Skip to content
Menu

Home FAQs How should an employer handle personal information in relation to NHS Test and Trace?

How should an employer handle personal information in relation to NHS Test and Trace?

Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.

  • Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
  • Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
  • Only use the information for the purpose of managing the workforce during the pandemic.
  • Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
  • Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
  • Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
  • Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
  • Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
  • Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
  • All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.

If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.

** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.

Related FAQs

What challenges to planning permission does the current lockdown situation present?
  • Delays in preparing and submitting applications to comply with pre-commencement conditions. In this respect there can be lengthy timescales gathering evidence to support applications to comply with pre-commencement conditions, ecology, contamination and archaeology are examples of matters which can require significant periods of survey work
  • Following on from the above the ability to get required experts on the site necessary to undertake the required survey work
  • Delays in the determination of applications to comply with pre-commencement conditions. In this respect whilst there are deemed discharge provisions/procedures concerning certain matters, the provisions cannot be used to discharge all types of conditions
  • The ability to get people on site to undertake material operations

In the circumstances, it is advisable to start considering the implementation of the planning permission early and the earlier the better. Under current legislation whilst it is possible to vary conditions, albeit potentially leading to wider issues, it is not possible to extend the life of a planning permission meaning that lawful implementation is essential to avoid the loss of that permission.

If a planning permission is lost, amongst other things it may not be granted again or may not be granted on similar terms. In the circumstances, it is advisable to seek advice given the specific facts of the case to minimise the risk of a planning permission not being lawfully implemented and expiring.

Last updated on 6th April, 2020

Are there any limitations on who can be furloughed?

 

Employees on any type of employment contract including full-time, part-time, agency, flexible or zero hours and foreign nationals who are eligible to work in the UK on any visa can be furloughed subject to the following excluded categories:

  • Anyone who was not employed prior to 30 October 2020
  • Anyone for whom you haven’t made a PAYE Real Time Information submission to HMRC between 20 March 2020 and 30 October 2020.
  • Employees who are working but on reduced hours or for reduced pay
  • Employees currently receiving SSP (see FAQ on SSP and self-isolation below)
  • Public sector employees
  • Employees of businesses or organisations in receipt of public funding for staff costs (except for those who are not primarily funded by the government and whose staff cannot be redeployed to assist with the Covid-19 response)

Last updated on 28th March, 2020

What should be included in genuinely self-employed contractor terms?

If you consider the factors used to determine status you can include the following terms that are more in line with a self-employed relationship:

  • The right to provide a substitute of the contractor’s choice in the event the individual is not able to perform the services;
  • The ability to work for other businesses as long as doing so will not affect the services to be provided by the contractor;
  • The contractor should have sufficient control over how, when and where (if possible) they provide the services;
  • A degree of financial risk can be included for unsatisfactory work or failing to complete a project or task

We have terms that cover all of these points that can be tailored to your needs. The consultancy agreement is included in our IR35 toolkit.

Last updated on 4th February, 2021

Is the current pandemic an event which will allow me to argue that the lease has been ‘frustrated’?

This is unlikely. Frustration is a doctrine rarely used as a way of getting out of leases. It operates to bring a lease to an early end because of the effect of a supervening event. It is then not a concept readily applicable to a situation where one party is looking to get out of a lease. To be able to argue the doctrine of frustration, you must be able to demonstrate that something unforeseeable has happened that makes it impossible to fulfil the lease and unjust to hold a party to its obligations.

This is not something that can be demonstrated easily.

There was a case in the High Court last year when the doctrine of frustration was looked at in a case involving the European Medical Agency.

The court found that Brexit did not frustrate EMA’s lease. EMA was granted leave to appeal that decision to the Court of Appeal, but unfortunately, the parties settled out of court so the arguments were not tested in the higher court.

Another reason why frustration is likely to fail is an argument that, whilst the current lockdown may force closures to businesses and whilst such closures maybe for a lengthy period, such closures will only be temporary.

Last updated on 2nd April, 2020

What if employees display coronavirus symptoms?

It remains the case that anyone who has symptoms, however mild, or is in a household where someone has symptoms, should not leave their house to go to work. Those people should self-isolate, as should those in their households.

Last updated on 12th May, 2020