The Coalition Government’s detailed planning to destroy most of the IT infrastructure and data for ID cards, following the decision to axe Labour’s ID cards plans, has revealed disturbing news about how data was mishandled.
As the BBC reports, equipment is having to be destroyed because it looks like data was wrongly stored on it:
Destruction of [some] equipment might have been avoided if the data it collected had been stored centrally as it was meant to be. But there is evidence that some was accidentally stored locally, the document reveals, so off to the dump it must go…
However, other data which it was promised would not be stored centrally did end up being stored in just that way:
Anti-ID card campaigners often warned about the dangers of storing all of the ID data in one place – making it potentially vulnerable to hacking, only to be assured by ministers from the previous government that this would not happen.
So it is fascinating to read that there are two separate locations in the UK where all of the biometric and biographical information gathered by the ID card scheme is, or has been, stored.
Although Labour’s ID cards plans may be in the political – and soon technological – graveyards, this news – which has only come to light because of the detailed organisation for ending ID cards plans – leaves us an important lesson for the future. Regardless of public promises made about how data will be stored and safeguarded, reality often turns out differently. No security is perfect; no staff list is impervious to wayward staff; no technological plan is resistant to change and modification.
That is why the very acts of deciding not to gather some data, or not to collate different sources into one place, is so often an important firebreak that protects our privacy.