NVI-002 Consent-Based Vulnerability Verification™

SAFECHAIN™ | NATIONAL VULNERABILITY VERIFICATION INFRASTRUCTURE™

NVI™ — Publication No. NVI-002

CONSENT-BASED VULNERABILITY

VERIFICATION™

The Governance Architecture for Consent, Proportionality, and Lawful Intelligence Sharing

Document Reference: NVI-002

Series: National Vulnerability Verification Infrastructure™ (NVI™)

Series Position: Core Governance Paper — Consent and Rights Architecture

Author: Samantha Avril-Andreassen FRSA

Status: Published

Version: 1.0

Date: June 2026

Classification: Public — Institutional Distribution

Publisher: SAFECHAINN Ltd (Company No. 12038453)

Executive Summary

Consent-Based Vulnerability Verification™ is the governance paper that defines the consent architecture, proportionality framework, lawful sharing standards, verification permissions model, and human rights safeguards that govern every act of safeguarding intelligence exchange within the National Vulnerability Verification Infrastructure™ (NVI™). It is one of the most important governance documents in the entire SAFECHAIN™ ecosystem — because without a rigorous, rights-respecting consent and lawful sharing framework, the NVI™ cannot operate in a manner consistent with the fundamental rights of the people it exists to protect.

This paper addresses a central tension in safeguarding governance: the tension between the imperative to share intelligence to protect vulnerable people and the fundamental right of those people to control information about themselves. This tension is not resolved by privileging one value over the other. It is resolved by designing a governance framework that enables the sharing required for effective safeguarding while maintaining the rights protections that human dignity demands. Consent-Based Vulnerability Verification™ is that framework.

The paper is structured across nine sections addressing: the governance tension it resolves; the formal consent architecture; the lawful bases for sharing; proportionality standards; the verification permissions model; the safeguarding versus privacy balancing framework; the human rights safeguards; the exceptions framework for cases where consent cannot be obtained; and the individual rights regime within the NVI™.

This paper should be read alongside NVI-001 (National Vulnerability Verification Infrastructure™) and NVI-004 (Vulnerability Verification Standards™). The consent governance defined here operates across all five layers of the NVI™ infrastructure model.

1. The Governance Tension: Protection and Privacy

1.1 The Case for Sharing

The case for sharing safeguarding intelligence across institutional boundaries is established comprehensively in the SAFECHAIN™ governance series and in the SIS™ publications. The domestic abuse survivor whose risk profile is invisible to the housing authority that rehouses her; the patient whose trauma history is not transmitted to the court that misreads her presentation; the bank customer whose coercive debt history is unknown to the creditor now pursuing her — these are not theoretical harms. They are documented, systematic, and foreseeable consequences of a safeguarding system that does not share intelligence effectively.

The legal basis for sharing is equally established. The Domestic Abuse Act 2021, the Care Act 2014, the Children Act 1989, and the statutory guidance issued under each of them create duties to share information in safeguarding contexts. The Human Rights Act 1998 creates positive obligations under Articles 2 and 3 ECHR to take reasonable steps to protect individuals whose safety is at risk. The UK GDPR and Data Protection Act 2018, properly interpreted, enable safeguarding information sharing that meets defined standards. The case for sharing is strong, legally grounded, and morally compelling.

1.2 The Case for Privacy

The case for privacy is equally compelling — and no less legally grounded. Article 8 ECHR protects the right to respect for private and family life, home, and correspondence. The UK GDPR establishes data subjects' rights over their personal data, including special category data relating to health, vulnerability, and victimhood. The DPA 2018 imposes criminal sanctions for unlawful data processing. The common law duty of confidentiality applies to information shared in healthcare, legal, and other professional contexts.

But beyond the legal framework, there is a human dignity dimension to privacy that is directly relevant to safeguarding contexts. People who have experienced abuse, coercion, and institutional harm have already had their autonomy and control systematically violated. An NVI™ that compounds that violation — by circulating their most intimate vulnerability information without adequate consent governance, without rights preservation, and without accountability — would not be a safeguarding infrastructure. It would be a surveillance system wearing a safeguarding mask.

1.3 The Resolution: Consent-Based Verification

Consent-Based Vulnerability Verification™ resolves the tension not by choosing between protection and privacy but by designing the conditions under which they can both be achieved. The NVI™ can be an effective safeguarding intelligence infrastructure and a rights-respecting one — but only if its consent governance, proportionality standards, and rights protections are as rigorously designed as its technical and verification standards. This paper provides that design.

2. The Formal Consent Architecture

2.1 The NVI™ Consent Model

The NVI™ does not operate on a simple opt-in or opt-out consent model. It operates on a structured, tiered consent architecture that recognises the complexity of safeguarding contexts — the variety of purposes for which intelligence may be shared, the different institutions that may need access, the different timeframes involved, and the different capacity and circumstances of the individuals whose intelligence is in the network. The architecture has four tiers:

Consent Tier

Definition and Application

Tier 1 — Active Informed Consent

The person has been informed about the NVI™ in accessible terms, has understood the purposes and scope of intelligence sharing, and has given specific, affirmative consent to defined categories of sharing with defined institutions for defined purposes. This is the preferred and highest-quality consent tier.

Tier 2 — Informed Non-Objection

The person has been informed about the NVI™ and the specific sharing proposed, has had the opportunity to object, and has not objected. Applied where full active consent cannot be obtained but the person has the capacity and opportunity to decline. Requires proactive, accessible information provision and a clear, easy objection mechanism.

Tier 3 — Substituted Consent

Applied where the person does not have capacity to give or withhold consent. A substitute decision-maker (under the Mental Capacity Act 2005 best interests framework, or a court-appointed guardian) exercises consent on their behalf. Substituted consent must be documented, reviewed regularly, and subject to the standard proportionality assessment.

Tier 4 — Statutory Override

Applied in defined circumstances where the safeguarding risk is sufficiently serious to engage statutory duties that override consent — including immediate risk of serious harm, child protection, and defined public safety grounds. Statutory Override is subject to the most stringent documentation, oversight, and accountability requirements within the NVI™ framework.

2.2 Consent Quality Standards

For consent to be valid within the NVI™ framework, it must meet five quality standards drawn from the UK GDPR consent requirements and the case law of the European Court of Human Rights:

•       Freely given: Consent must not be a condition of receiving safeguarding support or other services. Institutions may not make access to services contingent on NVI™ consent.

•       Specific: Consent must relate to defined purposes, defined institutions, and defined categories of intelligence — not to unlimited sharing for undefined safeguarding purposes.

•       Informed: The person must have received, in an accessible format and language, accurate information about what the NVI™ is, what intelligence will be shared, with whom, for what purposes, and for how long.

•       Unambiguous: Consent must be expressed through a clear, affirmative act — not inferred from silence, pre-ticked boxes, or the failure to object.

•       Withdrawable: Consent can be withdrawn at any time without detriment to the person's access to services. Withdrawal procedures must be accessible and effective.

2.3 Consent Recording and Maintenance

All consent within the NVI™ must be recorded in a Consent Record that is maintained within the NVI™ accountability architecture and accessible to both the institution that obtained it and the individual who gave it. The Consent Record includes: the date and circumstances of consent; the consent tier applied; the information provided to the person; the purposes and institutions covered; the review date; and any conditions or limitations on the consent. Consent Records are reviewed at defined intervals — not less than annually — and updated whenever the purposes, institutions, or scope of sharing change materially.

3. Lawful Bases for NVI™ Intelligence Sharing

Every act of intelligence sharing within the NVI™ must have a specific, documented lawful basis under the UK GDPR and DPA 2018. The following lawful bases apply within the NVI™ framework, each with defined conditions and accountability requirements:

Legal Basis

UK GDPR Article

NVI™ Application

Substantial public interest

Art. 9(2)(g)

Primary basis for NVI™ sharing — applies where sharing is necessary for the safeguarding purpose and meets proportionality standards.

Vital interests

Art. 9(2)(c)

Applies in acute risk contexts where the person cannot consent and sharing is necessary to protect their life or the life of another.

Legal claims

Art. 9(2)(f)

Applies to accountability tracing records used in legal or regulatory proceedings.

Explicit consent

Art. 9(2)(a)

Applies where Tier 1 Active Informed Consent has been obtained — highest-quality basis, preferred where achievable.

Preventive medicine / social protection

Art. 9(2)(h)

Applies to healthcare and social care participants sharing clinical and social care intelligence within the NVI™.

Archiving / research (anonymised)

Art. 9(2)(j)

Applies where anonymised NVI™ intelligence is used for safeguarding research or policy development under GDPR research exemptions.

Every NVI™ intelligence sharing event must document the specific lawful basis applied, the assessment of the conditions that basis requires, and the proportionality assessment that confirms the sharing is no broader than necessary. This documentation forms part of the accountability record maintained in Layer 4 of the NVI™ infrastructure.

4. Proportionality Standards

4.1 The Proportionality Principle in NVI™ Governance

Proportionality is not an abstract legal principle within the NVI™ — it is an operational standard. Every act of intelligence sharing must be assessed against the NVI™ Proportionality Standard before it proceeds. The Standard requires that sharing is: necessary for the identified safeguarding purpose; the least privacy-intrusive means of achieving that purpose; appropriately scoped in terms of the intelligence shared, the institutions with access, and the duration of access; and proportionate to the risk the sharing is designed to address.

4.2 The Four-Dimension Proportionality Assessment

The NVI™ Proportionality Assessment covers four dimensions:

•       Scope proportionality: Is the category and extent of intelligence to be shared the minimum necessary for the identified safeguarding purpose? Intelligence that addresses a housing safety need does not justify sharing health records unless the health record is directly relevant to the housing risk.

•       Institutional proportionality: Is access being granted only to the institutions with a direct and current safeguarding responsibility relevant to the sharing purpose? Access is not granted to institutions with a historical or speculative future interest.

•       Temporal proportionality: Is the duration of access limited to the period necessary for the safeguarding purpose? Access is not granted indefinitely — each access event has a defined end-point, with renewal subject to fresh proportionality assessment.

•       Risk proportionality: Is the privacy intrusion involved in the sharing proportionate to the safeguarding risk being addressed? Minor safeguarding risks do not justify comprehensive intelligence disclosure; severe and imminent risks may justify broader sharing under Statutory Override.

4.3 Proportionality Documentation

Every Proportionality Assessment is documented in the NVI™ accountability record before sharing proceeds. The documentation records: the safeguarding purpose; the intelligence proposed to be shared; the institutional recipients; the proposed access duration; the assessment of necessity, scope, institutional, temporal, and risk proportionality; and the name and role of the practitioner who conducted the assessment. Proportionality documentation is auditable by the NVI™ Oversight Body and by the individuals whose intelligence is being shared.

5. The Verification Permissions Model

5.1 What Verification Permissions Govern

The Verification Permissions Model governs which institutions can verify what intelligence, in what contexts, and subject to what conditions. Verification within the NVI™ is not a mechanical quality check — it is a governance act that requires institutional authority, practitioner qualification, and accountability documentation. The Permissions Model defines the scope of that authority and the conditions under which it is exercised.

5.2 Permission Categories

The NVI™ defines four categories of verification permission:

Permission Category

Scope and Conditions

Primary Verification Authority

Held by institutions that are the primary generators of a category of safeguarding intelligence — e.g., police forces for risk-based intelligence, NHS Trusts for clinical vulnerability intelligence. Primary Verification Authority includes the right to verify intelligence in the relevant category generated by any participating institution.

Sector Verification Authority

Held by institutions with sector-specific expertise — e.g., IDVA services for domestic abuse risk intelligence, housing specialists for housing vulnerability intelligence. Sector Verification Authority covers verification of intelligence within the defined sector, subject to the quality standards of NVI-004.

Institutional Self-Verification

Available to Full Participants for intelligence generated within their own systems. Self-verification is subject to enhanced audit oversight — the NVI™ Oversight Body conducts regular sampling reviews of self-verified intelligence.

Independent Verification

Conducted by the NVI™ Standards Board or appointed independent verifiers for intelligence that cannot be verified by existing participants due to conflict of interest, capability gaps, or the absence of an appropriate sector verifier.

5.3 Verification Permissions and Consent

Verification is a data processing act that requires its own lawful basis, separate from the lawful basis for sharing. The act of a verifier accessing intelligence to conduct quality assessment is governed by the verification permissions model — but it also requires that the individual's consent architecture extends to verification activities, or that verification is covered by the substantial public interest basis applicable to NVI™ operations. The NVI™ Consent Record includes a specific consent dimension for verification activities, ensuring that individuals understand that their intelligence may be accessed by verifiers in addition to institutional users.

6. Safeguarding Versus Privacy: The Balancing Framework

6.1 When Safeguarding and Privacy Conflict

The most difficult governance questions within the NVI™ arise when the safeguarding imperative and the privacy right directly conflict — not in the minor way that can be resolved by proportionality assessment, but in the fundamental way that requires a principled decision about which value takes precedence in defined circumstances. The NVI™ Balancing Framework provides the governance structure for these decisions.

The Framework identifies three scenarios in which safeguarding and privacy conflict most acutely: where the person refuses consent to sharing that the institution believes is necessary to protect their safety; where sharing intelligence about one person is necessary to protect the safety of another; and where historic intelligence, retained within the network, conflicts with the person's current wish for privacy.

6.2 The Conflict Resolution Hierarchy

The NVI™ applies a defined conflict resolution hierarchy to safeguarding-privacy conflicts:

1.     Always exhaust consent-based alternatives before proceeding without consent. If creative, accessible, trauma-informed approaches to securing consent have not been tried, they must be tried before conflict resolution is engaged.

2.     Apply the Statutory Override criteria rigorously. Statutory Override is available only where the safeguarding risk is serious, imminent, and not addressable through privacy-respecting means. It is not a convenience provision.

3.     Where Statutory Override is applied, implement full accountability documentation immediately, notify the individual as soon as is safe to do so, and trigger an independent review of the override decision within 28 days.

4.     Where the conflict involves the safety of a third party rather than the individual themselves, apply the Significant Risk threshold: sharing without consent is available only where the risk to the third party is serious, credible, and not addressable through the individual's cooperation.

5.     In all conflict cases, document the decision, the reasoning, the alternatives considered, and the review mechanism — and submit the documentation to the NVI™ Oversight Body within 72 hours.

6.3 The Non-Weaponisation Principle

The NVI™ governance framework includes a specific Non-Weaponisation Principle: the NVI™ and the safeguarding intelligence within it may never be used as a tool of control, coercion, or harm against the individuals whose protection is its purpose. Abusers, perpetrators, and coercive partners must have no access to NVI™ intelligence. Institutions using NVI™ intelligence to justify decisions that harm, restrict, or control vulnerable individuals rather than protect them are in fundamental breach of the NVI™ participation obligations and subject to immediate escalation to the NVI™ Oversight Body.

The Non-Weaponisation Principle requires specific system design: access controls that exclude perpetrators from intelligence about their victims; governance processes that detect and investigate institutional use of NVI™ intelligence in harmful ways; and an independent reporting mechanism through which individuals can raise concerns that their NVI™ intelligence is being misused.

7. Human Rights Safeguards

7.1 Article 8 ECHR: The Right to Private and Family Life

Every aspect of the NVI™ consent and sharing framework is designed to meet the Article 8 ECHR test: that any interference with the right to private and family life is in accordance with the law, necessary in a democratic society, and proportionate to the legitimate aim pursued. The legitimate aim — the protection of vulnerable people from serious harm — is clearly established. The NVI™'s consent architecture, proportionality standards, accountability governance, and individual rights regime provide the in accordance with the law and proportionality requirements.

The positive dimension of Article 8 is equally relevant: the right to respect for private and family life includes the right to be protected from serious threats to personal safety. The NVI™ serves the Article 8 positive obligation as well as respecting its negative dimension — it is not only a data governance framework but a human rights instrument.

7.2 Article 2 ECHR: The Right to Life

Where safeguarding intelligence sharing is necessary to prevent a serious threat to life, Article 2 ECHR's positive obligation to take reasonable steps to protect life provides both the legal basis for sharing and the human rights imperative that demands it. The NVI™'s Statutory Override provisions — the Tier 4 consent level and the Statutory Override lawful basis — are designed to be available in precisely these circumstances, ensuring that the infrastructure designed to protect life can function even when consent governance cannot be completed in the time available.

7.3 Article 14 ECHR: The Prohibition of Discrimination

The NVI™ consent and sharing framework must be applied consistently across all individuals regardless of protected characteristics. The NVI™ Oversight Body conducts regular equality impact assessments of NVI™ operation to identify and address any patterns of discriminatory application — including patterns in which consent is more readily overridden for individuals from particular demographic groups, or in which access to NVI™ intelligence is less readily available for individuals whose vulnerability presentation does not conform to dominant cultural expectations.

7.4 Article 6 ECHR: The Right to a Fair Trial

Where NVI™ intelligence is used in legal proceedings — including family court proceedings, care proceedings, and criminal proceedings — the Article 6 right to a fair trial requires that the intelligence is disclosed appropriately to all parties, that its provenance and verification status are transparent, and that its use in proceedings is subject to judicial scrutiny. The NVI™ framework does not authorise the use of intelligence in proceedings in a way that would breach Article 6's equality of arms requirement.

8. The Exceptions Framework

8.1 When Consent Cannot Be Obtained

The NVI™ recognises that there are circumstances in which consent cannot be obtained before safeguarding intelligence sharing is necessary to prevent harm. These are not preferred circumstances — they are defined exceptions with strict governance requirements. The four categories of exception are:

•       Acute risk of serious harm: Where immediate sharing is required to prevent serious injury or death and the delay required to obtain consent would itself create or increase the risk. Sharing must be documented and reviewed within 24 hours.

•       Incapacity: Where the individual lacks capacity to give or withhold consent and the Mental Capacity Act 2005 best interests framework supports sharing. Substituted consent through an appropriate representative must be sought before or immediately after sharing.

•       Safeguarding of third parties: Where sharing is necessary to protect a named individual who cannot protect themselves and who faces a serious, credible risk from the person whose information is to be shared. Subject to the Significant Risk threshold.

•       Court order: Where sharing is required by the order of a court of competent jurisdiction. NVI™ participants must comply with court orders but must also notify the NVI™ Oversight Body and document the order within the accountability record.

8.2 Exception Governance Requirements

All sharing under an exception category requires: immediate documentation in the NVI™ accountability record; notification to the NVI™ Oversight Body within the timeframe specified for the exception category; retrospective consent engagement as soon as is safe and practicable; and independent review of the exception decision within the defined review period. Institutions that routinely rely on exception categories rather than developing effective consent engagement practices are subject to the capability development provisions of the Institutional Trust Framework™ (NVI-005).

9. Individual Rights Within the NVI™

9.1 The Right to Know

Every individual whose intelligence is held within the NVI™ network has the right to know that it is there. The NVI™ operates a proactive information provision obligation: participating institutions must inform individuals, at the point of intelligence generation, that their information may be submitted to the NVI™, what that means, and how they can exercise their rights within the network. Information must be provided in accessible formats and in the individual's preferred language.

9.2 The Right to Access

Individuals have the right to access their own intelligence within the NVI™ network — to receive a copy of the intelligence held about them, the institutions that have accessed it, the purposes for which it was shared, and the verification status of each record. Subject access requests within the NVI™ are processed within the UK GDPR timeframes (one month, extendable to three months in complex cases) and are free of charge. The NVI™ subject access mechanism is designed to be accessible to individuals with limited digital literacy, language barriers, or cognitive impairment.

9.3 The Right to Correct

Where an individual believes that intelligence held about them within the NVI™ is inaccurate, they have the right to request correction. Correction requests are assessed against the evidence — they are not automatic — but where intelligence is shown to be inaccurate, it is corrected or removed from the network. Where a correction is disputed, the dispute is referred to the NVI™ Appeals and Complaints Mechanism for independent resolution.

9.4 The Right to Challenge

Individuals have the right to challenge any sharing decision affecting their NVI™ intelligence — whether on consent, proportionality, lawful basis, or human rights grounds. Challenges are addressed through the NVI™ Appeals and Complaints Mechanism. Where a challenge is upheld, the sharing decision is reversed, the intelligence is removed from the access record of the institution that accessed it, and the accountability record is updated to reflect the outcome.

9.5 The Right to Withdraw

Individuals may withdraw their consent for NVI™ intelligence sharing at any time. Withdrawal is prospective — it does not remove past sharing from the accountability record — but it immediately removes the consented basis for future access. Where consent withdrawal leaves an active safeguarding risk unaddressed, the institution responsible for that risk must assess whether an exception category applies and, if not, must manage the risk through consent-based means.

Consent-Based Vulnerability Verification™ is the governance document that makes the NVI™ trustworthy. Without it, the NVI™ would be a powerful tool for safeguarding that is simultaneously a potential vehicle for harm. With it, the NVI™ is an infrastructure that can be used — with confidence, with accountability, and with the full weight of human rights law behind every decision it enables.

COPYRIGHT NOTICE

© 2026 Samantha Avril-Andreassen. All rights reserved.

SAFECHAINN Ltd (Company No. 12038453).

SAFECHAIN™, National Vulnerability Verification Infrastructure™ (NVI™), Safeguarding Intelligence Series™ (SIS™), Recognition Intelligence™, Continuity Intelligence™, Vulnerability Intelligence™, Accountability Intelligence™, Predictive Safeguarding™, The Vulnerability Intelligence Framework™, Consent-Based Vulnerability Verification™, National Safeguarding Intelligence Exchange™, Vulnerability Verification Standards™, Institutional Trust Framework™, and all associated methodologies, frameworks, governance models, verification infrastructures, safeguarding systems, interoperability architectures, intelligence models, implementation models and intellectual constructs are proprietary intellectual property authored and developed by Samantha Avril-Andreassen.

No reproduction, implementation, adaptation, deployment, AI training, machine learning ingestion, commercialisation, derivative development, institutional adoption, regulatory implementation, governmental implementation, software development, systems development, framework replication, architecture replication or operational implementation of any component of the SAFECHAIN™ ecosystem may occur without the prior written permission of Samantha Avril-Andreassen and SAFECHAINN Ltd.

The SAFECHAIN™ Master Publication Register™ remains the sole authoritative source of publication status, architecture lineage, governance authority, terminology control, implementation hierarchy, version control and intellectual property provenance.