Skip to content
Menu

Home FAQs What are the data protection implications of holding Covid-19 health data?

What are the data protection implications of holding Covid-19 health data?

The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/

Information about the Covid-19 health status of individuals is special category data under the GDPR. This means it is high risk which has implications for how you use it, store it and keep it secure.

You will already hold health data about your employees as this is necessary to provide a safe, accessible place to work and to make reasonable adjustments to the workplace. You now need to make sure that the information you gather about your employees, visitors to your sites, customers and suppliers about Covid-19 is processed in accordance with data protection laws.

Related FAQs

Do I need to obtain consent from a member of staff if we have taken the decision to restrict/alter their duties?

If the duties are so fundamentally different from their contracted role, then yes. For example, if you are asking a frontline clinical member of staff to undertake administrative tasks in another area, then this will be a fundamental change to their terms and conditions for which you need their consent.

If there is a minor alteration to their duties, or the clause within their contract is wide enough to cover their amended duties, then arguably to do not need their consent but best practice would be to obtain their agreement.

Last updated on 19th May, 2020

Are any suppliers exempt from this?

Small suppliers (defined by reference to certain financial indicators) are temporarily exempt from these new restrictions until 30th March 2021 in order to account for the difficulties to small suppliers during the Covid-19 pandemic.

There are also certain industries that are exempt from these restrictions (for example financial services).  The Secretary of State may also create further exemptions framed by reference to kinds of company, supplier, contract, goods or services or in any other way.

Last updated on 5th June, 2020

What is the Clinical Negligence Scheme for Coronavirus?

The Government has recently passed the Coronavirus Act 2020 in a response to the challenges posed by the pandemic, especially in relation to those facing the NHS during this time of crisis.  NHS Resolution worked closely with the Department for Health and Social Care to draft a clause within the Coronavirus Act providing indemnity for clinical negligence for any coronavirus related activity not currently covered by an existing arrangement.  In order to implement this clause, NHS Resolution has launched the Clinical Negligence Scheme for Coronavirus (“CNSC”).

It is intended that the CNSC will cover new contracts put in place for healthcare arrangements to respond to coronavirus, such as organisations supporting testing arrangements or Independent Contractors making agreements with NHS England and NHS Improvement to release capacity to the NHS.  Membership is not required for this scheme and the contracts entered into will automatically provide indemnity under the scheme.

The CNSC will not replace existing indemnity provisions made under the Clinical Negligence Scheme for Trusts (“CNST”) and it has been confirmed that the new Nightingale Hospitals will be covered by CNST rather than CNSC.  Similarly, NHS Resolution have confirmed that those doctors and nurses returning to practice from retirement, or those joining as students will be covered by the CNST or, where applicable the Clinical Negligence Scheme for General Practice (“CNSGP”).  The CNSC will not cover returning midwives to the profession, but the Royal College of Midwives have confirmed that they will extend all of the benefits of membership including Medical Malpractice Insurance to returning retired midwives.

For more information regarding this please click here.

Last updated on 7th April, 2020

What other options are there to reduce employment costs?

If you don’t want to make redundancies, or if you can’t reduce employee resource, either in a particular department or across the workforce as a whole, then you need to think about alternatives to redundancy.

Equally, you may want to flex the resource you have available to you – without making drastic changes.  For example you may want to consider:

  • unpaid leave and sabbaticals
  • retraining and redeploying
  • forcing annual leave
  • flexible working
  • capability issues
  • lay off
  • short time working
  • reductions in salary
  • reductions in working hours
  • changing to shift working

Last updated on 6th May, 2020

What will happen with inquests during the coronavirus outbreak?

The Chief Coroner adopts the approach taken by the Lord Chief Justice in that no physical hearing should take place unless it is urgent and essential business, and it is safe for all involved. If a hearing is to take place, social distancing must be maintained. All hearings that can take place remotely should do so, if it is not possible for social distancing requirements to be met. The expectation is that some hearings will go ahead, most notably Rule 23 hearings. Coroners are reminded that they must however conduct any remote hearings from a court. Decisions as to the most appropriate approach will be left to the senior coroner in that jurisdiction.

As we have already seen, some inquests will be adjourned, most notably those with multiple witnesses and/or a jury.

The guidance stresses the need, when dealing with medical professionals, for coroners to recognise their primary clinical commitments, particularly in these high-pressured times. This could mean avoiding or deferring requests for lengthy reports/ statements and accommodating clinical commitments if clinicians are called as witnesses.

The guidance encourages proactive reviews of outstanding responses to Prevention of Future Death reports and extending timescales for Trusts to respond.

Last updated on 31st March, 2020