I beg to move, That the Bill be now read a Second time.
In my statement to the House last Thursday, I made clear the urgent need for narrow and limited legislation on communications data and interception. There is no greater duty for a Government than the protection and security of their citizens when we face the very real and serious prospect that the police, law enforcement agencies and the security and intelligence agencies will lose vital capabilities that they need in order to do their jobs. Communications data—the “who, where, when and how” of a communication, but not its content—and interception, which provides the legal power to acquire the content of a communication, are crucial to fighting crime, protecting children, and combating terrorism.
Communications data can be used to piece together the activities of suspects, victims and vulnerable people. They can prove or disprove alibis. They can identify links between potential criminals. They can tie suspects and victims to a crime scene, and they can help to find a vulnerable person who is at risk of imminent harm. Interception—which can take place only in limited circumstances, and with a warrant authorised by a Secretary of State—can prove vital to the investigation of the activities of suspected terrorists and serious criminals. Without those capabilities, we run the risk that murderers will not be caught, terrorist plots will go undetected, drug traffickers will go unchallenged, child abusers will not be stopped, and slave drivers will continue their appalling trade in human beings.
Will the Home Secretary put some flesh on the bones of what she has said, particularly for the benefit of Northern Ireland, which gives reality to this? I understand that in the past three years more than 300 people have been convicted of serious and organised crimes. Can the Home Secretary confirm that many of them were brought to justice as a result of this very type of intelligence activity?
The hon. Gentleman is absolutely right. The use of exactly this sort of data is important not just to the investigation of crime, but to the bringing of criminals to prosecution. Work done by the Crown Prosecution Service has shown that communications data have been used in 95% of serious and organised crime cases, and that that has been important not just to the investigation but to the prosecution. These are important data: they are vital to the fight against crime and the fight against terrorists.
However, as I explained last week, we currently face two immediate problems. First, the recent judgment by the European Court of Justice has called into question the legal basis on which we require communications service providers in the United Kingdom to retain communications data. Secondly, we face the increasingly pressing need to put beyond doubt the legal obligation for communications service providers who supply services to people in the UK to comply with our laws on interception, irrespective of where they are based.
The Home Secretary has, I am sure, been advised that the Bill will be within the continuing scope of European Union law, and that the charter of fundamental rights and the general principles of European law will continue to apply. No doubt she will also understand that the Bill is itself subject to future challenge by the European Court of Justice. I draw attention to my manuscript amendment, which I hope will be selected, and which would remove any doubt about the fact that the Bill, if enacted, will have full effect notwithstanding the European Communities Act 1972
I note what my hon. Friend has said, but, having examined the judgment of the European Court of Justice, we believe that UK legislation already complies with many parts of it, and we have specifically ensured that other issues that were not addressed in the judgment are addressed in the Bill.
The Home Secretary says that she has brought the Bill into line with the EU ruling. However, the ruling made it very clear that blanket retention of data was not permissible, and that retention of data must be specific to a threat regarding a group of people or a particular time. It is precisely that blanket retention that has been ruled illegal.
One of the issues that emerged from the ruling of the European Court of Justice was the scope of the data retention directive. The Court believed that it was too broad, and that it was necessary to be more specific about the purposes for which data could be retained. Our legislation was already specific, but we have looked at it again, and we are very clear about its focus in terms of how it will be operated and in terms of its scope. We are addressing the very issue that was raised by the Court.
Both today and last week, the Home Secretary has drawn a distinction between the data and the content. May I suggest to her that reliance on that distinction may not be legally valid in the future? For a start, she has already said that the data are often used to establish or disprove an alibi, and thus to prove someone’s whereabouts. They can be used to establish whether someone banks with a particular bank, or whether someone uses a particular doctor or dentist. I merely suggest to the Home Secretary that, in the world of Facebook and other even more modern ways of messaging, a reliance on the difference between data and content will not stick.
The hon. Gentleman is right in the sense that as technology changes and people use new methods of communication, we need to ensure that our agencies’ capabilities and powers, and the legal framework within which they operate those capabilities and powers, are indeed appropriate in relation to the technology as it develops. For that reason I considered introducing a further communications data Bill in this Parliament, but that is not to be, and it is definitely not what today is about. Today is simply about retaining the status quo.
As for the hon. Gentleman’s main point, the review of the capabilities and powers that are needed against the background of the threat that we face and the correct legislative framework will be important in that regard. It will, I hope, look ahead and ask what legislation the House needs to pass to ensure that we can deal with the environment in which we find ourselves.
Let me take the Home Secretary up on that point. Will she tell us now, at this early stage in the debate, whether she will accept new clause 1, which has been tabled by the shadow Home Secretary?
Obviously we shall come to that in Committee, but I am happy to say to the House now that I recognise the shadow Home Secretary’s desire to put the review in statute so that there is no question but that it will go ahead. I want to be clear about what the review will cover, and how we can ensure that it does the job that I think we all want it to do in looking at capabilities and powers and setting the right regulatory framework, and does it in a way—[Interruption.] The hon. Gentleman says “Just say yes”, but I do not say yes to an amendment if I do not think that it will deliver technically what everyone wants. [Interruption.] The hon. Gentleman says from a sedentary position, “Oh, come on,” but he was one of the Members who earlier stood up and talked about the importance of proper parliamentary process, so I am sure that he would not want to see amendments added to Bills if they did not deliver what everybody wanted them to deliver.
Given the breakneck pace at which MPs have been asked to come here and make decisions on the Bill, it is extraordinary that the Home Secretary cannot stand at the Dispatch Box and say yes or no about an amendment that has been tabled. What is the answer: yes or no? She wants MPs to make decisions today, but she cannot make decisions on amendments.
We have just had an hour-and-a-half debate in which Members have been talking about the importance of parliamentary process. We have a parliamentary process called Committee stage at which amendments to the Bill will be properly considered, and that debate will take place then. I have indicated to the House that I understand the desire of some Members to ensure that the review of the capability and powers that are needed and the regulatory framework is on the statute book to ensure that that does, indeed, take place. David Anderson, the reviewer of counter-terrorism legislation, has indicated that he will lead that review and there is widespread support for that given the excellent job he does in his current role. However, I want to make sure that, in looking to ensure we undertake that review, the Bill is drafted in a way that delivers what we all want to be delivered. I would have thought that that was entirely reasonable. That debate will take place at the Committee stage, when the hon. Gentleman will be free to wax lyrical about the nature of the amendment.
May I bring the Home Secretary back to what she was talking about before, which is what is loosely described as blanket retention? It is not possible for the police to identify, before a crime has been committed, the range of telephone calls made and received about which it would be helpful for them to have communications data in order to pursue that crime. Therefore, the retention of data for a period is the only way the system can work.
My right hon. Friend is absolutely right. People often argue, “Actually, all you need to do is retain data from the point when you’ve identified a suspect or that a crime has taken place,” but when somebody has been murdered, for example, it may be necessary to go back and identify calls between the victim and a number of people. That is why it is important to be able to retain data from the past, but that is for a limited period. Previously, under the regulations that were agreed by this House, 12 months was the set period for retention. One issue that the European Court of Justice raised was that there should not just be one period of retention for all types of data. We are addressing that by making it a maximum period of retention, so it would be possible in any notice to a communications service provider to say that a particular type of data is required to be retained for a period of less than 12 months. We are, therefore, introducing the flexibility that the ECJ required.
Will my right hon. Friend confirm that the same point she has been discussing about the retention of data in criminal and terrorist investigations will be equally valid in the police’s pursuit of child abusers and paedophiles? In a month when this issue has been so important to so many of our constituents, will she confirm that the legislation will be a critical tool in the police’s battle against child abusers and give us an idea of the implications of our not passing it?
My hon. Friend is absolutely right and the use of communications data is often absolutely vital in tracking and identifying that group of criminals. Without this use of communications data we would not be able to do that, and I fear that child abusers would go free as a result. The director general of the National Crime Agency has already made it clear that capability is being lost in this area. From memory, I think that almost 50% of communications data used in child abuse cases are more than six months old, hence the need to be able to retain data for up to 12 months.
Judging by some of the questions asked, there is a lack of understanding as some Members seem to think that in some way the use of communications data is new. Will the Home Secretary confirm that as far as the Crown Prosecution Service, and indeed its predecessors, are concerned, such use has been an absolute staple of bringing prosecutions ever since telephones came into existence? In fact there is no difference between the nature of the communications data acquired today and that which was acquired in the past in terms of showing who contacted whom.
I thank my right hon. and learned Friend for his intervention, and what he says is absolutely right. He hits the nail right on the head. I know, Mr Speaker, that it is not normally the case that Ministers at the Dispatch Box refer to legal advice that is given to them, but may I say how much I valued the legal advice my right hon. and learned Friend gave when he was our excellent Attorney-General?
Will the Home Secretary give way?
The key issue is that the Home Secretary says this Bill does not extend powers beyond existing legislation, but I understand there is some doubt whether the Bill impacts differently from the current legislation on web-based e-mails. With regard to further scrutiny of these measures, as we have only limited time to discuss the Bill now, if we pass it and it subsequently becomes apparent that there are doubts whether it extends the powers of Government, what is the Home Secretary’s position? How can she come back to this House to get matters reassessed in that situation? That is a real concern for my constituents. If it is subsequently proved that powers are extended—despite her current assurances, which I accept—there must be some mechanism for dealing with that.
There is no change to the definitions that are already in existence in terms of the communications data that it is possible to access. That is why I say the Bill is about just replacing the situation we have at present. On the hon. Gentleman’s second point, I note that the Opposition have tabled an amendment suggesting that there should be a six-monthly review by the appropriate commissioner of the operation of this Bill. We are willing to accept that amendment, so that a process is in place that will reassure people that the Bill does exactly what the Government are saying: it merely replaces the powers already in existence.
Yes. The commissioner currently reports annually on these matters, and the Opposition proposal, as I understand it, is that he would report on a six-monthly basis. He would, therefore, not just be looking at the situation, but reporting on what was happening. Were he to find that there was any extension of powers, that would be made clear to people. However, I remain of the opinion, because this is what we intend, that the Bill is purely about enabling the powers that we have today to be continued in future.
There is debate about whether the powers are new, and I personally do not think they are, but will the Home Secretary give the assurance I tried to get from her yesterday, when perhaps I was not clear enough in asking for it? If she were asked to sign a warrant—these are mostly warranted powers—which involved a power that it was obvious to her would not have been available other than from this Bill, would she refuse to sign it on the basis that a new power had inadvertently been created?
My hon. Friend says most of these are warranted powers: of course the lawful intercept section of the Bill is in relation to warranted powers, but communications data are not subject to warrants signed by a Secretary of State. [Interruption.] I am about to answer the question. I am not quite sure who said that. [Interruption.] Oh, the hon. Member for Perth and North Perthshire (Pete Wishart); I might have guessed.
Certainly, I would expect only warrants that would fall under current lawful intercept powers to come to me. On the issue of lawful intercept, it has been the contention of this Government—and, I believe, the previous Government when they passed the Regulation of Investigatory Powers Act 2000—that that had extraterritorial application. That has been legally questioned and we have continued to assert that that is the power that currently exists. The Bill puts that beyond doubt, by putting it clearly into primary legislation, so nobody can be in any doubt that the power that we have always said existed does in fact exist. That is the entire point, and I might add that I think a number of people may take comfort from the fact that my hon. Friend the Member for Cambridge (Dr Huppert) does not consider there to be an extension of powers in this Bill.
I raised this issue when the Home Secretary made her statement last week, but she is aware that some of the service providers do not accept the extraterritorial application of RIPA. She is now asserting that RIPA does have extraterritorial effect under this Bill. If some of those communication service providers maintain their current position—that it does not—what powers does she have to enforce the extraterritorial nature of the Bill and what sanctions will be available to ensure general compliance with its extraterritorial effect?
The point about putting this beyond doubt in the legislation is obviously that it strengthens the ability to enforce in this area. The enforcement capabilities remain as they were previously—taking out an injunction against the company concerned, with the sanctions that that might entail. The position is not changing; what is changing is simply being absolutely without doubt that the extraterritoriality is there, because it is now in the Bill, rather than it being asserted by Government as having been the intention of the previous legislation.
I will now attempt to make some progress. I have made the point that urgent action is needed—
Before she moves on, will the Home Secretary give way?
What this Government are doing is putting into legislation the powers that we believe it is important for us to have so that we can protect the British public. I know that my right hon. Friend has some difficulties with some aspects of what the Government are doing. I think it is right that we continue with the powers that we have had to enable us to protect the public, keep people safe and ensure that we catch criminals, terrorists and paedophiles.
Action is needed to ensure that we maintain the capabilities that protect us from those who would do us harm. The Bill provides the legal clarity needed to ensure that the use of those capabilities can be maintained by doing two things: first, by providing the legal basis for us to oblige domestic companies to continue to retain communications data; and secondly, by putting beyond doubt the application of the law of interception to all companies that provide communication services to people in the UK, regardless of where they are based.
When I made my statement to the House last Thursday, I received considerable support from Members on both sides of the House. I am extremely grateful for that support and would like to pay tribute to everyone who has shown willingness to work together on an issue as important as the protection of the public. In doing so, let me also thank the right hon. Member for Leicester East (Keith Vaz), the Chairman of the Select Committee on Home Affairs, which I gave evidence to yesterday and which wrote last night to say that it supported the legislation. He indicated that he was sure that a successor Committee would want to look carefully at any legislation that was brought forward, but I am grateful to the Committee for its support on this particular matter.
That was, of course, on a majority vote, and I was reminded that in the last Parliament the Home Affairs Committee endorsed 42 days’ pre-charge detention, which obviously I voted against. My right hon. Friend the Member for Leicester East (Keith Vaz) was the Chair at the time and, if I may say so, he is a very good chap indeed, but he knows where the wind blows.
That sounds to me like something that is best left between the hon. Gentleman and the Chairman of the Home Affairs Committee. Prudence suggests that I should move on rather than respond to that.
We have just had a debate on the business motion, in which my hon. Friend the Minister for Security and Immigration set out the reason for the timing of this legislation, so I will not go into that in detail, but I will talk about the provisions of the Bill. The Bill is short and narrowly focused and provides a limited response to a set of specific challenges. Clause 1 provides the clear legal basis for us to oblige domestic companies to retain certain types of communications data. Currently, those communications data are retained by communication service providers under the data retention regulations passed by Parliament in 2009, which implemented the EU data retention directive in the UK.
Although we are confident that those regulations remain in force, following the ECJ judgment, we must put beyond doubt the need for CSPs to continue to retain communications data, as they have been doing until now. If we do not do so, we run the risk of losing access to those data, which, as I have said, are vital for day-to-day policing. Our very strong data protection laws mean that, in the absence of a legal duty to retain specific data, companies must delete data that are not required beyond their strict business uses. The loss of those data would be potentially devastating. As I said earlier, it would impact seriously on the ability of the police, law enforcement agencies and our security and intelligence agencies to investigate crime, solve kidnappings, find vulnerable people in danger, uncover terrorist links and protect children.
Will my right hon. Friend explain for my benefit why it is legitimate to have the 12-month limit with the approval of Government, but not with the approval of the European Court of Justice?
The European Court of Justice did not say that a 12-month retention period was unlawful. It said that it recognised the need for access to and retention of the data, and it questioned the periods that were set aside. In fact, the data retention directive said that data could be retained for up to 24 months—we had previously used 12 months, rather than 24—but one of the issues was that it was said that requiring the retention of every type of data for the same period of time was not right and proportionate, and that it was necessary to be able to differentiate. We are introducing that differentiation by setting our data retention period at a maximum of 12 months, so that notices issued to CSPs for certain types of data can, if it is felt to be right, ask for retention to be for a shorter period.
As I have said, communications data are used in 95% of serious and organised crime investigations handled by the Crown Prosecution Service and have played a significant role in every Security Service counter-terrorism operation over the last decade. Clauses 1 and 2 will ensure that we can maintain the status quo by replicating our existing data retention regulations. As I have indicated, the Bill gives the Secretary of State the power to issue a notice to a communications service provider only if he or she considers the retention to be necessary and proportionate. As I said in response to my hon. Friend the Member for Isle of Wight (Mr Turner) and other hon. Members, the data retention notice will specify the duration for which data are to be retained, for up to a maximum of 12 months. If it is not proportionate to retain certain data for a full 12 months, a shorter period can be chosen. The data types that can be retained will be limited to the strict list of data types that are currently specified in the 2009 data retention regulations, and there will be a clear requirement for the Secretary of State to keep any data retention notice under review.
When it comes to the battle against terrorism, there is an ongoing, daily issue with the threat and carrying out of attacks in Northern Ireland, never mind all the other threats to national security. Does the Home Secretary agree that if this legislation were not passed, we would face an extraordinary situation, in that data retention powers would exist in the Irish Republic, because there they are in primary legislation, whereas in Northern Ireland, where the main threat exists, the Police Service of Northern Ireland and others would be deprived of a massive tool in the battle against terrorism and in co-operating with their neighbours down south?
The right hon. Gentleman makes an extremely important point. He highlights one of the reasons why it is important to pass this Bill and retain this capability in relation to communications data and lawful intercept. He is absolutely right: because the Republic of Ireland brought its communications data regulations into primary legislation, it does not have to respond to the ECJ judgment. It is because ours were in secondary legislation that we have to respond to the judgment.
Using headlines like “Terrorism” or “Organised crime” and so on obviously chimes with the public, but I have never understood why one of the reasons for retention, in section 22(2)(c) of the Regulation of Investigatory Powers Act 2000, is if it is necessary
“in the interests of the economic well-being of the United Kingdom”.
There are accusations that these data-gathering exercises are in fact used for industrial and economic espionage by countries in the “Five Eyes”.
One point that I mentioned earlier, which was made by the European Court of Justice, was in relation to the scope of the Bill. We are making it absolutely clear that the purposes are serious and organised crime, national security and economic well-being, and we are clarifying the definition of economic well-being in so far as it relates to national security.
It says in the Bill that a retention notice may be necessary for one or more of the purposes
“falling within paragraphs (a) to (h) of section 22(2) of the Regulation of Investigatory Powers Act 2000”.
It is, as I said, economic espionage.
Clause 3 (1) states:
“Section 5 of the Regulation of Investigatory Powers Act 2000 (power to issue necessary and proportionate interception warrants in interests of national security, to prevent or detect serious crime or to safeguard the UK’s economic well-being) is amended as set out in subsection (2).”
Subsection (2) reads:
“(economic well-being of the UK), after ‘purpose’ insert, ‘in circumstances appearing to the Secretary of State to be relevant to the interests of national security’”.
It might be worth the Home Secretary adding subsection (4) of clause 3, which explicitly links economic well-being to national security.
I am grateful to the right hon. Gentleman. Indeed, subsections (2) and (4) define economic well-being in terms of the interests of national security.
The ECJ ruling in April was critical of the data retention directive because it said it did not contain the necessary safeguards in relation to retained data. I said that to the House last week and referred to it earlier this afternoon. Of course that ruling did not take into account the different structures, regimes and domestic laws that are in place in individual member states. Our communications data access regime, primarily governed by RIPA, has strict controls and safeguards in place. The data can only be accessed when it is necessary and proportionate for a specific investigation, and access is limited and subject to a strict authorisation regime, which was specifically endorsed by the Joint Committee on the draft Communications Data Bill. Clause 3 provides an important clarification in that it makes it clear that the statutory purpose of safeguarding the economic well-being of the UK can only occur when it is in the interests of national security. That is already the position, but the Bill puts that position beyond doubt.
Part 2 of the Bill deals with the question of interception. The House will know that interception can only take place when a warrant has been authorised by a Secretary of State, when he or she considers it to be necessary and proportionate and when the information sought cannot reasonably be obtained by other means.
The Home Secretary has been very kind this week. May I just ask her this question? The former head of GCHQ told me last week that the Wilson doctrine extended to all the digital communications of parliamentarians. Will she confirm that the effect of that is that only MPs and peers of the realm are excluded from this legislation?
Obviously, the Wilson doctrine applies to parliamentarians. It does not absolutely exclude the use of these powers against parliamentarians, but it sets certain requirements for those powers to be used in relation to a parliamentarian. It is not the case that parliamentarians are excluded and nobody else in the country is, but there is a certain set of rules and protocols that have to be met if there is a requirement to use any of these powers against a parliamentarian.
In relation to intercept, I mentioned the need for agreement from a Secretary of State. If the National Crime Agency wants to listen to the telephone calls of a drugs trafficker, or the Security Service wants to read the e-mails of a suspected terrorist, agreement is needed from a Secretary of State first. I see warrant applications day in, day out, and can personally attest to the care with which they are prepared, the seriousness which those applying for them attach to complying with the statutory restrictions and the gravity of the cases with which they deal. Warrant applications provide the detailed intelligence background that forms the basis on which a person is being sought.
Ministerial oversight, which I share with the Foreign Secretary and the Secretary of State for Northern Ireland, is a vital safeguard to ensure that this sensitive and intrusive power is used only when it is necessary and proportionate. But in the absence of explicit provisions in legislation, as has been mentioned in a number of interventions, some overseas companies have started to question whether the law applies to them. Indeed, as the Prime Minister said last week, some companies are already saying that they can no longer work with us on interception unless UK law is clarified immediately. This Bill does exactly that.
Will the Home Secretary reflect again on the intervention by the right hon. Member for Haltemprice and Howden (Mr Davis)? If a foreign Government who are routine abusers of human rights passed the same legislation through their Parliament, could they then intervene on an internet service provider based in this country to obtain data on their citizens, in the same way that the British Government take that power for themselves in another jurisdiction?
The power that we are taking is to be able to serve a warrant in relation to somebody who is based overseas. There would be implications for anyone attempting to apply to serve something into the UK in relation to the operation of that under UK law.
Clauses 4 and 5 make it clear that RIPA applies to all the companies that provide communications services to people in the United Kingdom, regardless of where those companies happen to be based. The final clause contains the sunset provision, which means that the legislation will expire at the end of 2016. I recognise that a number of Members have suggested that this sunset clause should be at an earlier stage. I say to them that the reason it has been put at the end of 2016 is that we will have a review by David Anderson which will report before the general election. It is the intention that a Joint Committee of Parliament will look at his work and that of the Intelligence and Security Committee. It will then be necessary to put the required legislation in place. If anyone stops to think about that timetable, it is clear that it could not be completed by the end of this year.
Is the Home Secretary aware that many of us in the House feel that it is a very long time for a sunset clause and that, despite what she says, it could be earlier? That makes her acceptance of the Opposition’s proposal for six-monthly reviews all the more important and welcome. Will she confirm that those reviews—perhaps this is something that will be developed later—will specifically report on there being no extension to the powers in the Act?
Of course, that matter will be debated later when the Opposition amendment is debated. As I understand it, the intention of those reviews is to provide for a facility for the appropriate commissioner to report on the operation of the legislation such that if there were any extension of powers, it would be possible for that to be brought to the fore as a result of the work that was being done.
I talked about the timetable. If Members think about the processes that we want to go through to ensure a full and proper consideration of the capabilities and powers that are needed to deal with the threat that we face and then about the right legislative framework within which those powers and capabilities would be operated, they will realise that that requires sufficient time for consideration and then for legislation to be put in place. That explains the need for the sunset clause at the end of 2016.
I just want to make a brief mention of secondary legislation. In addition to the Bill, secondary legislation will be required to cover the detail of some of the data retention regulations. We cannot formally introduce the regulations in advance of the enabling legislation being enacted, but I have placed copies of the draft regulations in the Library—that happened, I believe, at the end of last week—for Members to scrutinise alongside the Bill. Our intention is to ensure that the secondary legislation can be scrutinised and approved by both Houses before the summer recess. The draft regulations mostly replicate the existing data retention regulations, which were approved by Parliament in 2009, but they also contain strengthened safeguards to respond to points raised by the ECJ judgment. They allow for data security requirements to be set out in the data retention notices, and ensure that this retention can be overseen effectively by the independent Information Commissioner. They also create a code of practice on data retention, thus putting best practice guidance on a statutory footing.
Given that the European Court of Justice was striking down a European directive as well as our legislation, what action does the EU propose to try to sort out this legislative muddle?
The European Union will consider the necessity of a further data retention directive in due course, but it will take some time to be put in place. As my right hon. Friend knows, the European Parliament has recently changed and the European Commission will be changing, so it will be some time before the issue is addressed. As anyone who has dealt with such matters at any stage knows, it can take some time for proposals to be considered and finally agreed.
Alongside the legislation, of which I have stressed the urgency and importance, it is right that we balance the use of sensitive powers against the public’s right to privacy. I have detailed the limits on access to communications data and interception that will be enshrined in the primary legislation. In addition, I announced last week a package of measures to strengthen safeguards and to reassure the public that their rights to security and privacy are equally protected. We will reduce the number of public authorities able to access communications data. We will establish a privacy and civil liberties oversight board. We will appoint a senior former diplomat to lead discussions with other Governments on how we share data for law enforcement and intelligence purposes. We will also publish an annual transparency report on the use of sensitive powers.
It is apparent to all in the House and has become increasingly evident over recent months that there is a problem with the low level of public awareness of the legislative measures, the safeguards and the framework. The interception of communications commissioner has produced an extremely good report on the use of these powers, in particular by GCHQ, rebutting many allegations about mass surveillance and considering targeting and warranting. However—I hesitate to say this—his report has probably been read by perhaps a handful of people in this country. What can the Home Secretary do to ensure that there is much more public awareness? Hopefully, the annual transparency reports and the new boards will help, but it is urgent and pressing that the public should understand exactly what the framework is, what the authorities and powers are and what the agencies are doing.
The right hon. Lady makes an extremely important point. She is right that Sir Anthony May produced a first-class report that set out the powers and how they are used and was clear about their rightful use. Sadly, perhaps because it was not a “shock horror” report, it did not receive an awful lot of publicity. I hope that the Government’s commitment to an annual transparency report will help in this regard. The Intelligence and Security Committee, on which the right hon. Lady sits, is carrying out its own review of privacy and security and I hope that it will get some publicity when it is completed. It therefore behoves all of us to try as far as possible to promote the message that effective oversight is in place.
The Home Secretary is being very generous in giving way. As she said, little of the legislation is new; it is clarifying what needs to be clarified. However, the annual transparency report is something new that puts more information in the public domain than ever before. Is that correct?
For clarification and to inform the public, would it not be better for a Minister to come along and at least make a statement and be questioned once every six months on the basis of the interception of communications commissioner’s report?
The hon. Gentleman makes an interesting point. Ministers, including myself and the Foreign Secretary, go in front of the Intelligence and Security Committee. The ISC produces an annual report as well as other reports on specific subjects. I can assure the hon. Gentleman that I am often questioned about such matters when I go before the Home Affairs Committee, so Ministers are held accountable in a number of ways.
I referred earlier to the review of the powers and capabilities that the police, law enforcement agencies and security and intelligence agencies need and to the regulatory framework under which they are regulated. The review will consider those matters in the context of the threats that we face. As I said earlier, David Anderson has agreed to undertake the initial phase of that review. The measures that I have set out are in addition to the considerable safeguards already in place, including the oversight, as referred to by the right hon. Member for Salford and Eccles (Hazel Blears), by the various commissioners and the Intelligence and Security Committee.
As I made absolutely clear last week, the Bill merely preserves the status quo. It does not extend or create any powers, rights to access or obligations on communications companies that go beyond those that already exist. It does not address the same problems or replicate the content of the draft Communications Data Bill, published in 2012. The use of modern technology and changes in how people communicate have caused a decline in our ability to obtain the communications data that we need. I continue to believe that the measures contained in the draft Communications Data Bill are necessary to bridge that gap, but that is emphatically not what we are considering today. Parliament will need to return to those issues following the general election. The review to be undertaken by David Anderson, to which I have just referred, will consider the issue and I hope it will inform the debate.
I want to express my thanks to both sides of the House for the support they have given to the Bill. I would like to emphasise once again the need to get this Bill enacted before the recess. If we delay, we face the appalling prospect that police operations will go dark, trails will go cold and terrorist plots will go undetected. If that happens, innocent lives may be lost. We cannot allow that, so I urge the House to work together within this time frame to ensure that the police, the law enforcement agencies and the security and intelligence agencies have the capabilities that they need to protect the public and keep us safe. That is what the Bill is designed to do and I commend it to the House.
I thank all the right hon. and hon. Members who have contributed to a vibrant and valuable debate. I note that some comments were made about the role of the House in defending liberty and ensuring that we strike a balance between collective freedoms and individual liberty. The speeches this afternoon have brought that to the fore, and I understand and recognise the significance of the legislation before the House this afternoon. The Government have to work quickly to address the problems created by the judgment of the European Court and declining co-operation from communication service providers. The Bill has undergone some good debate and challenge this afternoon.
I welcome the fact that, almost without exception, right hon. and hon. Members who have spoken have understood the importance of interception and communications data in the fight against terrorism and other serious crime and have therefore supported the Bill. Several hon. Members highlighted its import in confronting child abuse and safeguarding children. It will play a crucial role in enabling our law enforcement agencies to bring crimes to justice.
Sometimes this debate can be framed round security—what the intelligence agencies are doing. Actually, much of it is about what our police and law enforcement agencies are doing to identify, prosecute and bring to justice those who would harm our constituents; about how the use of communications data is such an integral part of that; and obviously, as we all understand, about the importance of intercept. I was struck by the speech of the right hon. Member for Kingston upon Hull West and Hessle (Alan Johnson), who referred back to the year that I was born and his role at Royal Mail, reflecting on how interception played such a role even then, but in a different way, and on how technology has moved on. We have discussed the vital importance of this Bill in ensuring that those who work to keep us safe can continue to have the tools that they need. That is at the heart of our debate.
Some speeches were framed on the basis that this Bill is extending powers. I reiterate, yet again, that it is not about extending powers but about maintaining the powers that already exist to retain data, including under the Regulation of Investigatory Powers Act 2000, in order that our police and law enforcement and security agencies, and others, can continue to do the work that they do now.
A number of Members mentioned the European Court judgment. Let me briefly go through some of the issues that were highlighted. On scope, the Bill will limit any data retention to a strict list of data types specified in the data retention regulations. It will enable the Secretary of State to issue data retention notices to communications services providers, on a selective basis, only if she considers the obligations to be necessary and proportionate.
On duration, each notice will have to specify the duration for which data is to be retained, up to a maximum 12-month period. If it is not proportionate to retain certain data for a full 12 months, that enables a lower period to be chosen. Again, that reflects some of the comments made in the European Court judgment, with a clear requirement for the Secretary of State to keep any notice under review. Access will be limited to that which is necessary and proportionate under RIPA.
On storage, the UK already imposes strict data security requirements on our communications service providers. These will become part of the notice requiring a CSP to retain data and will therefore be enforceable. It is right that we have reflected on the European Court judgment, but we retain our focus on what the powers are today as well as reflecting on some of the points that the Court made.
Part of the judgment proposes that the Government provide exceptions for persons whose communications are subject to an obligation of professional secrecy. That does not seem to be covered in the Bill or in the draft regulations.
I hope that in Committee we will be able to get on to the role that the statutory code of practice may play in that regard. The hon. Gentleman will note that there is reference to that in the Bill, and we will be able to discuss it shortly.
It is important to note that the Intelligence and Security Committee has endorsed these proposals, with one notable exception. Indeed, the Home Affairs Committee has done the same, obviously recognising that there may not have been unanimity in that respect. It is important to say that Committees have reflected on and examined this and seen that it is about protecting the status quo.
The Chair of the Committee has made his point in his inimitable fashion.
It is important to understand that this is about protecting powers, not adding to them. It is about ensuring that our law enforcement agencies and security agencies have the powers that they need. That is what the proposal in this Bill is about. While I note the clear concerns over the balance between security and liberty, this is about protecting powers, not enhancing them. I commend the Bill to the House.
Question put, That the Bill be now read a Second time.