RIPA
So what happens if a malicious agency (e.g. pensions or a local council) decides to use RIPA - to quote from the relevant code of practice
https://assets.publishing.service.gov.uk/government/uploads/system/uploads/attachment_data/file/496064/53659_CoP_Communications_Accessible.pdf
"3.8. Section 2 of RIPA defines “telecommunication service” as any
service that consists in the provision of access to, and of facilities for
making use of, any telecommunication system. Section 2(8A) of RIPA
makes clear that any service which consists in or includes facilitating
the creation, management or storage of communications transmitted,
or that may be transmitted, by means of such a system are included
within the meaning of “telecommunications service”. Internet based
services such as web-based email, messaging applications and cloudbased services are, therefore, covered by this definition. The
definition of “telecommunications service” in RIPA is intentionally
broad so that it remains relevant for new technologies. "
So RIPA does cover this anonymous data. Perhaps the local police will use it to identify alleged breaches of the lock in (sorry, but it's not really that) and prosecute?
Not saying we shouldn't do it, am saying it is neither anonymous nor secure under today's laws and as such theoretical arguments about potential hacks or potential state access are inappropriate - the state already has legal access to the data and with so many different organisations having those powers then private enterprise will probably not ever get a look in.