A provision of the "foreign fighters" national security bill currently being considered by Parliament would allow the same department that accidentally published details of thousands of asylum seekers' identities to collect fingerprint and retina scans of every person entering and leaving Australia without legislative approval, store them and share them across government, creating a treasure trove of personal data that, if stolen, could never be amended or overwritten.