Online Pornography: Age Verification

Cat Smith Excerpts
Thursday 20th June 2019

(5 years, 5 months ago)

Commons Chamber
Read Full debate Read Hansard Text Read Debate Ministerial Extracts
Cat Smith Portrait Cat Smith (Lancaster and Fleetwood) (Lab)
- Hansard - -

I thank the Secretary of State for advance sight of his statement and the sincerity with which he has made this apology today. However, the statement is proof that a serious and important policy has descended into an utter shambles under this Government. I would like to ask the Secretary of State one question that he did not answer in his statement: when did he find out about this? He says that it was in the last few days, but could he be a bit clearer about that?

Age verification was supposed to be introduced last April; it was delayed. Then it was going to be introduced next month, and today we hear it is going to be delayed again. The Secretary of State says he regrets this. We do too, very much, because it is not good enough—it is not acceptable and it is letting children down. Recent reports showed that 70% of eight to 17-year-olds have seen images and videos that are not suitable for their age in the past year. Given the rise in the use of mobile devices and tablets in the past decade, the case for appropriate online pornography enforcement has increased.

The Secretary of State says that an administrative error caused the failure to notify the European Commission of key details, but are there more fundamental problems with this policy? Can the Secretary of State give us a commitment about exactly when it will be introduced? Indeed, is he confident that it will ever be introduced? When the legislation was going through this place, Labour raised serious concerns about whether the verification process was viable, and whether the process could work if very personal data was given over to commercial pornography sites. This delay shows we were right to be concerned. Is he confident that such extremely sensitive personal data will be safe from leaks or hacks?

Media reports from earlier this year showed serious flaws in the system, with journalists able to create fake profiles that circumvented age checks in minutes. Is the Secretary of State sure that when—if—the policy is finally introduced, it will actually work? The ultimate sanction under the age verification regime was the power to block rogue sites, with internet service providers compelled to comply, but new encrypted browser software is about to undermine this system fundamentally. The encryption will mean that ISPs are blind to the sites that users visit on the internet, and they will be unable to block rogue sites that compromise the safety of children. That system—DNS over HTTPS—undermines not only the age verification system, but the entire foundations of the regulation laid out by the Government in the online harms White Paper. Does the Secretary of State agree that online companies are outsmarting the Government, and that we urgently need to know how the Government plan to catch up?

Jeremy Wright Portrait Jeremy Wright
- Hansard - - - Excerpts

I thank the hon. Lady for her remarks. As she knows, I have spoken to the shadow Secretary of State about this issue—I accept that he cannot be here today and I am grateful to her for stepping in.

The hon. Lady raised a number of issues, starting with when I discovered the error. The answer to that is Friday last week, and my hon. Friend the Minister for Digital and the Creative Industries found out a couple of days before that. As the House would expect, we have spent the intervening time seeking to confirm that there is no alternative way of doing what I have described. We do not believe there is, hence the course of actions that I have set out to the House.

The hon. Lady rightly asked about personal data and privacy, which is an area of concern. As she knows, it was discussed during the passage of the Digital Economy Act 2017 and subsequently. I do not believe that it is impossible to reconcile the important requirement that people’s data and privacy are protected with the equally important requirement that children are protected from material they should not see. It is perfectly feasible to do those two things in parallel, which is what we seek through our approach. As she knows, the British Board of Film Classification, which will be the regulator for this, has taken steps to ensure that beyond the requirement on all relevant companies under the general data protection regulation parameters, an additional scheme will be available to those who wish to take advantage of it. That scheme will set out a higher gold standard for privacy, which we believe should be publicised to those who may wish to use these services.

The hon. Lady mentioned sanctions, but she will recognise that the issue under discussion is not sanctions for a breach of the requirements, but notification of them to the European Union. It is important to understand changes in technology and the additional challenges they throw up, and she is right to say that the so-called “D over H” changes will present additional challenges. We are working through those now and speaking to the browsers, which is where we must focus our attention. As the hon. Lady rightly says, the use of these protocols will make it more difficult, if not impossible, for ISPs to do what we ask, but it is possible for browsers to do that. We are therefore talking to browsers about how that might practically be done, and the Minister and I will continue those conversations to ensure that these provisions can continue to be effective.