The modern capabilities and legal framework for mass surveillance in the United Kingdom developed under successive governments of the United Kingdom since the late 20th century.
Historically, state surveillance in the United Kingdom began in Victorian Britain. David Vincent observes that the statistical measurement of communication behaviour began with the introduction of the Penny Post in 1840. An early public scandal occurred in the postal espionage crisis of 1844.[1]
The Security Service Act 1989 established the legal basis of the UK Security Service for the first time under the Conservative government led by Margaret Thatcher.
GCHQ and the Secret Intelligence Service were placed on a statutory footing for the first time by the Intelligence Services Act 1994 under the Conservative government led by John Major.
Identity cards were introduced under the Labour government under Tony Blair in 2006. The Identity Documents Act 2010 repealed the Identity Cards Act of 2006,[2][3] scrapping the mandatory ID card scheme and associated National Identity Register that had been in use on a limited or voluntary basis since November 2008, but which was never fully implemented.[4][5] The National Identity Register was destroyed on 10 February 2011.
Foreign nationals from outside the European Union continue to require an ID card for use as a biometric residence permit under the provisions of the UK Borders Act 2007 and the Borders, Citizenship and Immigration Act 2009.[4][6] Although the 2010 Act ended the validity of ID cards as travel documents, no action was taken to withdraw the National Identity Cards already issued. [4]
As a member of the European Union, the United Kingdom is subject to EU policies and directives on surveillance and participates in its programmes. Since October 2007 telecommunication companies have been required to keep records of phone calls and text messages for twelve months under the European Union's Data Retention Directive.[7] Though all telecoms firms already keep data for a period, the regulations are designed to ensure a uniform approach across the industry.[8] This has enabled the Government and other selected authorities within the UK such as Police and Councils amongst others to monitor all phone calls made from a UK landline or Mobile upon request.
In April 2014, the European Court of Justice ruled that the European Union's Data Retention Directive was invalid. The European Court of Justice found it violates two basic rights, respect for private life and protection of personal data.[9]
In 2008 plans were being made to collect data on all phone calls, e-mails, chat room discussions and web-browsing habits as part of the Labour government's Interception Modernisation Programme under Prime Minister Gordon Brown. It was thought likely to require the insertion of thousands of black box probes into the country's computer and telephone networks.[10] The proposals were expected to be included in the Communications Data Bill 2008. The "giant database" was to include telephone numbers dialled, the websites visited, and addresses to which e-mails are sent, but not the content of e-mails or telephone conversations.[11] Chris Huhne, Liberal Democrat Home affairs spokesman, said, "The government's Orwellian plans for a vast database of our private communications are deeply worrying."[12] In November 2009, ministers confirmed that the estimated £2 billion project would proceed as planned. A consultation found that 40% of people were against the plans which would also include monitoring communications in online games.[13]
The Interception Modernisation Programme was renamed the Communications Capabilities Development Programme by the Conservative-led government under David Cameron in 2010,[14] and development of a new Draft Communications Data Bill began under Home Secretary Theresa May.
The Draft Communications Data Bill was discussed between 2010 and 2013 but not formally introduced to Parliament as a Bill. It addressed the retention of communications data (not the content of messages) and proposed broadening the types of data retained by internet providers for example to include web browsing history. It was nicknamed the 'Snooper's Charter' and was abandoned by the government in 2013 after opposition from the Deputy Prime Minister Nick Clegg and his party of Liberal Democrats.[15]
In 2013, issues regarding the possible discovery of "storage chips" in commercial keyboard, touchpad and LCD controller semiconductors on devices such as laptops and desktops have been raised by the destruction of these components at The Guardian newspaper after the revelations of leaked documents.[16]
The police have used mobile phones to track suspects.[17] Some shopping centres have also tracked customers through mobile phone signals. A system can tell when people enter the centre, how long they stay in a particular shop, and what route each customer takes. The system works by monitoring the signals produced by mobile handsets and then locating the phone by triangulation.[18]
In 2023, the Online Safety Bill was passed, which allowed the government to force online platforms to search through all users' photos, files, and messages, whenever the government ordered.[19]
The government's own reviewer of anti-terror laws, Lord Carlile, said: 'The raw idea of simply handing over all this information to any government, however benign, and sticking it in an electronic warehouse is an awful idea if there are not very strict controls about it.'
Lib Dem home affairs spokesman Chris Huhne said: 'The government's Orwellian plans for a vast database of our private communications are deeply worrying.' 'I hope that this consultation is not just a sham exercise to soft-soap an unsuspecting public.'