabinet Office Source Page: Civil Superannuation annual account 2024 to 2025 Document: (PDF) Found: National Cyber Security Centre (NCSC) guidance, General Data Protection Regulations (GDPR), the Data Protection Act |
|
Wednesday 10th December 2025
Home Office Source Page: Forensic Information Databases annual report 2024 to 2025 Document: (PDF) Found: biometric information is sensitive personal information and is handled in accordance with the Data Protection Act |
|
Thursday 4th December 2025
Department for Work and Pensions Source Page: Child maintenance: client funds account 2024 to 2025 Document: (PDF) Found: compliance with its duties is achieved under the UK General Data Protection Regulation) and the Data Protection Act |
|
Thursday 4th December 2025
Department for Work and Pensions Source Page: Child maintenance: client funds account 2024 to 2025 Document: (PDF) Found: compliance with its duties is achieved under the UK General Data Protection Regulation) and the Data Protection Act |
|
Thursday 4th December 2025
Department for Work and Pensions Source Page: Child maintenance: client funds account 2024 to 2025 Document: (PDF) Found: Child Maintenance Schemes is achieved under the UK General Data Protection Regulation and the Data Protection Act |
|
Thursday 4th December 2025
Department for Work and Pensions Source Page: Child maintenance: client funds account 2024 to 2025 Document: (PDF) Found: compliance with its duties is achieved under the UK General Data Protection Regulation and the Data Protection Act |
|
Wednesday 3rd December 2025
Northern Ireland Office Source Page: Northern Ireland Office Annual Report and Accounts 2024 to 2025 Document: (PDF) Found: costs recovered or received for work done for other departments; • Freedom of information and data protection act |
|
Tuesday 2nd December 2025
Foreign, Commonwealth & Development Office Source Page: Wilton Park Executive Agency framework document 2025 Document: (PDF) Found: information is received by either party under the Freedom of Information Act 2000, or the Data Protection Act |
| Department Publications - Consultations |
|---|
|
Thursday 18th December 2025
Home Office Source Page: Licensing of contractors who carry out security services and in-house CCTV operators Document: (webpage) Found: to information regimes (these are primarily the Freedom of Information Act 2000 (FOIA), the Data Protection Act |
|
Wednesday 17th December 2025
Ministry of Housing, Communities and Local Government Source Page: Single construction regulator prospectus Document: (PDF) Found: Section 8(d) of the Data Protection Act 2018 states that this will include processing of personal data |
|
Tuesday 16th December 2025
Ministry of Housing, Communities and Local Government Source Page: National Planning Policy Framework: proposed reforms and other changes to the planning system Document: (PDF) Found: Section 8(d) of the Data Protection Act 2018 states that this will include processing of personal data |
|
Tuesday 16th December 2025
Home Office Source Page: Licensing for knife sales Document: (PDF) Found: The Home Office will process your personal data in accordance with the Data Protection Act and, in the |
|
Tuesday 16th December 2025
Department for Energy Security & Net Zero Source Page: Proposed refinements for Allocation Round 8 and future rounds Document: (PDF) Found: be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Tuesday 16th December 2025
Department for Energy Security & Net Zero Source Page: Changes to energy infrastructure planning application fees Document: (PDF) Found: be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Wednesday 10th December 2025
Department for Energy Security & Net Zero Source Page: Smart Secure Electricity Systems (SSES) Programme: draft load control licence regulations and conditions Document: (PDF) Found: be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Wednesday 10th December 2025
Department for Energy Security & Net Zero Source Page: Financial support for nuclear lifetime extensions Document: (PDF) Found: be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Tuesday 9th December 2025
Department for Energy Security & Net Zero Source Page: Extended CE marking recognition for Ecodesign regulations Document: (PDF) Found: be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Monday 8th December 2025
Department for Energy Security & Net Zero Source Page: Warm Home Discount (WHD): cost recovery Document: (PDF) Found: be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Monday 8th December 2025
Department for Work and Pensions Source Page: Public Authorities (Fraud, Error and Recovery) Act DWP Codes of Practice: Verifying Eligibility in the Welfare System, Obtaining Information and Recovering Debt Document: (PDF) Found: be processed under the general processing regime set out in the UK GDPR and Part 2 of the Data Protection Act |
|
Thursday 4th December 2025
Home Office Source Page: Legal framework for using facial recognition in law enforcement Document: (PDF) Found: ‘Biometric data’ is defined in the Data Protection Act 2018 as “personal data resulting f rom specific |
|
Tuesday 2nd December 2025
Department for Energy Security & Net Zero Source Page: Capacity Market: proposals to integrate low carbon technologies and enhance delivery assurance ahead of Prequalification 2026 Document: (PDF) Found: be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Tuesday 2nd December 2025
Department for Energy Security & Net Zero Source Page: Common biomass sustainability framework Document: (PDF) Found: be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Monday 1st December 2025
Department for Energy Security & Net Zero Source Page: Smart Secure Electricity Systems (SSES) Programme: first phase energy smart appliances regulations Document: (PDF) Found: Existing regulation on data privacy will continue to apply, in particular the Data Protection Act 2018 |
|
Monday 1st December 2025
Department for Energy Security & Net Zero Source Page: Smart Secure Electricity Systems (SSES) Programme: first phase energy smart appliances regulations Document: (PDF) Found: be disclosed in accordance with UK legislation (the Freedom of Information Act 2000, the Data Protection Act |
| Department Publications - Statistics |
|---|
|
Wednesday 10th December 2025
Department for Digital, Culture, Media & Sport Source Page: Community Life Survey 2024/25 annual publication Document: (PDF) Found: Data Protection All information will be processed in compliance with the Data Protection Act 2018 and |
| Department Publications - Policy and Engagement |
|---|
|
Thursday 4th December 2025
Department for Transport Source Page: Developing the automated vehicles regulatory framework Document: (PDF) Found: For example, the Data Protection Act 2018 sets a maximum penalty limit of either £17.5 million or 4% |
| Non-Departmental Publications - Transparency |
|---|
|
Dec. 22 2025
Local Government and Social Care Ombudsman Source Page: Local Government and Social Care Ombudsman annual report and accounts 2024 to 2025 Document: (PDF) Transparency Found: accountable to the public, it is important we respond to formal requests for information (Data Protection Act |
|
Dec. 18 2025
Gangmasters and Labour Abuse Authority Source Page: Gangmasters and Labour Abuse Authority: annual report and accounts 2024 to 2025 Document: (PDF) Transparency Found: • Non-Compliance with Data Protection Act and General Data Protection Regulation – GLAA is still |
|
Dec. 18 2025
Gangmasters and Labour Abuse Authority Source Page: Gangmasters and Labour Abuse Authority: annual report and accounts 2024 to 2025 Document: (PDF) Transparency Found: • Non-Compliance with Data Protection Act and General Data Protection Regulation – GLAA is still |
|
Dec. 18 2025
Maritime and Coastguard Agency Source Page: MCA annual report and accounts 2024 to 2025 Document: (PDF) Transparency Found: protection requirements contained within the UK General Data Protection Regulation and the Data Protection Act |
|
Dec. 18 2025
Civil Nuclear Constabulary Source Page: Learner Safeguarding Procedure Document: (PDF) Transparency Found: This will ensure compliance with the law in terms of its duties under the Data Protection Act 1998, |
|
Dec. 11 2025
Cafcass Source Page: Cafcass annual report and accounts 2024 to 2025 Document: (PDF) Transparency Found: can request this information through the Subject Access Request (SAR) process set out in the Data Protection Act |
|
Dec. 10 2025
Sellafield Ltd Source Page: Sellafield Ltd Data Protection Complaints Policy Document: (PDF) Transparency Found: special category data, we rely on substantial public interest, and our condition under the Data Protection Act |
|
Dec. 03 2025
Legal Aid Agency Source Page: Director of Legal Aid Casework annual report 2024 to 2025 Document: (PDF) Transparency Found: submit requests for information held by the LAA under the Freedom of Information Act 2000 and Data Protection Act |
|
Dec. 03 2025
Legal Aid Agency Source Page: Director of Legal Aid Casework annual report 2024 to 2025 Document: (PDF) Transparency Found: submit requests for information held by the LAA under the Freedom of Information Act 2000 and Data Protection Act |
|
Dec. 02 2025
High Speed Two (HS2) Limited Source Page: Independent HS2 Commissioner: personal information charter Document: Independent HS2 Commissioner: personal information charter (webpage) Transparency Found: a data controller, comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act |
|
Dec. 02 2025
Wilton Park Source Page: Wilton Park Executive Agency framework document 2025 Document: (PDF) Transparency Found: information is received by either party under the Freedom of Information Act 2000, or the Data Protection Act |
| Non-Departmental Publications - Statistics |
|---|
|
Dec. 22 2025
Low Pay Commission Source Page: Low Pay Commission call for research for 2026 and beyond Document: (webpage) Statistics Found: “DPA 2018” the Data Protection Act 2018. |
|
Dec. 22 2025
Low Pay Commission Source Page: Low Pay Commission call for research for 2026 and beyond Document: (webpage) Statistics Found: “DPA 2018” the Data Protection Act 2018. |
|
Dec. 22 2025
Low Pay Commission Source Page: Low Pay Commission call for research for 2026 and beyond Document: (webpage) Statistics Found: “DPA 2018” the Data Protection Act 2018. |
|
Dec. 22 2025
Low Pay Commission Source Page: Low Pay Commission call for research for 2026 and beyond Document: (webpage) Statistics Found: GDPR, and any applicable national implementing Laws as amended from time to time; (ii) the Data Protection Act |
|
Dec. 22 2025
Low Pay Commission Source Page: Low Pay Commission call for research for 2026 and beyond Document: (webpage) Statistics Found: “DPA 2018” the Data Protection Act 2018. |
|
Dec. 22 2025
Low Pay Commission Source Page: Low Pay Commission call for research for 2026 and beyond Document: (webpage) Statistics Found: “DPA 2018” the Data Protection Act 2018. |
|
Dec. 22 2025
Low Pay Commission Source Page: Low Pay Commission call for research for 2026 and beyond Document: (webpage) Statistics Found: “DPA 2018” the Data Protection Act 2018. |
|
Dec. 22 2025
Low Pay Commission Source Page: Low Pay Commission call for research for 2026 and beyond Document: (webpage) Statistics Found: “DPA 2018” the Data Protection Act 2018. |
| Non-Departmental Publications - Open consultation |
|---|
|
Dec. 18 2025
Security Industry Authority Source Page: Licensing of contractors who carry out security services and in-house CCTV operators Document: (webpage) Open consultation Found: to information regimes (these are primarily the Freedom of Information Act 2000 (FOIA), the Data Protection Act |
|
Dec. 09 2025
Regulator of Social Housing Source Page: Consultation on changes to the TI&A Standard Document: (PDF) Open consultation Found: Regulations 2004 (EIR), however any disclosure will be in line with the requirements of the Data Protection Act |
|
Dec. 09 2025
Regulator of Social Housing Source Page: Consultation on changes to the TI&A Standard Document: (PDF) Open consultation Found: to how those classes of information are defined) in the Freedom of Information Act 2000 and Data Protection Act |
|
Dec. 09 2025
Regulator of Social Housing Source Page: Consultation on changes to the TI&A Standard Document: (PDF) Open consultation Found: to how those classes of information are defined) in the Freedom of Information Act 2000 and Data Protection Act |
|
Dec. 08 2025
Nuclear Decommissioning Authority Source Page: Nuclear Decommissioning Authority: Draft Business Plan 2026 to 2029 for consultation Document: (PDF) Open consultation Found: accordance with UK information access legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Dec. 08 2025
Nuclear Decommissioning Authority Source Page: Nuclear Decommissioning Authority: Draft Business Plan 2026 to 2029 for consultation Document: Nuclear Decommissioning Authority: Draft Business Plan 2026 to 2029 for consultation (webpage) Open consultation Found: accordance with UK information access legislation (the Freedom of Information Act 2000, the Data Protection Act |
|
Dec. 08 2025
Public Sector Fraud Authority Source Page: Consultation on PSFA Civil Penalty Powers: Code of Practice Document: (PDF) Open consultation Found: Management 18.1 How data will be processed ● The PSFA complies with the Data Protection Act |
| Non-Departmental Publications - Guidance and Regulation |
|---|
|
Dec. 18 2025
Office of Financial Sanctions Implementation Source Page: OFSI General Licence INT/2025/8202932 Document: (PDF) Guidance and Regulation Found: to third parties only in compliance with the UK General Data Protection Regulation and the Data Protection Act |
|
Dec. 17 2025
Office of Financial Sanctions Implementation Source Page: OFSI General Licence INT/2025/7323088 Document: (PDF) Guidance and Regulation Found: to third parties only in compliance with the UK General Data Protection Regulation and the Data Protection Act |
|
Dec. 16 2025
Defence and Security Accelerator Source Page: Competition: Defence Innovation Loans FY25/26 Cycle 6 Document: (PDF) Guidance and Regulation Found: We particularly draw to your attention the Bribery Act 2010, the Data Protection Act 2018, the Fraud |
|
Dec. 15 2025
Homes England Source Page: Grant Agreement examples for the Social and Affordable Homes Programme 2026 to 2036 Document: (PDF) Guidance and Regulation Found: ascribed to it in the Data Protection Legislation; Data Protection Legislation means: (a) Data Protection Act |
|
Dec. 15 2025
Homes England Source Page: Grant Agreement examples for the Social and Affordable Homes Programme 2026 to 2036 Document: (PDF) Guidance and Regulation Found: ascribed to it in the Data Protection Legislation; Data Protection Legislation means: (a) Data Protection Act |
|
Dec. 12 2025
Office of Financial Sanctions Implementation Source Page: OFSI General Licence INT/2022/1839676 Document: (PDF) Guidance and Regulation Found: to third parties only in compliance with the UK General Data Protection Regulation and the Data Protection Act |
|
Dec. 12 2025
Ofsted Source Page: Applying to work some of the time on non-domestic premises (EYA) Document: (webpage) Guidance and Regulation Found: information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act |
|
Dec. 09 2025
Serious Fraud Office Source Page: Recruitment privacy notice Document: Recruitment privacy notice (webpage) Guidance and Regulation Found: which relates to our obligations in employment law, paired with Schedule 1 part 1(1) of the Data Protection Act |
|
Dec. 09 2025
Defence and Security Accelerator Source Page: Competition: Defence Innovation Loans FY 25/26 Cycle 6 Document: (PDF) Guidance and Regulation Found: We particularly draw to your attention the Bribery Act 2010, the Data Protection Act 2018, the Fraud |
|
Dec. 03 2025
HM Prison Service Source Page: Brinsford Prison: families and significant others strategy Document: HMPPS Child Safeguarding Policy Framework (PDF) Guidance and Regulation Found: that they are compliant with the General Data Protection Regulations (GDPR) and accompanying Data Protection Act |
|
Dec. 03 2025
Defence and Security Accelerator Source Page: Competition: Defence and Security Accelerator (DASA) Open Call for Innovation - CY2025 - Cycle 4 Document: (PDF) Guidance and Regulation Found: In this clause, "data protection legislation" has the same meaning as in the Data Protection Act 2018 |
|
Dec. 02 2025
Defence and Security Accelerator Source Page: Autonomous Sensor Management and Sensor Counter Deception Phase 2 Document: (PDF) Guidance and Regulation Found: In this clause, "data protection legislation" has the same meaning as in the Data Protection Act 2018 |
| Non-Departmental Publications - Policy and Engagement |
|---|
|
Dec. 18 2025
Medicines and Healthcare products Regulatory Agency Source Page: Regulation of AI in Healthcare Document: (PDF) Policy and Engagement Found: the purpose of ‘Equality of Opportunity or Treatment’ [UK GDPR Article 9(2)(a and g); and Data Protection Act |
|
Dec. 04 2025
Centre for Connected and Autonomous Vehicles Source Page: Developing the automated vehicles regulatory framework Document: (PDF) Policy and Engagement Found: For example, the Data Protection Act 2018 sets a maximum penalty limit of either £17.5 million or 4% |
| Non-Departmental Publications - Policy paper |
|---|
|
Dec. 11 2025
NHS England Source Page: Joint DHSC and NHS England evidence for the DDRB: pay round 2026 to 2027 Document: (ODS) Policy paper Found: Data is obscured where the annual headcount for a staff group is 500 or less, in line with The Data Protection Act |
|
Dec. 11 2025
NHS England Source Page: Joint DHSC and NHS England evidence for the NHSPRB: pay round 2026 to 2027 Document: (ODS) Policy paper Found: Data is obscured where the annual headcount for a staff group is 500 or less, in line with The Data Protection Act |
| Arms Length Bodies Publications |
|---|
|
Dec. 22 2025
NHS England Source Page: General practice vaccination and immunisation services: standards and core contractual requirements Document: General practice vaccination and immunisation services: standards and core contractual requirements (webpage) Guidance Found: vaccinations and immunisations, where “processing” has the same meaning as in section 3(4) of the Data Protection Act |
| Draft Secondary Legislation |
|---|
|
The Cumbria Combined Authority Order 2026 This Order establishes the Cumbria Combined Authority (“the Combined Authority”), provides for the election of a mayor and confers certain of the functions of local authorities and other public authorities on the Combined Authority. Ministry of Housing, Communities and Local Government Found: , the Police and Justice Act 2006 (c. 48) and amended by paragraph 45 of Schedule 19 to the Data Protection Act |
|
The Cheshire and Warrington Combined Authority Order 2026 This Order establishes the Cheshire and Warrington Combined Authority (“the Combined Authority”) and provides for the election of the mayor and confers certain functions of local authorities and other public authorities on the Combined Authority. Ministry of Housing, Communities and Local Government Found: , the Police and Justice Act 2006 (c. 48) and amended by paragraph 45 of Schedule 19 to the Data Protection Act |
| Welsh Government Publications |
|---|
|
Monday 22nd December 2025
Source Page: Freedom of Information (FOI): request from the Welsh Government Document: Requesting information from the Welsh Government (webpage) Found: The Data Protection Act 2018, Freedom of Information Act 2000 and the Environmental Information Regulations |
|
Wednesday 17th December 2025
Source Page: FOI release 26284: Llansteffan North Green car park Document: Llansteffan North Green car park (PDF) Found: ‘Personal data’ is defined in sections 3(2) and (3) of the Data Protection Act 2018 (‘the DPA 2018’) |
|
Wednesday 17th December 2025
Source Page: Sustainable Farming Scheme (2026): universal layer: rules booklet Document: Sustainable Farming Scheme (2026): universal layer: rules booklet (PDF) Found: used by the Welsh Government in accordance with its obligations and duties under the: • The Data Protection Act |
|
Tuesday 16th December 2025
Source Page: FOI release 26391: Cafcass complaints Document: Cafcass complaints (PDF) Found: ‘Personal data’ is defined in sections 3(2) and (3) of the Data Protection Act 2018 (‘the DPA 2018’) |
|
Tuesday 16th December 2025
Source Page: Significant infrastructure projects (SIP): notification of proposed application Document: Significant infrastructure projects (SIP): notification of proposed application (PDF) Found: supplied by you in this form, is in accordance with the terms of our registration under the Data Protection Act |
|
Tuesday 16th December 2025
Source Page: Attendance of pupils in maintained schools: 2 September to 5 December 2025 Document: Attendance of pupils in maintained schools: 2 September to 5 December 2025 (webpage) Found: personal data underlying these statistics are processed in accordance with the requirements of the Data Protection Act |
|
Tuesday 16th December 2025
Source Page: Remote working (National Survey for Wales): April 2024 to March 2025 Document: Remote working (National Survey for Wales): April 2024 to March 2025 (webpage) Found: personal data underlying these statistics is processed in accordance with the requirements of the Data Protection Act |
| Welsh Senedd Debates |
|---|
|
Group 11: Office of Environmental Governance: disclosure of information and confidentiality (Amendments 16, 17, 18)
None speech (None words) Thursday 11th December 2025 - None |
|
2. Development of Tourism and Regulation of Visitor Accommodation (Wales) Bill: Evidence Session 1
None speech (None words) Wednesday 5th November 2025 - None |
| Welsh Senedd Speeches |
|---|
|
No Department |
|
No Department |