I hold a licence but can’t trade. Can I terminate it?

During these unusual times, we are all having to adapt to what has become the ‘new normal’ and implement changes in how we carry out civil cases. If you are to give evidence in a remote hearing, whether this is by Microsoft Teams, Skype for Business or the Cloud Video Platform, we have pulled together a quick and useful guide below on what would be expected by the courts:

Before the hearing

• Make sure that you have access to the video-conferencing software that will be needed for the hearing. We will tell our clients and their witnesses in advance which platform will be used. The courts have increasingly been using Skype for Business to conduct the hearings (but you may find other platforms being used)
• Test that your camera and microphone are working and it is clear to see/hear you.
• Dress appropriately, as if it was an in-person hearing, and use the same formalities.
• Ensure that the background which is visible on your screen is appropriate and allows for your face to be clearly seen. A ‘blur background’ option may also be available on your settings which you may prefer.
• Make sure that your mobile phone is on silent and you are in a location where there will be no/minimal distractions. You should be on your own in a room when giving evidence, however, as we have all experienced with working from home, sometimes interruptions such as children appearing cannot be avoided.
• Join the call ahead of the allocated time, in order to allow for any small technical difficulties.

During the hearing

• Have a copy of the hearing bundle to hand, so that you can follow the proceedings (this may be in hard copy or soft copy). You are not allowed any other notes or papers, whether hard copy or electronic, in front of you when giving evidence.
• Unless addressing the Judge or you have been directly asked a question, keep your microphone muted.
• When giving evidence, you must make sure both your camera and your microphone are switched on.
• Remote hearings can be difficult and if you do not understand or you do not hear a question properly, then do ask for the question to be repeated/re-framed.
• You should not move away from the screen without permission from the Judge. The Judge will allow time for breaks.
• Address the judiciary and other advocates the same way as you would if you were in a physical courtroom.
• It is permitted to drink water throughout the hearing, but mugs of tea and/or coffee are probably best avoided. It is also not permitted to eat food during the hearing.
• Don’t panic if someone walks into the room or the dog starts barking because there is a knock at the door. Judges are only too aware about what might happen. Communication is key and if the interruption has interfered with your train of thought or the evidence you are giving then do say so.
• Be aware that all evidence is recorded and that a transcript of all evidence can be obtained at a later date.

Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.

• Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
• Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
• Only use the information for the purpose of managing the workforce during the pandemic.
• Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
• Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
• Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
• Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
• Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
• Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
• All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.

If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.

** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.

Small suppliers (defined by reference to certain financial indicators) are temporarily exempt from these new restrictions until 30th March 2021 in order to account for the difficulties to small suppliers during the Covid-19 pandemic.

There are also certain industries that are exempt from these restrictions (for example financial services).  The Secretary of State may also create further exemptions framed by reference to kinds of company, supplier, contract, goods or services or in any other way.

If organisations don’t have a formal home working policy, then they should set out, as soon as possible, in clear terms, what is expected of employees from a data protection perspective when working from home. These might include:

• If someone is using their own device for remote working, ensuring that any devices that hold work-related information have up-to-date anti-virus software and that broadband connections have properly configured firewalls
• Reminding staff to contact the organisation’s IT department if they encounter any issues with home working, and not to try and resolve any issues themselves
• Reminding staff that they should notify relevant individuals within the organisation if they consider that there might have been a personal data breach. A breach will still be notifiable even if it does occur at home during the pandemic. These should be logged by the organisation in their data breach log in the normal way
• Ensuring staff lock their devices whenever they are not using them
• Where possible, working in a separate part of the home to family members
• Ensuring confidentiality of information – advising staff not to have phone calls where others are likely to hear the conversation. This might mean moving to a different room, closing the door, or arranging a call for a more convenient time. If employees have smart speakers, you may want to consider advising them to either turn these off, if they are working in the same room as it, or work in a different room
• Wherever possible, avoid taking hard copy documents home, and, if papers are taken home, never placing those papers in a bin or using a home shredder – any such papers should be shredded back at the office in the usual way
• Locking any papers in a safe place
• Not using social media platforms (unless already used and permitted by the organisation) to discuss work matters
• Advising extra caution with incoming emails as at times such as this there may be an increased risk of fraud, email hacking, spear phishing etc.
• Avoiding information being sent to personal email accounts (for example, so it can then be printed at home)
• Reminding staff of your organisation’s Information Security policies, procedures and protocols. These could be emailed to all staff working from home or they could be directed to such documents on the organisation’s intranet, for example

Organisations should also ensure that their remote access systems can cope with increased demand.

Whilst the ICO appreciates the unprecedented nature of this pandemic, it does not mean that organisations can forget about their obligations as controllers of personal data. If a major data security breach were to happen, there is still the possibility of enforcement action where the organisation didn’t put in place good risk mitigation measures.

We have a specialist team of data protection lawyers here at Ward Hadaway, and would be happy to discuss any data protection concerns or issues that you might have.

Any hearings attended in person will need to be approved by the judge hearing the matter, if necessary, in consultation with the regional lead COP judge. Such requests are highly unlikely to be granted during COVID-19 unless there is a genuine urgency. However, it is deemed to be appropriate matters are likely to be adjourned on the basis that a remote hearing is not possible and a hearing in person is not safe or possible.