LAN contracts

FOI request reference: F0061382
Publication date: March 2020

Request

Please can you send me the organisation’s Local Area Network (LAN) contract, which may include the following:

·        Support and Maintenance- e.g. switches, router, software etc
·        Managed- If this includes services than just LAN.

1. Contract Type: Managed or Maintenance
2. Existing Supplier: Who is the current supplier?
3. Annual Spend for each supplier: What is the annual average spending on the supplier above? If there is more than one supplier please split the annual averages spend for each supplier.
4. Number of Users: Please can you provide me with the number of users this contract covers. Approximate number of users will also be acceptable.
5. Number of Sites: The number of sites, where equipment is supported by each contract.
6. Hardware Brand: What is the hardware brand of the LAN equipment?
7. Contract Description: Please provide me with a brief description of the overall contract.

8. Contract Duration: What is the duration of the contract is and can you please also include any extensions this may include.
9. Contract Expiry Date: When does the contract expire?
10. Contract Review Date: When will the organisation is planning to review the contract?
11. Responsible Officer: Contact details including name, job title, contact number and email address?

If the LAN maintenance is included in-house please include the following information:

1. Hardware Brand: What is the hardware brand of the LAN equipment?
2. Number of Users: Please can you provide me with the number of users this contract covers. Approximate number of users will also be acceptable.
3. Number of Sites: Estimated/Actual number of sites the LAN covers.
4. Responsible Officer: Who within the organisation is responsible for LAN please provide me with contact details including name, job title, contact number and email address?

If the contract is managed by a 3rd party e.g. Can you please provide me with

1. Existing Supplier: Who is the current supplier?
2. Number of Users: Please can you provide me with the number of users this contract covers. Approximate number of users will also be acceptable.
3. Number of Sites: Estimated/Actual number of sites the LAN covers.
4. Contract Type: Managed, Maintenance, Installation, Software
5. Hardware Brand: What is the hardware brand of the LAN equipment?
6. Contract Description: Please provide me with a brief description of the overall contract.
7. Contract Duration: What is the duration of the contract is and can you please also include any extensions this may include.
8. Contract Expiry Date: When does the contract expire?
9. Contract Review Date: When will the organisation is planning to review the contract?
10. Responsible Officer: Who within the organisation is responsible for each of these contract(s) please provide me with contact details including name, job title, contact number and email address?

 

Outcome

Successful

 

Response

We are unable to provide you with some of the information you have requested because it is covered by the exemption at section 31 (1) (a) of the FOI Act, which exempts information if disclosure would prejudice the prevention or detection of crime. For further information about why this exemption has been applied, please see the explanatory Annex at the end of this email.

Some of the information is also covered by the exemption at section 40(2) of the FOIA. This exempts the release of personal information about a ‘third party’ (someone other than the requester), if revealing it would break the terms of Data Protection Legislation. For further information about why this exemption has been applied, please see the explanatory Annex at the end of this email.

Please find below the requested information. LAN Maintenance is managed in-house, as such we have only provided information relating to that part of your request.

If the LAN maintenance is included in-house please include the following information:

1. Hardware Brand: What is the hardware brand of the LAN equipment?

Information regarding specific hardware brands and versions is exempt under section 31 (1) (a) of the FOI Act.

2. Number of Users: Please can you provide me with the number of users this contract covers. Approximate number of users will also be acceptable.

Approximately 530 staff users plus public visitors

3. Number of Sites: Estimated/Actual number of sites the LAN covers.

One

4. Responsible Officer: Who within the organisation is responsible for LAN please provide me with contact details including name, job title, contact number and email address?

We are unable to provide you with this information because it would identify a junior member of staff and as such is exempt from release under section 40(2) of the FOI Act. However, at The National Archives we apply the general principle that members of staff at Head of Department level and above are sufficiently senior for their names and/or job titles to already be in the public domain and are therefore not exempt from release.

The Head of IT Operations at The National Archives is Julian Muller.

The National Archives’ full contact options can be found on our website here:  http://apps.nationalarchives.gov.uk/contact/

 

Explanatory Annex

Exemptions applied:

Section 31: Law Enforcement
We are unable to provide you with information regarding hardware brands and specific contract end dates because this information is exempt from disclosure under section 31 (1) (a) of the FOI Act. Section 31 (1) (a) exempts information if its disclosure is likely to prejudice the prevention or detection of crime.

Section 31 is a qualified exemption and we are required to conduct a public interest test when applying any qualified exemption. This means that after it has been decided that the exemption is engaged, the public interest in releasing the information must be considered. If the public interest in disclosing the information outweighs the public interest in withholding it then the exemption does not apply and the information must be released. In the FOI Act there is a presumption that information should be released unless there are compelling reasons to withhold it.

The public interest has now been concluded and the balance of the public interest has been found to fall in favour of withholding information covered by the section 31 (1) (a) exemption. Considerations in favour of the release of the information included the principle that there is a public interest in transparency and accountability in disclosing information about government procedure and contracts. However, release of this information would make The National Archives more vulnerable to crime. The crime in question here would be a malicious attack on The National Archives’ computer systems. As such release of this information would be seen to prejudice the prevention or detection of crime by making The National Archives’ computer system more vulnerable to hacking. There is an overwhelming public interest in keeping government computer systems secure which would be served by non-disclosure. This would outweigh any benefits of release. It has therefore been decided that the balance of the public interest lies clearly in favour of withholding the material on this occasion.

Further guidance on section 31 can be found here:
https://ico.org.uk/media/for-organisations/documents/1207/law-enforcement-foi-section-31.pdf

Section 40(2): Personal Information where the applicant is not the data subject
Data Protection Legislation prevents personal information from release if it would be unfair or at odds with the reason why it was collected, or where the subject had officially served notice that releasing it would cause them damage or distress.

In this case the exemption applies because this information represents the personal information of a junior member of staff at The National Archives.

Publishing the names and contact details of junior members of staff is considered an unfair use of personal data. Junior members of staff would have no expectation that information about their positions would be made available in the public domain; to do so would be unfair and contravene Art. 5 of the General Data Protection Regulation. As such, the names, positions and contact details of junior officials are withheld under section 40 (2) of the FOI Act.

Further guidance can be found at:

https://ico.org.uk/media/for-organisations/documents/1213/personal-information-section-40-regulation-13.pdf