Understanding of the extent of the Covid-19 risk to BAME colleagues is evolving – what does that mean for NHS employers?

Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.

• Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
• Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
• Only use the information for the purpose of managing the workforce during the pandemic.
• Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
• Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
• Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
• Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
• Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
• Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
• All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.

If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.

** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.

See above FAQ about whether you can demand that your employee has the vaccine.

Dismissal for failing to follow a reasonable instruction would be a possibility but it should be the last resort.

First you will need to be able to show that you have reasonable grounds for insisting that they have the vaccine. You will then need to demonstrate that you have taken into consideration the reasons why the employee has refused and why they are not considered reasonable. Before taking a decision to dismiss you should look at alternatives such as other duties/other roles.

As the project progresses, it is important to continually monitor the contractor’s performance.  Any one or more of the items below can be early warning signs that the contractor is in financial difficulty, and that further actions may be necessary:

• Decrease in labour or contractor’s personnel on site, and/or rapid turnover of contractor’s personnel
• Slowdown in progress on site
• Plant, equipment or materials suddenly disappearing from site for no apparent reason – unpaid subcontractors may unilaterally decide to remove items from site regardless of their contractual rights to do so
• An increasing number of defects and reduction in the quality of the contractor’s work
• The contractor seeking changes in the payment arrangements, and in particular early payments
• The contractor making spurious claims or contra charges
• The contractor seeking assignment of its benefit of the building contract
• Late filing of accounts by the contractor at Companies House
• Unsatisfied court judgements against the contractor
• Subcontractors and suppliers not being paid or being paid late
• Rumours in the press, in the industry, on site or elsewhere regarding the solvency of the contractor
• Unusual visits to site, for example from the contractor’s senior management or other personnel who had not previously been present or are not expected to be present
• Increasingly aggressive behaviour by the contractor
• The contractor’s parent company or another company within the contractor’s group displaying any of the above signs

Yes, but as a last resort. In summary, the law requires employers:

• to assess the workplace risks posed to new or expectant mothers or their babies;
• to alter the employee’s working conditions or hours of work to avoid any significant risk to them;
• where it is not reasonable to alter working conditions or hours, or would not avoid the risk, to offer suitable alternative work on terms that are not “substantially less favourable”;
• where suitable alternative work is not available, or the employee reasonably refuses it, the employer should consider whether it is appropriate to suspend the employee on full pay.

Once the collective process concludes, an employer can make the decision to proceed with the restructure. They will then have 1-on-1 meetings with employees about the impact of the restructure on them. This will include consideration of alternative employment. There is no need to consult further about the proposal, merely the effect of the restructure on the individual.