As anyone in the NHS knows
This is born of frustration from universities to gain access to NHS data, they have a handful of hoops to jump through to justify the access they can get, it's literally a few hours work a bit of thinking and they can gain access to millions of records all perfectly legally and after authorisation by the appropriate Caldicott Guardians etc.
They want to skip this and just get the data, they'll bang on about how we've got the DPA and GDPR to protect the data but forget that those pieces of legislation require data owners to protect the data they want wholesale access to; as it's perfectly fine for them not to give a toss when it's not them who the public will blame when they screw up.