Question to the Department for Science, Innovation & Technology:

To ask the Secretary of State for Science, Innovation and Technology, what assessment he has made of the effectiveness of (a) the Information Commissioner’s Office and (b) Ofcom in assessing how regulated services are enforcing their minimum age limits to ensure children’s safety and data protection.

In 2024, the ICO updated its Age assurance opinion for the Children’s code, with guidance on what online services must do if they are likely to be accessed by children. We welcome the ICO’s ongoing work to assess how services are applying age assurance measures to identifying child users and through the Data (Use and Access) Bill we are taking steps to require the ICO to have regard to the fact that children merit specific protection.

Under the Online Safety Act services in scope must use highly effective age assurance to prevent children from encountering the most harmful content. Additionally, services which have a minimum age limit must specify in their terms of service how these restrictions are enforced and apply these terms consistently. Ofcom must publish a report on services’ use of age assurance within 18 months of child safety duties coming into effect.