Feb. 08 2024
Source Page: Old blue (hardback style) passports: caseworker guidanceFound: replacement of Old Blue (hardback style) passports on AMS ( Application Management System ) and DAP (Digital
Jun. 28 2024
Source Page: Government baseline personnel security standardFound: A digital service - the organisation uses an Identity Document Validation Technology (IDVT) provider
Found: Data Protection and Digital Information Bill AMENDMENTS TO BE MOVED ON REPORT Clause 14 LORD
Asked by: Jonathan Ashworth (Labour (Co-op) - Leicester South)
Question to the Cabinet Office:
To ask the Minister for the Cabinet Office, how much the Government has spent on the GOV.UK One Login customer support centre in the 2023-24 financial year, as of 26 March 2024.
Answered by Alex Burghart - Parliamentary Secretary (Cabinet Office)
GOV.UK One Login’s customer support centre went live on 31 October 2023. The Government Digital Service has, as of 26 March 2024, spent £926,443 to set up and operate this contact centre.
The public expects quick, secure and user-friendly access to government services. Previously, UK citizens and residents needed to grapple with multiple sign-in methods and identity verification routes when using government services online.
GOV.UK One Login is replacing these duplicative systems across government with a single account and identity checking system. This will make it easier for users to access the services they need, reduce costs to government, and provide stronger protections against fraud.
Jun. 28 2024
Source Page: Government baseline personnel security standardFound: This is not a definitive list of acceptable identity documentation for the BPSS.
Apr. 23 2024
Source Page: DSIT commercial pipeline, April 2024Found: £10,000,000 Framework Platform as a Service (PaaS) Google Cloud Platform prj_3376 Cyber Security and Digital
Asked by: Baroness Manzoor (Conservative - Life peer)
Question to the Department of Health and Social Care:
To ask His Majesty's Government what steps they have taken to ensure that patient records and personal data are only accessible to those who need to view them, and to ensure connections between software systems in health facilities include suitable control measures for this risk.
Answered by Lord Markham - Parliamentary Under-Secretary (Department of Health and Social Care)
National IT systems must ensure that users can be identified correctly, and are given appropriate access. This is achieved using identity verification capabilities, including creating a national digital identity for each authorised user.
Each local National Health Service organisation which requires access to the national IT systems is required to set up its own local Registration Authority (RA) which consists of people and processes who are trained to create identities and grant access for their staff to the national IT systems. NHS England has published the RA Policy requirements with which every local NHS organisation that has an RA must comply. This reflects current best practice for identity and access management as informed by the National Cyber Security Centre (NCSC) guidance.
The RA Policy also allows non-NHS health and care organisations providing direct care to run their own RA service. RA hosting is subject to meeting requirements and assessment criteria, which are soon to be published.
The RA process includes the use of RA codes, assigned to professional users’ smartcards to give them access to the correct information within national IT systems.
The RA codes which are assigned for a specific user will allow that user to create and process referrals appropriately depending on their job role.
Local organisations which have an RA function are required to have an RA audit policy and conduct annual audits on NHS Smartcard usage as part of their RA governance. RA Managers (those responsible for administering the RA function within an organisation) must implement a process to run the RA reports on a regular basis.
Mentions:
1: Rosie Winterton (Lab - Doncaster Central) the right for data subjects to use non-digital identity verification services as an alternative to digital - Speech Link
2: Dawn Butler (Lab - Brent Central) Will the Minister confirm that no services will rely on digital identity checks? - Speech Link
3: John Whittingdale (Con - Maldon) improves, but there is no compulsory or mandatory element to the use of digital identity. - Speech Link
4: None Member for Brent Central (Dawn Butler) mentioned the digital identity verification schemes in part 2. - Speech Link
5: David Davis (Con - Haltemprice and Howden) identity verification, and for others that digital verification is simply inaccessible. - Speech Link
Found: Data Protection and Digital Information Bill RUNNING LIST OF ALL AMENDMENTS ON REPORT Tabled
May. 10 2024
Source Page: DSIT: spending over £25,000, September 2023Found: and Technology Group - Cyber Security and Digital Identity UK Cyber Cluster Collaboration Pilot (UKC3