How should an employer handle personal information in relation to NHS Test and Trace?
Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.
- Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
- Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
- Only use the information for the purpose of managing the workforce during the pandemic.
- Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
- Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
- Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
- Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
- Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
- Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
- All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.
If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.
** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.
Related FAQs
This guidance from the Chief Coroner applies to reports of death and coroner investigations in England and Wales. It is to assist coroners in continuing to exercise their judicial decisions independently, in accordance with the law, and during the extraordinarily pressured events being faced at present.
Yes, this is very likely to amount to a reasonable management instruction which is put in place for public health reasons. Employers should make it clear to their employees that this is something they are required to do and that if they fail to do so this may lead to disciplinary action.
Commercial leases generally prevent a tenant from withholding payments of rent. If a tenant stops paying rent there will be a breach of the tenant’s covenant to pay rent which, strictly speaking, will entitle the landlord to forfeit the lease and/or seek to recover the arrears in the courts.
However, on 23 March 2020, the Ministry of Housing, Communities and Local Government announced that all commercial tenants in England, Wales and Northern Ireland missing rent payments are to benefit from a government ban on forfeiture of their lease. This change, which will prevent landlords from terminating leases and evicting commercial tenants, is included in the Coronavirus Bill. It will come into force very shortly (once the Coronavirus Bill receives Royal Assent, which is expected to be in a matter of days) and will last until 30 June 2020, with an option for the government to extend this deadline.
It is anticipated that many commercial tenants will take advantage of the reprieve and withhold their rent. Importantly note the rules will apply not only to principal rent but to “any sum a tenant is required to pay”, leaving the burden of supplying services and insuring the premises on landlords.
It is also important to note however that the protection offered by the government is from the threat of forfeiture should tenants withhold rental payments. The liability to pay the rent however remains an interest on unpaid rents will accrue. Furthermore, remedies other than forfeiture may be pursued by the landlord e.g. service of a statutory demand before insolvency or ordinary litigation proceedings for arrears etc.. Tenants then ideally should look to reschedule or suspend rental payment through discussions with their landlord.
The advantage of this being you might be able to negotiate a sensible and manageable repayment program in respect of the suspended rent, free of the threat of litigation.
Yes.
An employer which is aware that a worker or agency worker is or ought to be self-isolating, should not knowingly allow that worker or agency worker to leave the place that they are self-isolating in (“the designated place”). To do so without reasonable excuse would amount to an offence which could result in the employer being issued with a fixed penalty notice.
The value of the fixed penalty varies depending on if it is the first or subsequent fixed penalty notice to be issued:
| First fixed penalty notice | £1,000 |
| Second fixed penalty notice | £2,000 |
| Third fixed penalty notice | £4,000 |
| Fourth, and any subsequent fixed penalty notice | £10,000 |
As part of the Coronavirus Bill there is some good news for tenants in so far as it included the following:
- All commercial tenants in England, Wales and Northern Ireland missing rent payments are to benefit from a government ban on forfeiture of their lease.
- Landlords then will be prevented from terminating leases and “evicting” commercial tenants.
- The above provisions rules will apply not only to principal rent, but to “any sum a tenant is required to pay”, leaving the burden of supplying services and insuring the premises on landlords. The bill will last until 30 June 2020, with an option for the government to extend this deadline.
Whist this is helpful to any Tenant planning not to pay rent or other payments due under their lease insofar as they will not suffer forfeiture and be evicted, it should be noted that the contractual obligation to continue paying rent and all other costs due under the lease remains and Landlords will still be able to take action to recover any payments due under the lease that are in arrears.