Skip to content
Menu

Home FAQs How do I ensure my use of video conferencing calls complies with GDPR?

How do I ensure my use of video conferencing calls complies with GDPR?

With the loss of face-to-face meetings in the current situation, video conferencing has taken centre stage. But how do you do that in a compliant way? Here are some of the main high-level data protection issues to consider when selecting and implementing a new third party provider’s video conferencing system.

  1. Make sure you do your due diligence on the security measures offered by the provider. Clearly you can’t visit them, so look at the information offered publicly by the provider and read good quality, reliable, third party sources and ask the provider questions directly. Also ask any other organisations you know that use the provider. Document all this.
  2. If personal information is being sent outside of the UK/European Economic Area, make sure that transfer complies with GDPR. If it’s a US provider, is it registered in the EU-US Privacy Shield list or does it offer a model clause contract (you’re likely to need the 2010 version)? Or is the service provided from a country whose data protection laws offer equivalent protection to those in Europe? Look at the support service as well as the hosting. Document this.
  3. Make sure you put a compliant processor agreement in place. The provider should offer one as part of the contract terms. Check it meets GDPR requirements.
  4. You’re likely to need to update your privacy notice, particularly if you’re going to record calls. Provide participants with a short message and link to the privacy notice in the meeting invite and on any registration page.
  5. Create or update other GDPR-mandated documentation – for example, depending on your use, you may need a legitimate interests assessment and to update your record of processing.
  6. Finally, configure and use the system in a secure and compliant way. Look at the settings/options carefully and think through the security and compliance implications of each. That could include deciding who in the meeting can share their screen; whether or not you use passwords for participants; whether or not to record, and if you’re going to record, where to store the recording. Document your decisions and the reasons for them.

The ICO has said it understands that resources, whether they are finances or people, might be diverted away from usual compliance work during the pandemic. However the last thing you need at the moment is to create a bigger problem than the one you are trying to solve. So do the best you can, ask for help from one of our specialists if you need it, and keep the whole thing under review.

On 16 April 2020, Ian Hulme, the ICO’s Director of Assurance, posted a blog for business owners, employers and managers about how to safely roll out the latest video conferencing technology.

On 21 April 2020, the NCSC published security guidance for organisations on choosing, configuring and deploying video conferencing services.

Related FAQs

What tips can you share for remote mediations?

Remote mediations have become increasingly popular as a way of settling a dispute before it goes to court. There are a number of ways in which you can mediate remotely, but the most common platform is Zoom, due to its easy-to-use nature and the ability to have ‘break-out rooms’. We have answered some FAQs and set out a quick guide to remote mediations below.

What is remote mediation?

  • Mediation is a form of assisted negotiation, in which a neutral 3rd party mediator seeks to help the parties resolve their dispute. The process on the day is managed by the mediator and adopts certain key ground-rules. These are that discussions are private and cannot be referred to in court; and the process is entirely voluntary and non-binding, if and until a settlement is finalised. In the current pandemic mediations are now usually conducted remotely by video conference, instead of an in-person meeting.
  • The structure of the mediation will depend on the matters that are in dispute. Before the mediation the parties will exchange their views in position papers and prepare a bundle of the key documents.
  • Generally the parties will start the mediation in the same ‘room’ as the mediator, where they will be invited to set out their positions. The mediator will then put the parties into ‘break-out rooms’. These rooms serve as your own private ‘room’ which the mediator will join. You will therefore be able to have private discussions with the mediator without the other side being able to hear those discussions. The mediator will go between the ‘break-out rooms’ to discuss a party’s position further in order to attempt to reach a settlement.
  • If an agreement is reached, at the end of the mediation the Settlement Agreement will be drafted. The Settlement Agreement works as an enforceable contract. The Settlement Agreement will outline the details of what has been agreed and the intentions of the parties, such as any actions required, payments to be made and appropriate timescales. Each party will sign the Settlement Agreement, which can be done electronically.
  • It is not always possible to reach a resolution/agreement by mediation, but the mediator serves as an impartial third party in order to aid the process. If no agreement has been reached, the mediation may still prove useful as it will give you a better understanding of the other side’s position.

What should I do before the mediation to prepare?

  • Ensure that you are in an area with minimal distractions. Mediation is a confidential process, so make sure that you are in a private location.
  • Ensure that your microphone and camera work and that you have access to the online platform that will be used. We send our clients a link to the website in advance so that this can be tested out.
  • Consider any agreed dress code and dress appropriately.
  • Have a copy of the mediation bundle to hand, whether in hard or soft copy, and be aware of what documents are in there.

Any tips on what to do on the day?

  • Remember to make sure that before you have any private conversations with the mediator you are in your break-out room.
  • You may contact the mediator whilst being in the break-out room. On Zoom there is an ‘Ask for Help’ button on the screen. The mediator will then be prompted to join your room.
  • Ensure that you inform the mediator if you or others enter/leave the room. It is important that the mediator knows who is present.
  • Be mindful of body language and facial expressions as these can appear more enhanced on the screen, and they are easier to pick up in a remote mediation.
  • Stay calm and focussed at all times. When you have a dispute it is sometimes tricky to maintain a calm manner, but this is always vital in attempting to reach an agreement.
  • When engaging with the mediator avoid any external distractions such as text messages and emails, as it may come across that you are not interested in the process. It is important to pay attention so that you do not miss any dialogue which may be key to any agreement that is reached.
  • When you are in the break-out room without the mediator make sure that you take breaks and keep refreshed, as virtual mediations can be tiring.

Last updated on 27th January, 2021

Can furloughed workers still continue with union or non-union representation duties?

Yes, they can continue to undertake duties or activities for representative purposes. This includes individual or collective representation of their colleagues. They must not carry out any actual work or generate revenue for their employer or a linked or associated organisation.

Last updated on 5th May, 2020

OPPORTUNITY: Funding towards legal advice for North East SMEs

We have teamed up with Scaleup North East to help companies impacted by the coronavirus outbreak plan how to get back to business.

Our specialist lawyers will provide a free “diagnostic” call with eligible businesses across the NE, exploring challenges they are facing in the aftermath of the lockdown, and identify specific steps to survive, and then thrive, in these challenging times and beyond.

Through the collaboration with Scaleup North East, eligible North East-based SMEs are then able to apply for up to 40% funding towards up to £4,000 of legal advice.

These might include:

  • Employment issues, such as dealing with a phased return to work
  • Measures to support cash-flow, such as amendment to terms of trading and debt collection procedures
  • Renegotiations and amendments to contracts, and other advice about contracts with suppliers and customers to deal with consequences of Covid-19
  • Managing property costs – review of leases, advice on break clauses and formalisation of any revised arrangements recently put in place with landlords/tenants
  • Health and safety implications of return to work and social distancing

Find out more on our website or contact partner Damien Charlton.  If you are not eligible because of location but are interested in the free “diagnostic”, please contact us.

Last updated on 27th May, 2020

Can employers reduce their pension contributions?
  • Yes, if contributions to a defined contribution (“DC”) scheme exceed statutory minimum for auto-enrolment purposes, it may be possible to reduce employer contributions to the statutory minimum, but not further.
  • However, the processes required for reduction of DC employer contributions will necessitate obtaining legal advice:
    • Reducing employer contributions may require changes to the employment contracts of affected staff (as does the furlough process).
    • Reducing employer contributions may also require negotiation with trade unions or other staff representative forums.
    • Where group personal pensions are used, the contractual format may not permit changes of employer contributions, and hence it may also be necessary to enter into a new contractual arrangement. Choosing a new group personal pension plan is a not insignificant task in itself.
    • Employers with at least 50 employees are required to conduct a 60-day consultation process with affected employees if they propose to reduce employer contributions (but please see below).
    • Finally, it may require a change to the scheme rules and engagement with the scheme trustees if the scheme is operated under trust.
  • For DB schemes, specific considerations apply (see the last section, below).

Last updated on 14th April, 2020

Can employees on Flexible Furlough work as union or non-union representatives or as pension trustees?

Employees who are union or non-union representatives may undertake duties and activities for the purpose of individual or collective representation of employees or other workers. However in doing this, they must not provide services to or generate revenue for, or on behalf of your organisation or a linked or associated organisation.

Employees who are pension scheme trustees or trustee directors of a corporate trustee may also undertake trustee duties in relation to the pension scheme. However, a professional, independent pension scheme trustee who has been furloughed by the independent trustee company cannot undertake trustee work that would provide services to or generate revenue for, or on behalf of, the independent trustee company or any organisation linked or associated with that independent trustee company during hours when they are recorded as being on furlough.

Last updated on 16th June, 2020