How much data can I gather?
You also need to consider other aspects of data protection.
Be proportionate – only gather and use Covid-19 data where you need to.
Keep data to a minimum – you shouldn’t gather more data than you need. You need to know someone has Covid-19 but you don’t need to know all their symptoms. Data minimisation also applies to who gets access to the data. It’s unlikely that a spreadsheet, accessible to everyone updating them on the health status of all employees, would be appropriate. Data should be shared on a need to know basis. You need to balance the privacy of individuals against your duty of care to be responsible with regards to the data of your employees, visitors, customers and suppliers.
Keep it up to date – make sure you update data. People’s health status will change and if you keep a record of this, you need to make sure it is accurate and up to date (although this doesn’t mean you should batter individuals with constant requests for updates on health status. Again, be proportionate).
Identify individuals only when you need to – although you will need to know who has Covid-19, that doesn’t mean you need to tell everyone in the organisation. As soon as you can, you should remove personal data from any information you gather. For example, you might want to update employees on the health status of their fellow employees but you probably don’t need to name individuals and even if you feel it is necessary, you should keep the information you provide to a minimum. Removing personal identifiers in a document is also a good data security technique.
Keep the Covid-19 health data secure – Covid-19 data will be special category data and deemed high risk. This means that if you have a breach of this data you will need to notify it to the ICO. A breach could happen by someone losing a print-out of the names of Covid-19 employees, customers or visitors. It could also happen if you set access rights to lists of Covid-19 sufferers open to more people than need to know the information. The risk of ICO enforcement action increases with the potential harm the disclosure could cause. Although the ICO has indicated that it will be understanding about the impact of Covid-19 on normal operations, this doesn’t mean that they will not prosecute you if the breach is sufficiently serious.
Destroy the data once you don’t need it – Finally, of course, make sure that you delete data at the end of your needs. This might last longer than the pandemic, for example if you have an insurance claim or ongoing litigation. If you do need to keep it, consider whether or not you can delete some of the data to minimise what you hold.
Related FAQs
The financial implications of having to repay all deposits and advance payments could be very serious for some businesses. As an alternative to a refund, many are offering customers the opportunity to re-book at a later date, or a voucher that can be redeemed against a subsequent booking.
The CMA’s view on this practice is that consumers can in many situations be offered alternatives of this type, but they should not be “misled or pressured” into accepting this. Their view is that a refund should be an option that is just as clearly and easily available. The CMA also points out that any restrictions that apply to credits, vouchers, re-booking or re-scheduling, such as the period in which credits must be used or services re-booked, must also be fair and made clear to consumers.
The full CMA guidance re “The Coronavirus (Covid-19) pandemic, consumer contracts, cancellation and refunds” can be found here.
Once the collective process concludes, an employer can make the decision to proceed with the restructure. They will then have 1-on-1 meetings with employees about the impact of the restructure on them. This will include consideration of alternative employment. There is no need to consult further about the proposal, merely the effect of the restructure on the individual.
Partner at Ward Hadaway Adrian Ballam catches up with corporate finance expert and CBILS specialist Chris Silverwood (CorpFin and cashflow.co.uk) a month after their initial conversation to talk about what the last couple of months have taught us about access to finance.
Sections of the video and their timings are as follows:
(01.06) – example of continuing appetite for certain businesses (e.g. tech sector)
(02.06) – conflict between incumbent bank and different CBILS lenders, plus brief discussion of CBILS II
(05.36) – bounce back loans have been a distraction
(06.27) – muted impact of fintech CBILS lenders
(07.52) – discussion about invoice discounting
(11.59) – looming insolvency environment
(12:52) – emerging themes
Sponsors should update the proposed start date by adding a sponsor note to the CoS via the Sponsor Management System.
Does a sponsor need to report a change in workplace if a Tier 2 visa holder is working from home as a result of Covid-19?
As discussed above, Covid-19 will inevitably deplete the workforce of housing providers in the foreseeable future. It would be prudent to consider making short-term policy changes to deal with this situation and manage the expectations of tenants going forward. A key policy change to consider is the extension of the standard lead-time for completing all non-urgent repairs and inform tenants of this change.
Such a change will also reduce pressure on landlords and front-facing staff.
As above, employers must protect the interests of their staff, particularly regarding health and safety. Extra care should be exercised when assessing the level of emergency of a repair on a case by case basis. All efforts should be made to reduce the number of attendances at properties by repair staff, whilst keeping all tenants safe.
As ever, communication is key – the pandemic cannot be used as a blanket excuse for abstaining from all duties and obligations. Housing providers must take a pragmatic approach in safeguarding customers whilst considering the interests of is workers. Maintaining lines of communication with all parties remains paramount.