Feeds

Government project reviews are not FOI exempt, says tribunal

Backs ICO's order that reports be made public

3 Big data security analytics techniques

Crucial reviews of large, ongoing Government IT projects are not exempt from the Freedom of Information (FOI) Act, the Information Tribunal has ruled (pdf). The tribunal has backed the Information Commissioner's order that the reports become public.

Two requests were made for the release of reports on the Government's identity cards system but the Office of Government Commerce (OGC) refused them, saying that the balance of public interest lay in their non-disclosure.

The Information Commissioner's Office (ICO) said that under the FOI Act the requests were legitimate and ordered the disclosure of the information. The tribunal has now backed the ICO.

The tribunal said not only that these reports should be made available, but that the OGC was attempting to ensure that all such reports were given an automatic exemption from disclosure. This was wrong, said tribunal chairman John Angel.

"Although [OGC lawyer] Mr Tam says he is not putting forward a case for [reports] to be subject to an absolute exemption under FOIA it seems very like that to us," said Angel in the ruling. "He says that the combined extent of the harm which will flow from disclosure is so overwhelming that there can be very few exceptions and then only possibly after a long period of time, say 30 years."

All major government projects must now be subjected to reports at crucial stages of their development before proceeding to the next stage. Designed to detect and solve problems earlier rather than later, these are called gateway reports.

The OGC argued that workers' honesty in the reports was contingent on their remaining confidential. "[Tam's] whole argument is based on the fact that the GR [gateway report] system can only continue to be successful if disclosure is not a realistic possibility," said Angel.

But the tribunal said Parliament had had the opportunity to exempt the reports from the Act and had chosen not to, so the tribunal should not allow the OGC to assert that an exemption exists.

"The FOIA has been around for seven years, from before the start of GRs," he said. "Parliament in its wisdom has absolutely exempted certain information from the Act, but it has not exempted GRs as such in this way."

Angel was scathing about assurances reportedly given to participants that their comments would not be made public.

"We cannot understand how the OGC appears to have given such internal assurances that reports would not be disclosed under the FOI Act," he said. "There has always been a possibility that GRs would be disclosed under the FOI Act. GRs are all about the management of risk. We would have thought that FOIA would have been factored into that risk assessment because cases like this appeal were foreseeable.

"To have developed a system on the apparent assumption that there was little or no risk of disclosure is at the very least unprofessional and at variance with one of the aims of GRs which is to encourage and support, in effect, more professionalism in the way programmes and projects are undertaken," said Angel.

The tribunal said that some reports would qualify for exemption from the Act. Angel said that it was unlikely that the "floodgates would open" and all the reports would be made public.

"The tribunal has considered all the circumstances of this case and finds that the public interest in maintaining the exemption does not outweigh the public interest in disclosure," said Angel. "In other words we uphold the commissioner's Decision Notices in this case.

He ordered that the information be released, but delayed the release by 14 days so that the tribunal could decide whether or not the names of the interviewees should be blanked out.

Copyright © 2007, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

Combat fraud and increase customer satisfaction

More from The Register

next story
Lavabit loses contempt of court appeal over protecting Snowden, customers
Judges rule complaints about government power are too little, too late
Don't let no-hire pact suit witnesses call Steve Jobs a bullyboy, plead Apple and Google
'Irrelevant' character evidence should be excluded – lawyers
Record labels sue Pandora over vintage song royalties
Companies want payout on recordings made before 1972
EFF: Feds plan to put 52 MILLION FACES into recognition database
System would identify faces as part of biometrics collection
Edward Snowden on his Putin TV appearance: 'Why all the criticism?'
Denies Q&A cameo was meant to slam US, big-up Russia
Ex-Tony Blair adviser is new top boss at UK spy-hive GCHQ
Robert Hannigan to replace Sir Iain Lobban in the autumn
Judge halts spread of zombie Nortel patents to Texas in Google trial
Epic Rockstar patent war to be waged in California
US Supreme Court supremo rakes Aereo lawman in oral arguments
Antenna-array content streamers: 'Ruling against us could dissipate the cloud'
German space centre endures cyber attack
Chinese code retrieved but NSA hack not ruled out
prev story

Whitepapers

Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.