How much data can I gather?
You also need to consider other aspects of data protection.
Be proportionate – only gather and use Covid-19 data where you need to.
Keep data to a minimum – you shouldn’t gather more data than you need. You need to know someone has Covid-19 but you don’t need to know all their symptoms. Data minimisation also applies to who gets access to the data. It’s unlikely that a spreadsheet, accessible to everyone updating them on the health status of all employees, would be appropriate. Data should be shared on a need to know basis. You need to balance the privacy of individuals against your duty of care to be responsible with regards to the data of your employees, visitors, customers and suppliers.
Keep it up to date – make sure you update data. People’s health status will change and if you keep a record of this, you need to make sure it is accurate and up to date (although this doesn’t mean you should batter individuals with constant requests for updates on health status. Again, be proportionate).
Identify individuals only when you need to – although you will need to know who has Covid-19, that doesn’t mean you need to tell everyone in the organisation. As soon as you can, you should remove personal data from any information you gather. For example, you might want to update employees on the health status of their fellow employees but you probably don’t need to name individuals and even if you feel it is necessary, you should keep the information you provide to a minimum. Removing personal identifiers in a document is also a good data security technique.
Keep the Covid-19 health data secure – Covid-19 data will be special category data and deemed high risk. This means that if you have a breach of this data you will need to notify it to the ICO. A breach could happen by someone losing a print-out of the names of Covid-19 employees, customers or visitors. It could also happen if you set access rights to lists of Covid-19 sufferers open to more people than need to know the information. The risk of ICO enforcement action increases with the potential harm the disclosure could cause. Although the ICO has indicated that it will be understanding about the impact of Covid-19 on normal operations, this doesn’t mean that they will not prosecute you if the breach is sufficiently serious.
Destroy the data once you don’t need it – Finally, of course, make sure that you delete data at the end of your needs. This might last longer than the pandemic, for example if you have an insurance claim or ongoing litigation. If you do need to keep it, consider whether or not you can delete some of the data to minimise what you hold.
Related FAQs
- Yes, and this includes furloughed employees under the Coronavirus Job Retention Scheme.
- Employers must continue to assess their new employees or newly eligible existing employees and enrol them where required, but can make use of the statutory postponement procedure which allows them to delay for up to three months the assessment of new employees for the purpose of enrolment (see further details here on the Pensions Regulator’s website). Declarations of compliance for new employers must still be completed in the normal way.
- Postponement cannot be used for re-enrolment. The Regulator recommends employers use the re-enrolment date tool on the Regulator’s website to choose a date up to three months after the third anniversary of enrolment to assess staff for re-enrolment. Further information about employers’ obligations about reenrolment from the Pensions Regulator can be found here. Re-declarations of compliance for new employers must still be completed in the normal way.
Government’s Covid-19 landing page
https://www.gov.uk/coronavirus
Covid-19 recovery strategy
Working safely during Covid-19
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19
Working safely during Covid-19: construction and other outdoor work
Working safely during Covid-19: factories, plants and warehouses
Working safely during Covid-19: labs and research facilities
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/labs-and-research-facilities
Working safely during Covid-19: offices and contact centres
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/offices-and-contact-centres
Working safely during Covid-19: other people’s homes
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/homes
Working safely during Covid-19: restaurants offering takeaway or delivery
Working safely during Covid-19: shops and branches
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/shops-and-branches
Working safely during Covid-19: vehicles
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/vehicles
Business support: loans, tax relief and grants for businesses, employees and self-employed people
https://www.gov.uk/coronavirus/business-support
Education and childcare
https://www.gov.uk/coronavirus/education-and-childcare
Housing and accommodation: renting: guidance for landlords, tenants and local authorities
Housing and accommodation: moving home
Housing and accommodation: planning inspections
https://www.gov.uk/guidance/coronavirus-covid-19-planning-inspectorate-guidance
Healthcare workers, carers and care settings: NHS guidance for people working in healthcare
https://www.england.nhs.uk/coronavirus/
Healthcare workers, carers and care settings: PPE hub
https://www.gov.uk/government/collections/coronavirus-covid-19-personal-protective-equipment-ppe
Healthcare workers, carers and care settings: adult social care guidance
https://www.gov.uk/government/collections/coronavirus-covid-19-social-care-guidance
Healthcare workers, carers and care settings: shielding and protecting people who are clinically extremely vulnerable
Healthcare workers, carers and care settings: adult social care guidance
Healthcare workers, carers and care settings: health, care and volunteer workers parking pass and concessions
International travel and immigration: travel advice for British citizens travelling abroad
https://www.gov.uk/guidance/travel-advice-novel-coronavirus
International travel and immigration: foreign travel advice for each country
https://www.gov.uk/foreign-travel-advice
International travel and immigration: waiting to return to the UK
International travel and immigration: essential international travel guidance
https://www.gov.uk/guidance/coronavirus-covid-19-essential-international-travel-guidance
International travel and immigration: advice for UK visa applicants and temporary UK residents
Government’s financial support for businesses
This page help businesses find out how to access the support that has been made available, who is eligible, when the schemes open and how to apply.
https://www.businesssupport.gov.uk/coronavirus-business-support/
Rishi Sunak
The Twitter feed of the Chancellor of the Exchequer, where he has published various responses to some FAQs from the public.
https://twitter.com/RishiSunak
Many charities have money that are considered restricted funds which are given to the charity or raised for a specific purpose. The Charity Commission gives guidance on this, please see the link below. Depending on the circumstances in which these monies have been given to a charity or raised you may or may not be able to use them.
Monies raised in an appeal or specific fund raising campaign are unlikely to be available as it is likely to be impossible to get the permission of the donor to change the use. If however you have had monies donated for a specific purpose and you can identify the donor you can use these funds for general overheads and to pay wages etc. if you receive the donor’s specific permission to do so.
The Home Office has provided useful guidance on how to carry out a compliant Right to Work check using the temporary adjustments in place for Covid-19. In summary:
- You will need to ask the job applicant to send you digital copies of their original documents, for example by scan, photo or mobile app.
- Hold a video call with the job applicant and ask them to show their original documents on camera so you can check them against the digital copies you have already received.
- On the date you made the check, record that you have done this by using the following wording “adjusted check undertaken on [insert date] due to Covid-19”. Evidence of right to work checks still need to be held securely either in paper or electronic format.
- You can use the online RTW checking service where the job applicant has Biometric Residence Permit or pre-settled or settled status under the EU Settlement Scheme. You should do this whilst on the video call with the applicant/employee, and you must first obtain their permission to view their details on this scheme.
As with a Will, your solicitor can take instructions by telephone, Skype or a similar tool. Your solicitor can then post or email the documentation to you. As with Wills, your signature and those of your proposed Attorneys will need to be witnessed, but in this case only by one other person. However, there are specific requirements as to who can witness your signature. The witness must be aged 18 or older and cannot be your Attorney but they can be your Certificate Provider.
Your Certificate Provider must either be someone you have known personally for at least two years or an appropriate professional. However, they must not be your Attorney and they must not be a member of your family or the partner, boyfriend or girlfriend of a member of your family or a business partner or employee of yours.
Also, if you are living in a care home, the Certificate Provider cannot be the owner, manager, director or employee of the home you live in.
Given the current restrictions on movement, if you have regular medical checks you could ask your GP or another medical professional to witness your signature and act as your Certificate Provider when you go to see them or they come to you. Alternatively, if someone you have known for two years or more is dropping off essentials, they could act as a witness and Certificate Provider remembering to retain the necessary distance and protective measures.
Concerning your Attorney(s) you cannot act as their witness. Otherwise, anyone aged 18 or older can act as their witness, including the other Attorney. Ideally, a witness to your or your Attorney’s signatures should not be a family member for the sake of impartiality and to avoid disputes. If necessary they can be.