Navigate
Request a call back from our team

Complete our quick form below and we'll contact you when you're ready to talk to us.
All fields are required.

5 million HMRC voice ID records to be deleted

Some 5 million HMRC voice ID records are to be deleted after regulators ruled that a “significant” breach of data protection law had taken place over the use of the “my voice is my password” system.

The UK’s data watchdog, the ICO (Information Commissioner’s Office), has given the government until next month to remove data collected without proper content from millions of taxpayers. Although some people have since opted in for the system, the data for those collected and retained without proper consent is to be removed.

The issue has raised concerns over the government’s own ability  to adhere to important data protection laws, with the ICO critical of HMRC’s behaviour.

About the HMRC voice ID data breach

The HMRC voice ID system that has been deemed to have breached important data protection laws arises from the use of their “my voice is my password system”.

After concerns were raised by privacy campaigners, the ICO found that a “significant breach of data protection law” had taken place. People had not been given an option to opt-out and essentially had no choice but to sign-up to the system, and explicit consent had not obtained.

The ICO were critical in this case, saying that:

“HMRC appears to have given little or no consideration to it with regard to its voice ID service”. This is incredibly worrying.

5 million HMRC records to be deleted

Following the finding of a breach, some 5 million HMRC voice ID records are to be deleted. This has been hailed as a win for privacy advocates, with Big Brother Watch saying:

“This sets a vital precedent for biometrics collection and the database state, showing that campaigners and the ICO have real teeth and no government department is above the law.”

We fully agree, and no one should be above the law. But the worrying thing for us is the fact that HMRC is in this predicament in the first place. We represent a huge number of people who are claiming for council data breach compensation because of how often those kinds of breaches occur. Central and local government departments have been at the heart of many data breaches, and we would expect those kinds of organisations to be the pioneers of good data protection practices.

The HMRC voice ID issue may be one of many that will come to light as scrutiny over how data is used and processed continues to grow. With the “my voice is my password” system appearing to have been implemented with little regard for data protection rules, we have every reason to be concerned about how data that’s collected without proper consent is secured as well.

If it even is…

Start Your Claim

You can call our claims team free from a landline or mobile on 0800 634 7575 or click on the link below to create a call back with one of our expert Data Claims team.Information on how we handle your data is available in our Privacy Policy.
data breachdata controllersgdprgovernmenticopersonal data
Related Post
  1. Claiming Compensation for Stolen Data from Ransomware Attacks with The Data Leak Lawyers

    Stolen data from ransomware in an era where data breaches are becoming increasingly common can…

  2. Importance of Claiming: Medical Data Breach Settlements Can Exceed £10,000

    Medical data breach settlements can exceed £10,000 which is why it is important to claim…

  3. Navigating Data Regulator Action: How to Claim Data Breach Compensation

    Understanding the Impact of Data Regulator Action: In today's digital age, data breaches have become…

This website uses cookies.