Dear Emily Thornberry,
I write to you with a simple hypothetical. Imagine the ISP TalkTalk were required by law to retain 12 months worth of internet access history, now imagine the result of their recent security breach given this. Every TalkTalk customer would potentially have their entire private online world exposed to the public: from the popular teenager, terrified of the views of his family and friends, researching LGBTQ issues; to the jovial receptionist frequenting suicide support forums. None of it legally sensitive, but personally devastating.
TalkTalk are not alone: BT, Virgin and Sky have all had data breaches go public. As long as data security continues to be overlooked at these companies and many others, data breaches will continue to happen. The only way to safe guard the above information from attack, is to not have it at all.
If the proposed Draft Investigatory Powers Bill were to pass, the above would become an all too common reality. Nobody argues against the need for our security serv