What are the data protection implications of holding Covid-19 health data?
The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/
Information about the Covid-19 health status of individuals is special category data under the GDPR. This means it is high risk which has implications for how you use it, store it and keep it secure.
You will already hold health data about your employees as this is necessary to provide a safe, accessible place to work and to make reasonable adjustments to the workplace. You now need to make sure that the information you gather about your employees, visitors to your sites, customers and suppliers about Covid-19 is processed in accordance with data protection laws.
Related FAQs
Some commercial tenants have queried whether the current situation is a force majeure which may allow it to terminate the lease. Clauses which allow a party to terminate a lease for a force majeure event or, to put it another way, an “act of God”, are however extremely rare in modern commercial leases. Even if there is such a provision in your lease, it would need to be drafted to apply to an outbreak of disease.
Under usual rules, workers are entitled to a minimum of 28 days holiday including bank holidays, each year. Except in limited circumstances, it cannot be carried between leave years meaning that workers lose their holiday if they do not take it.
The government passed emergency legislation relaxing the carry-over of the 20 days leave entitlement provided under EU law. Where it is not reasonably practicable for an employee to take leave in the relevant leave year as a result of the effects of the coronavirus then they could be entitled to carry over the untaken leave into the next year.
The guidance has confirmed that all remaining employment rights and terms continue while an employee is furloughed. Holiday will continue to accrue during furlough however you may reach agreement with employees on reducing entitlement provided that it does not fall below the statutory minimum of 5.6 weeks per year.
Contractors working for public sector organisations who are deemed employees for IR35 purposes may be eligible to be furloughed provided they are paid via PAYE. In this scenario the agreement to furlough would be made between the contractor’s personal service company (PSC) and the fee payer (usually the agency). The parties would agree that the contractor will carry out no work for the public sector organisation while furloughed and the fee payer would apply for the grant.
At the moment the guidance states that in order to be eligible a claim for furlough must have to have been submitted by 31 July 2020 for a period of 3 weeks between 1 March and 30 June 2020.
The now defunct Guidance for the Tier system suggested that the clinically extremely vulnerable would be treated in the same way as those who were shielding in Lockdown 1. This means that anyone who is clinically extremely vulnerable and cannot work remotely, will be entitled to SSP. These employees should receive a letter confirming that they are deemed to be clinically extremely vulnerable/shielding and you should ask for a copy of it as evidence to support a claim for SSP. It is likely that the Lockdown 3 Guidance will be the same.
You could also furlough an employee in the clinically extremely vulnerable category. Again we do not anticipate this changing.