Do I need to give a personal guarantee to access finance under the Coronavirus Business Interruption Loan Scheme (CBILS)?

The Information Commissioner’s Office (ICO) announce new guidance in light of coronavirus.

The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/

The ICO has stated the following:

“Data protection is not a barrier to increased and different types of homeworking. During the pandemic, staff may work from home more frequently than usual and they can use their own device or communications equipment. Data protection law doesn’t prevent that, but you’ll need to consider the same kinds of security measures for homeworking that you’d use in normal circumstances.”

Whether you work from home or in the office, you still need to comply with data protection laws. While you need to process personal data with the same care you use in the office, the home working environment throws up specific data protection concerns particularly in respect of data security. You should make sure you have a home working policy which deals with data protection and these data security issues.

 Organisations must ensure that, for staff who can work from home, their obligations in respect of processing personal data are clearly communicated. Organisations may already have a home working policy – if this is the case, then this should be reviewed to ensure it remains relevant and up-to-date for practices during this pandemic.

• Trusts should allow for telephone advice rather than face-to-face review from critical care when clinically appropriate.
• Hospitals should discuss the sharing of resources and the transfer of patients between units, including units in other hospitals, to ensure the best use of critical care within the NHS.

Please note, the above is intended to provide a summary of the key recommendations which emerge from this guidance. Access to the full guidance can be found here.

The Confederation of British Industry

“What you need to know about coronavirus and how it will impact your business”. This includes the very influential and highly regarded daily webinars hosted by Director General Dame Carolyn Fairburn.
https://www.cbi.org.uk/coronavirus-hub/

The Entrepreneurs’ Forum

Links to valuable resources collected by the Entrepreneurs’ Forum team as requested by its members and partner network, including on People, Finances, Physical and Mental Wellbeing, Technology and Leadership.
https://entrepreneursforum.net/support-hub

RTC North

Billed as containing “all the UK government information in one place”, this resource includes information on access to finance, employees, planning and leadership, Growth hub toolkits, and working from home.
https://www.rtcnorth.co.uk/covid-19/

Newcastle Gateshead Initiative (NGI)

Businesses across the UK and around the world are sharing their expertise in everything from remote working to business planning. The team at NGI have collated some of the most useful resources, alongside its own content which is designed to help partner organisations and other businesses across North East England.
https://www.ngi.org.uk/covid-19-business-resources/

North East of England Chamber of Commerce

The NEECC brings together its latest advice and guidance for businesses, as well as some of its own FAQs.
https://www.neechamber.co.uk/covid-19

Greater Manchester Chamber of Commerce

The Chamber has pulled together information about how it and others in the area are supporting all businesses during the Covid-19 outbreak.
https://www.gmchamber.co.uk/covid-19-coronavirus/

North East Growth Hub

The North East Growth Hub toolkit is intended to provide businesses with the latest advice, guidance and support available from government in response to the COVID-19 pandemic. Topics covered include:

• Financial support available for businesses
• Official guidance for employees, employers and businesses
• Advice on effective home working
• How to care for staff/suppliers/customers and prevent the spread of COVID-19

https://www.northeastgrowthhub.co.uk/toolkits/covid-19-coronavirus-toolkit

Pro-Manchester

Links to valuable resources collected by the Pro-Manchester team, including national Government support and advice, regional support and cyber security advice.

https://www.pro-manchester.co.uk/home/covid-19-support/

Innovation SuperNetwork

The Innovation SuperNetwork, a “network of networks”, detail on their website what their team of Innovation Managers are offering during these difficult times, as well as details of funding available, and what is being offered by their numerous partners.

https://supernetwork.org.uk/

Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.

• Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
• Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
• Only use the information for the purpose of managing the workforce during the pandemic.
• Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
• Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
• Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
• Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
• Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
• Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
• All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.

If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.

** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.

See above FAQ about whether you can demand that your employee has the vaccine.

Dismissal for failing to follow a reasonable instruction would be a possibility but it should be the last resort.

First you will need to be able to show that you have reasonable grounds for insisting that they have the vaccine. You will then need to demonstrate that you have taken into consideration the reasons why the employee has refused and why they are not considered reasonable. Before taking a decision to dismiss you should look at alternatives such as other duties/other roles.