How should an employer handle personal information in relation to NHS Test and Trace?
Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.
- Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
- Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
- Only use the information for the purpose of managing the workforce during the pandemic.
- Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
- Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
- Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
- Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
- Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
- Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
- All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.
If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.
** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.
Related FAQs
Government’s Covid-19 landing page
https://www.gov.uk/coronavirus
Covid-19 recovery strategy
Working safely during Covid-19
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19
Working safely during Covid-19: construction and other outdoor work
Working safely during Covid-19: factories, plants and warehouses
Working safely during Covid-19: labs and research facilities
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/labs-and-research-facilities
Working safely during Covid-19: offices and contact centres
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/offices-and-contact-centres
Working safely during Covid-19: other people’s homes
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/homes
Working safely during Covid-19: restaurants offering takeaway or delivery
Working safely during Covid-19: shops and branches
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/shops-and-branches
Working safely during Covid-19: vehicles
https://www.gov.uk/guidance/working-safely-during-coronavirus-covid-19/vehicles
Business support: loans, tax relief and grants for businesses, employees and self-employed people
https://www.gov.uk/coronavirus/business-support
Education and childcare
https://www.gov.uk/coronavirus/education-and-childcare
Housing and accommodation: renting: guidance for landlords, tenants and local authorities
Housing and accommodation: moving home
Housing and accommodation: planning inspections
https://www.gov.uk/guidance/coronavirus-covid-19-planning-inspectorate-guidance
Healthcare workers, carers and care settings: NHS guidance for people working in healthcare
https://www.england.nhs.uk/coronavirus/
Healthcare workers, carers and care settings: PPE hub
https://www.gov.uk/government/collections/coronavirus-covid-19-personal-protective-equipment-ppe
Healthcare workers, carers and care settings: adult social care guidance
https://www.gov.uk/government/collections/coronavirus-covid-19-social-care-guidance
Healthcare workers, carers and care settings: shielding and protecting people who are clinically extremely vulnerable
Healthcare workers, carers and care settings: adult social care guidance
Healthcare workers, carers and care settings: health, care and volunteer workers parking pass and concessions
International travel and immigration: travel advice for British citizens travelling abroad
https://www.gov.uk/guidance/travel-advice-novel-coronavirus
International travel and immigration: foreign travel advice for each country
https://www.gov.uk/foreign-travel-advice
International travel and immigration: waiting to return to the UK
International travel and immigration: essential international travel guidance
https://www.gov.uk/guidance/coronavirus-covid-19-essential-international-travel-guidance
International travel and immigration: advice for UK visa applicants and temporary UK residents
Government’s financial support for businesses
This page help businesses find out how to access the support that has been made available, who is eligible, when the schemes open and how to apply.
https://www.businesssupport.gov.uk/coronavirus-business-support/
Rishi Sunak
The Twitter feed of the Chancellor of the Exchequer, where he has published various responses to some FAQs from the public.
https://twitter.com/RishiSunak
On 7 May the Government published guidance on how contracting parties can act responsibly in order to assist the effort to deal with Covid-19. The guidance seeks to persuade contracting parties to act reasonably and recognise the impact of Covid-19 on contractual counterparties. This will continue to be relevant as business begins to emerge from lockdown.
If you consider the factors used to determine status you can include the following terms that are more in line with a self-employed relationship:
- The right to provide a substitute of the contractor’s choice in the event the individual is not able to perform the services;
- The ability to work for other businesses as long as doing so will not affect the services to be provided by the contractor;
- The contractor should have sufficient control over how, when and where (if possible) they provide the services;
- A degree of financial risk can be included for unsatisfactory work or failing to complete a project or task
We have terms that cover all of these points that can be tailored to your needs. The consultancy agreement is included in our IR35 toolkit.
With the outbreak of coronavirus leading to a requirement for more employees to be working remotely, especially following Government advice that all non-essential travel including to and from work should be avoided, there has been an increased requirement for businesses to be more flexible in their approach to signing contracts.
The traditional approach has been for contracts to be printed and signed with a “wet ink” signature. However, this is not a strict legal requirement in the majority of circumstances and contracts can be formed without this degree of formality. English law recognises that contracts can be formed by electronic means – including the exchange of emails or the typing of a name into a document to signify agreement to it.
Whilst this approach offers a lot of flexibility, more sophisticated electronic signature tools are recommended for important documents, to enable the identity of the signatory to be validated and reduce the possibility of fraud.
If businesses are considering changing their contracting processes because of coronavirus, or because of a general shift towards paperless working, it is important to ensure that proper approval processes remain in place, and to consider whether a software tool should be used to complement them. Systems such as DocuSign are widely used.
There also remain some situations where legal advice is recommended before relying on an electronic signature:
- Where the other party is abroad – as local laws that are different from English law might apply
- If executing a deed – the law requires certain types of document to be executed as a deed (for example, transfers of land and powers of attorney), and the issues around electronic signature and witnessing are more complicated here
Our advice to you here is simple. It will depend on the circumstances surrounding your debt but for the most part, unless it is crystal clear that there has been a debt outstanding long before Covid-19 and there was an inability to pay prior to the Covid situation we would recommend that you hold off issuing any further petitions until after the 31st December. Unless the criteria set out above is met, a judge is likely to exercise their discretion leniently and could dismiss the petition. This could also lead to cost consequences which would adversely affect you.
We are happy to discuss individual cases to assist creditors at this difficult time, however, generally any cases proceeding to petition would be the exception as opposed to the rule. Even if presenting a winding up petition is not available for now, there may still be other forms of legal proceedings that you can use to collect money owed to you, like county court proceedings.