Foi Request foi-disclosure

UKGC Hides Cloud IT Spend and Performance Data

By Mark Sullivan · Fact-checked by James Hartley, Regulatory Affairs Editor

Regulator confirms use of Microsoft Azure but claims 'no information held' on budget or uptime in a recent FOI disclosure.

A Freedom of Information request has revealed the UK Gambling Commission uses Microsoft Azure for its cloud infrastructure. However, the regulator stated it holds no information on its IT budget, spending on cloud services, or system uptime, raising questions about its technological transparency.

UKGC Hides Cloud IT Spend and Performance Data
Illustration for UKGC Hides Cloud IT Spend and Performance Data

UKGC Reveals Cloud Provider But Not Key Metrics

A Freedom of Information (FOI) request has revealed that the UK Gambling Commission (UKGC) uses Microsoft's Azure platform for its cloud infrastructure. However, the regulator stated it holds no recorded information regarding its IT budget, system uptime, or the criteria used to select the provider.

The disclosure, stemming from a request made on 26 April 2023, provides a rare but limited glimpse into the technological backbone of the organisation responsible for regulating the UK's gambling industry.

Why This Data Matters

The UKGC's IT systems are critical for its core functions, including managing operator licences, handling sensitive data, and overseeing regulatory compliance. The performance, security, and cost-effectiveness of this infrastructure are directly relevant to consumers and the industry, as the Commission is funded by the licence fees paid by operators.

Transparency around IT spending and system reliability allows for public scrutiny of the regulator's operational efficiency. Without access to metrics like system uptime or budget allocation, it is impossible for stakeholders to assess whether the Commission is managing its technological resources effectively.

A Lack of Recorded Information

The FOI request sought comprehensive details about the UKGC's use of cloud services. While the Commission confirmed its supplier, its response to most questions was that it held no information.

The specific information requested, and to which the UKGC stated "no information held," included:

  • The annual IT budget over the last five years and the percentage spent on cloud services.
  • The uptime of the cloud infrastructure.
  • The criteria used to choose a cloud provider.
  • The duration of time the UKGC has been utilising cloud infrastructure.
  • Case studies on its 'Cloud-first' strategy.

Under the Freedom of Information Act 2000, a response of "information not held" means the public authority claims it does not have the requested information in a recorded format. This is different from an exemption, where an authority refuses to release information it does hold for reasons such as commercial sensitivity or security.

Significance for the Industry

The single piece of data released confirms the UKGC relies on a major, reputable cloud provider in Microsoft Azure. However, the declaration that basic operational metrics like budget and system uptime are not held is a significant finding.

For a major public body, the absence of recorded data on IT expenditure and performance raises questions about internal record-keeping and accountability. It prevents any independent assessment of the regulator's technological competence and financial management, leaving consumers and industry observers in the dark about the efficiency of the systems that underpin UK gambling regulation.

M

Written by

Corporate Investigations Editor

ACAMS Certified (Association of Certified Anti-Money Laundering Specialists). BSc Criminology, University of Manchester.

Mark has 15 years of experience in financial crime and corporate due diligence, including a role as Intelligence Analyst at the Serious Organised Crime Agency (SOCA) specialising in money laundering through gaming.

UKGC Freedom of Information FOI IT Cloud Infrastructure Azure Regulatory Transparency

More Insights