Overview

• The Cabinet Office released a long-completed 2023 information security review following pressure from Dame Chi Onwurah and the Information Commissioner.
• Information Commissioner John Edwards warned ministers to fully enact the review's recommendations "as a matter of urgency" to prevent future harms.
• The government says it has implemented 12 of 14 recommendations and points to strengthened guidance, updated mandatory training and a public-sector digital upgrade plan.
• Dame Chi has asked Chancellor of the Duchy of Lancaster Pat McFadden and John Edwards to appear before the Science, Innovation and Technology Committee to explain progress.
• The review highlights recurring failings such as misaddressed emails, risky data exports and spreadsheet errors, set against breaches including the 2022 exposure of 18,714 ARAP applicants and the subsequent gag order and secret ARR relocation scheme projected at about £850 million.