Skip to content
Menu

Home FAQs What are the data protection implications of holding Covid-19 health data?

What are the data protection implications of holding Covid-19 health data?

The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/

Information about the Covid-19 health status of individuals is special category data under the GDPR. This means it is high risk which has implications for how you use it, store it and keep it secure.

You will already hold health data about your employees as this is necessary to provide a safe, accessible place to work and to make reasonable adjustments to the workplace. You now need to make sure that the information you gather about your employees, visitors to your sites, customers and suppliers about Covid-19 is processed in accordance with data protection laws.

Related FAQs

I’m getting married but have had to postpone the wedding. Should I delay putting a prenuptial agreement in place until a later date?

No. The greater the gap between the completion of a Prenuptial Agreement and the Wedding the more likely it will be upheld by the Court. If such an Agreement is made shortly before the wedding takes place one of the parties to it could claim that they felt under pressure to sign and the Court may decline to follow it.

Last updated on 1st April, 2020

VIDEO: Can trade credit insurance help to keep the supply chain moving?

On Tuesday 23rd June, partner Emma Digby was in conversation with Steve Hamstead and Mark Smith from AON along with Ward Hadaway commercial lawyer Nathan Bilton in a webinar titled Can trade credit insurance help to keep the supply chain moving?

The insurance market is under untold pressure as a result of the pandemic, and in such times there is a risk that insurers will cancel or reduce credit lines, particularly in certain high risk sectors such as retail. However the Government has stepped in to effectively underwrite the existing trade credit insurance agreements, and to keep trade supplies moving. Will this be enough?

In this webinar, we discussed:

  • the Government backed scheme and how it will operate
  • the prospects of obtaining insurance going forward, and whether it will become too cost prohibitive
  • could the new legislation put your business at risk and jeopardise your insurance cover if you cannot cancel a contract when you are not getting paid for your goods or services
  • the Brexit effect, and how this will affect the insurance market
  • protecting your business with proper risk assessment processes and paperwork

Last updated on 4th October, 2022

What should I do if I think this is relevant to my contracts?

It would be prudent to take legal advice early in relation to any issue you foresee in performing a contract. This will allow you to:

  • Ensure that initial contact with your counterparty is framed in the correct way
  • Ensure that any variations are fully documented so that both parties are fully protected

Last updated on 15th May, 2020

How do I apply for an extension to Companies House?

The application is made via the Companies House website, and only takes a few minutes to complete. Companies House have indicated that the extension is “automatic and immediate” and will be for three months.

Having said that the extension is “automatic”, their website also says that Companies that have already extended their filing deadline, or shortened their accounting reference period, may not be eligible for an extension.

If an extension is granted, it will not affect the due date for filing accounts in future years – so the deadline will revert to the usual date for the next accounting period.

Last updated on 26th March, 2020

Is there anything I need to put in place for their return? What are my responsibilities?

The basics of health and safety law requires that employers take “all reasonably practicable steps” to ensure workers’ safety and that a suitable and sufficient assessment of risk is undertaken. It is the individual assessment of Covid-19 risk in each workplace that will be central. Employers will be required to conduct a robust risk assessment and then, following the hierarchy of controls, put robust processes and safeguards in place to address those risks.

UK government guidance and HSE advice is continually evolving, which in practice means that any risk assessment will need to be reviewed very regularly as that guidance develops. There is flexibility for individual businesses within the overall government framework and there will need to be a process of evaluation to ensure that the measures in place continue to meet the requirements.

The starting point of avoid, eliminate and control means looking at individuals continuing to work from home where possible (the fewer the number of people back in the workplace the lower the risk), and if not look at risk management, which leads to administrative controls – i.e. changing work practices before ending up at PPE. PPE is generally seen as control of last resort but in practice – facemasks, disposable gloves and constant prompts to wash hands for example.

In terms of changing working practices, employers should be thinking about:

  • the workspace and how this is laid layout
  • how do we make sure it is kept clean and hygienic
  • how do we keep people apart
  • how can we use toilets, canteens or other shared spaces/facilities safely
  • how do we promote and enable higher levels of workplace hygiene
  • if we are going to rely on PPE – can we get it, and is it suitable
  • what about limiting customer interactions
  • will there be enough first aiders on site
  • can we manage fire safety, deliveries etc
  • what about higher risk workers
  • should work tools and equipment be allocated on an individual basis to employees.

These decisions need to be recorded and clearly communicated to staff members.

Last updated on 6th May, 2020