Skip to content
Menu

Home FAQs Should I have a homeworking policy?

Should I have a homeworking policy?

If organisations don’t have a formal home working policy, then they should set out, as soon as possible, in clear terms, what is expected of employees from a data protection perspective when working from home. These might include:

  • If someone is using their own device for remote working, ensuring that any devices that hold work-related information have up-to-date anti-virus software and that broadband connections have properly configured firewalls
  • Reminding staff to contact the organisation’s IT department if they encounter any issues with home working, and not to try and resolve any issues themselves
  • Reminding staff that they should notify relevant individuals within the organisation if they consider that there might have been a personal data breach. A breach will still be notifiable even if it does occur at home during the pandemic. These should be logged by the organisation in their data breach log in the normal way
  • Ensuring staff lock their devices whenever they are not using them
  • Where possible, working in a separate part of the home to family members
  • Ensuring confidentiality of information – advising staff not to have phone calls where others are likely to hear the conversation. This might mean moving to a different room, closing the door, or arranging a call for a more convenient time. If employees have smart speakers, you may want to consider advising them to either turn these off, if they are working in the same room as it, or work in a different room
  • Wherever possible, avoid taking hard copy documents home, and, if papers are taken home, never placing those papers in a bin or using a home shredder – any such papers should be shredded back at the office in the usual way
  • Locking any papers in a safe place
  • Not using social media platforms (unless already used and permitted by the organisation) to discuss work matters
  • Advising extra caution with incoming emails as at times such as this there may be an increased risk of fraud, email hacking, spear phishing etc.
  • Avoiding information being sent to personal email accounts (for example, so it can then be printed at home)
  • Reminding staff of your organisation’s Information Security policies, procedures and protocols. These could be emailed to all staff working from home or they could be directed to such documents on the organisation’s intranet, for example

Organisations should also ensure that their remote access systems can cope with increased demand.

Whilst the ICO appreciates the unprecedented nature of this pandemic, it does not mean that organisations can forget about their obligations as controllers of personal data. If a major data security breach were to happen, there is still the possibility of enforcement action where the organisation didn’t put in place good risk mitigation measures.

We have a specialist team of data protection lawyers here at Ward Hadaway, and would be happy to discuss any data protection concerns or issues that you might have.

Related FAQs

I’m a housing provider. How do I continue to manage disrepair during the coronavirus outbreak?

The practicalities and processes regarding disrepair claims will undoubtedly be affected. Housing providers will have to adopt a risk-based approach and consider government guidance to handle claims going forward. Key points to consider are:

  • Compliance with the Pre-Action Protocol for Housing Conditions Claims (particularly disclosure)
  • The practicalities of inspection
  • Non-urgent repairs

Last updated on 28th March, 2020

Is the Land Registry functioning?

Yes. The Land Registry published a new service update on 14 May, here:

https://www.gov.uk/guidance/coronavirus-covid-19-impact-on-hm-land-registrys-service

Importantly, the Land Registry will process registrations where documents have been executed using the Mercury signing approach:

For land registration purposes, a signature page will need to be signed in pen and witnessed in person (not by a video call). The signature will then need to be captured, with a scanner or a camera, to produce a PDF, JPEG or other suitable copy of the signed signature page. Each party sends a single email to their conveyancer to which is attached the final agreed copy of the document and the copy of the signed signature page.

To summarise some further points:

  • Most information enquiries are experiencing minimal delays
  • Registrations of new titles, such as on sales of part or new leases, and applications to update existing titles, are experiencing more significant delays but can be expedited via the expedite service
  • Cancellation dates for replying to requisitions are extended until further notice
  • Access to free documents on the land registry portal has been extended to 90 days from completion of the transaction
  • Identity requirements have been relaxed. The Land Registry will now raise a requisition for identity documents, and not cancel applications
  • Requests for extensions to a notice or objection period will be granted if lawfully possible
  • Land charges searches can be submitted electronically with PDF documents

Last updated on 7th April, 2020

If you have to undertake collective consultation do you also have to carry out individual consultation?

Once the collective process concludes, an employer can make the decision to proceed with the restructure. They will then have 1-on-1 meetings with employees about the impact of the restructure on them. This will include consideration of alternative employment. There is no need to consult further about the proposal, merely the effect of the restructure on the individual.

Last updated on 7th May, 2020

What is the penalty for failing to comply with the collective consultation obligations?

Failure to comply with the collective inform and consult obligations could impact on the fairness of any dismissals – see next question. In addition, a Tribunal can award a protective award of up to 90 days gross pay for each affected employee. The purpose is intended punish the employer for not complying with the obligations, not to compensate the employee for their individual financial loss.

Last updated on 7th May, 2020

What are the key questions to ask ourselves as a business?

Some examples of the key questions to ask include:

  • Is there still a viable underlying business that is likely to continue beyond the current crisis?
  • What does the revised short to medium cash flow look like and will the company continue to be able to pay its liabilities?
  • Does the company have the support of all of its stakeholders – lenders, shareholders, customers, suppliers and banks – even though the business might be in breach of its own obligations?
  • What measures could (and should) the board put in place to protect creditors, including making sure that exposure to creditors (both collectively and individually) is not increased, assets are not sold at less than value and no creditor is treated more favourably than another?
  • Is there still a reasonable prospect of the business avoiding liquidation or administration?

The key question is always whether accepting the money is in the best interests of creditors as a whole bearing in mind that accepting Government support and continuing to trade might increase the company’s overall liabilities. Directors should be mindful that if the business fails, their decisions during this critical time may be scrutinised and it is therefore important that directors have up-to-date financial information and projections to form the basis of any decisions, take stock, get the right advice and document the decisions that are taken.

Last updated on 27th March, 2020