Electoral Commission: Data Breaches Debate

Full Debate: Read Full Debate
Department: Cabinet Office

Electoral Commission: Data Breaches

Lord Hayward Excerpts
Monday 4th September 2023

(1 year, 3 months ago)

Lords Chamber
Read Full debate Read Hansard Text Watch Debate Read Debate Ministerial Extracts
Asked by
Lord Hayward Portrait Lord Hayward
- Hansard - -

To ask His Majesty’s Government, following recent disclosures of a data breach from the Electoral Commission, what action they are taking to mitigate the effects of this and to prevent data breaches across the public sector.

Baroness Neville-Rolfe Portrait The Minister of State, Cabinet Office (Baroness Neville-Rolfe) (Con)
- View Speech - Hansard - - - Excerpts

My Lords, since the Electoral Commission reported the incident to the National Cyber Security Centre, the Government have worked closely with the commission to provide it with expertise and support to deal with the incident and guard against the risk of future attacks. Through our government cybersecurity strategy, we are reducing the likelihood of data breaches in the public sector and the impact of the breaches that happen.

Lord Hayward Portrait Lord Hayward (Con)
- View Speech - Hansard - -

My Lords, given the supplementaries to the previous Question, which touched on this whole issue of security, security breaches and the awareness of government departments and individuals of what they should and should not do and how they should work with others, is my noble friend now absolutely clear about where this breach came from and whether it has been secured, let alone whether things will be better going forward?

Baroness Neville-Rolfe Portrait Baroness Neville-Rolfe (Con)
- View Speech - Hansard - - - Excerpts

It is a matter for the Electoral Commission, which is independent of government and accountable to Parliament through the Speaker’s Committee on the Electoral Commission. Since it reported the incident to the NCSC, we have been working closely to provide expertise and support. The Electoral Commission has made a statement that the breach was limited and not a great deal of new information has gone into the public domain, and it has given advice on what citizens might do. On the cause, I am not sure I have anything to add to the general comment I made on operational matters.