Question to the Home Office:

To ask the Secretary of State for the Home Department, if she will publish a list of stakeholders that ministers have met to develop a best practice guidance for the use of Live Facial Recognition technology by the police.

Police use of live facial recognition (LFR) is governed by data protection legislation, which requires that any processing of biometric data is lawful, fair, proportionate and subject to appropriate safeguards.

The Home Office does not collect or store data generated through police use of LFR. Police forces act as data controllers for the operational use of the technology and are responsible for ensuring that data is stored and handled securely, in line with data protection law and established policing standards.

LFR systems used by the police must be procured and operated in accordance with UK law and national security requirements. Police procurement decisions are subject to procurement legislation and Cabinet Office guidance on supply‑chain and national security risk. This includes having regard to cyber security standards and advice from the National Cyber Security Centre, which supports public sector organisations in protecting systems and sensitive data from cyber threats, including risks associated with third‑party suppliers and foreign access.

Operational guidance on the use of LFR is set out in the College of Policing’s Authorised Professional Practice (APP). The APP is national guidance developed and maintained by the College, following engagement with policing practitioners and relevant stakeholders. It sets out best practice and legal standards for police forces, making clear that any use of LFR must be lawful, necessary and proportionate, and must comply with data protection, equality and human rights legislation.

The APP sits alongside the Surveillance Camera Code of Practice, issued by the Home Secretary, which provides statutory guidance on the responsible and transparent use of surveillance cameras including facial recognition.