HMRC deletes five million voiceprints after ICO complaint

Written by Sam Trendall on 7 May 2019 in News
News

Department gets rid of data where it did not have ‘explicit consent’ of users

HM Revenue and Customs has deleted the voiceprints of five million citizens from whom it failed to gain adequate consent.

In June 2018 a complaint was made to the Information Commissioner’s Office about the department’s use of “implied consent” to collect the voice identification data of people ringing HMRC helplines. 

Two months after this grievance was filed, the department implemented a new process in which voice data is only retained in cases where callers provide explicit to consent to do so. This change was made to ensure HMRC complied with its obligations under GDPR, according to a letter written by HMRC permanent secretary Jon Thompson and newly published online.


Related content


Thompson added that the tax agency will also delete the voiceprints of the five million people who were enrolled in the voice ID scheme before October 2018, and have yet to call HMRC since then to confirm – or revoke – their consent.

The department is left with voice data on 1.5 million people who have called up during the last six months and expressly agreed to the new terms of service.

In the letter, which Thompson addressed to HMRC’s data protection officer Chris Franklin, the perm sec said that he was “satisfied that HMRC should continue to use Voice ID”. 

“It is popular with our customers, is a more secure way of protecting customer data, and enables us to get callers through to an adviser faster,” he said. “HMRC has worked hard to ensure the system complies with GDPR requirements around explicit consent and our published privacy notice already makes clear that we will not use voice identification data for any other purposes. In the interests of being transparent about the decisions we have made, I am arranging for this note to be made public and have advised the ICO accordingly.”

 

About the author

Sam Trendall is editor of PublicTechnology

Share this page

Tags

Categories

CONTRIBUTIONS FROM READERS

Please login to post a comment or register for a free account.

Related Articles

Related Sponsored Articles

Was legendary grand master Yoda using red teaming to evaluate all his defences?
17 December 2019

Take away all the boundaries in security testing, and protect your organisation from the dark side, with red teaming to evaluate your defences and expect the unexpected - BT explains how 

Three best-practice measures in the event of a data breach
3 December 2019

To have the best chance of an effective response and a full recovery, organisations should have a robust incident response strategy in place, says BT 

How to take control of your network
26 November 2019

We hear from BT about why delivering a great customer experience depends on your network visibility