How should an employer handle personal information in relation to NHS Test and Trace?
Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.
- Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
- Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
- Only use the information for the purpose of managing the workforce during the pandemic.
- Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
- Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
- Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
- Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
- Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
- Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
- All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.
If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.
** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.
Related FAQs
Hosted by The North East England Chamber of Commerce, this webinar discussed practical advice on Covid-19 and the specific challenges for International Trade.
Partner Damien Charlton along with Andrew Needham,from Haines Watts and Grant Murray from XE Finance, provided an update on the challenges and potential solutions in their field, as well as a look forward for the “New Normal”.
To watch the full recording, please click here or to view the slides, please click here.
Read more about this
On 18 April 2020, it was announced that an exception to the current stay in possession proceedings and ban on all evictions has been made to allow possession orders to be made against trespassers.
This means land owners can take action to remove unauthorised persons occupying their land. Trespassers include: squatters; travellers; failed successors of secure tenancies; and licensees whose licences have been terminated.
Further, the automatic stay to possession proceedings currently imposed no longer applies to applications for interim possession orders meaning any persons found to be “squatting” on land without permission may again be subject to an order requiring them to leave your premises within 24 hours of service of that order.
Read more about this- Audit
- Identify your off-payroll contractors
- Determine the status of off-payroll contractors
- CEST – HMRC employment status checker for tax purposes
- Communication – liaise with affected workforce
- Contracts – get them compliant
- Consider the Ward Hadaway toolkit
Where a couple is not married, they have limited rights in relation to each other’s assets and these mainly relate to rights over property assets. There is complex Trust law which governs whether or not your partner could claim an interest in your property and it generally relates to where someone has invested in renovations on the property or promises have been made. If this is something you are concerned about, you and your partner could enter in to a Cohabitation Agreement. These Agreements can set out various matters, including who will pay the bills and where each of you would live if you separated. Most importantly, they can record your intentions about who owns the property and exclude any rights your partner would have against your property.
Read more about thisOn Tuesday 23rd June, partner Emma Digby was in conversation with Steve Hamstead and Mark Smith from AON along with Ward Hadaway commercial lawyer Nathan Bilton in a webinar titled Can trade credit insurance help to keep the supply chain moving?
The insurance market is under untold pressure as a result of the pandemic, and in such times there is a risk that insurers will cancel or reduce credit lines, particularly in certain high risk sectors such as retail. However the Government has stepped in to effectively underwrite the existing trade credit insurance agreements, and to keep trade supplies moving. Will this be enough?
In this webinar, we discussed:
- the Government backed scheme and how it will operate
- the prospects of obtaining insurance going forward, and whether it will become too cost prohibitive
- could the new legislation put your business at risk and jeopardise your insurance cover if you cannot cancel a contract when you are not getting paid for your goods or services
- the Brexit effect, and how this will affect the insurance market
- protecting your business with proper risk assessment processes and paperwork