I do not agree. The hon. Lady will find that the provision is quite tightly defined, and that should satisfy her.
The hon. Lady also referred to the need for safeguards. There will clearly be very significant safeguards for data exchange, and I will give some examples. For a new apprenticeship funding mechanism, as for any new system, the Skills Funding Agency will expect expert assessments of the information and security risks as part of the development on an ongoing basis. An action plan will be developed to address the risks identified, and the senior information risk owner will have to be satisfied that those risks have been sufficiently mitigated before any system goes live. There will be periodic system tests to see whether anyone can break into it. Staff duties will be segregated to protect information. All staff will complete annual training on protecting information, and any security breaches, including near misses, will have to be reported and acted on.
HMRC has a criminal sanction for wrongful disclosure of customer information. As I have stated, in providing its data to other Departments, the continuing protection of HMRC data is a vital safeguard that must remain in place. That is why the HMRC criminal sanction in section 19 of the Commissioners for Revenue and Customs Act 2005 applies to any wrongful disclosure by staff or contractors of a Department that receives HMRC information. In addition, while a legislative gateway may allow for the supply of information from HMRC to another Department, it is generally constructed so that the other Department is not permitted to pass on that information to another organisation, public or private, without recourse to HMRC, and that is the case with new clause 1.
The safeguards that the hon. Lady wants are therefore already in place. The data are secure, and any exchange of data will be done only under very tightly controlled procedures.