An offence in this Bill is an offence under the law of any part of the UK. There is a complex interplay between online safety, which is reserved, and devolved matters such as
child and adult protection, education, justice and policing. I realise that the legislative differences between Scotland and England are quite topical. The offence, for example, protecting people with epilepsy does not cover Scotland as Scottish law already covers this behaviour, as is the case with the new cyberflashing offence.
However, the Bill does give Scottish Ministers the powers to amend regulations relating to priority offences in Part 2 of Schedule 6. I think government amendments in the other place mean that Scotland’s hate crime Act will not affect what people can and cannot say online in the rest of the UK, since it was passed by a devolved authority without the Government’s consent. But I believe a loophole remains whereby a future Government could simply approve that or any other law that has been passed in Holyrood, so Nicola Sturgeon could still become the content moderator for the whole of the UK. How should online providers therefore respond where there are differences in legislation across the four nations?
Access to data is clearly essential to ensure that the dynamic landscape of online harms is understood in the Scottish context. I am thinking of issues for rural and remote communities, how online platforms respond to sectarian content, or understanding the online experiences of people with drug or gambling addictions. Are there any differences across the UK? In terms of the transparency reports required by the Bill, will Ofcom be able to see that data in a nation-specific way?
Scotland has a thriving gaming industry, but it is unclear if there is industry awareness or involvement in this Bill and its implications for gaming platforms. I declare an interest as a board member of Creative Scotland. Will the Minister elaborate on what consultation there has been with gaming companies across the UK, including in Scotland?
The Bill rightly recognises that children are a vulnerable group, but has thought been given to the definition of a child throughout the United Kingdom, because in Scotland it varies. The 2014 Act includes all children up to the age of 18, but there are instances where someone aged 16 may legally be treated as an adult, and other circumstances where disabled or care-experienced children can be included in children’s services until their 26th birthday. As other noble Lords have mentioned, people with physical disabilities, learning disabilities or mental health issues, people in care, people with addictions and many more of all ages could be classed as being vulnerable online. What is the data on looking at online harms from purely an age perspective?
I note that there is an obligation to consult disabled people on decision-making, but should not all those within the CRPD definition of disabled be within the scope of the consultation requirements of the Bill? I would like to see the consultation duties under Clauses 36 and 69 strengthened. I also support calls from other noble Lords for requirements to be placed on providers to risk-assess their customer base, and to provide basic safety settings set to “on” by default.
However, I do welcome the Bill. It is, as others have said, a landmark piece of legislation. We will be far better off with it on the statute book than we are now, but I hope we can get some of the details right as it makes its way through your Lordships’ House.
9.15 pm