What are the data protection implications of holding Covid-19 health data?
The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/
Information about the Covid-19 health status of individuals is special category data under the GDPR. This means it is high risk which has implications for how you use it, store it and keep it secure.
You will already hold health data about your employees as this is necessary to provide a safe, accessible place to work and to make reasonable adjustments to the workplace. You now need to make sure that the information you gather about your employees, visitors to your sites, customers and suppliers about Covid-19 is processed in accordance with data protection laws.
Related FAQs
The Competition and Markets Authority (CMA) has issued a number of guidance documents about the application of competition law rules during the coronavirus outbreak. In general, the competition law rules are being relaxed in very specific circumstances.
If suppliers still wish to terminate the contract, they must contact the directors or the officeholder dealing with the insolvency process and obtain their approval to terminate the contract – which, of course, might not be given.
If the continued obligation under the contract to supply goods/services to the customer would place the supplier in financial hardship the supplier can apply to court for permission to terminate the contract. This will involve time and legal expense.
The new rules for wearing face masks/face coverings in the workplace introduced on 23 September 2020 are as follows:
- Staff in retail, including shops, supermarkets and shopping centres, will now have to wear a face covering
- Staff in hospitality will now have to wear a face covering
- Guidance stating that face coverings and visors should be worn in close contact services, such as hairdressers and beauticians, will now become law
- Staff working on public transport and taxi drivers will continue to be advised to wear face coverings
You can take off your mask if:
- You who need to eat, drink, or take medication
- A police officer or other official asks you to
- Trusts should allow for telephone advice rather than face-to-face review from critical care when clinically appropriate.
- Hospitals should discuss the sharing of resources and the transfer of patients between units, including units in other hospitals, to ensure the best use of critical care within the NHS.
Please note, the above is intended to provide a summary of the key recommendations which emerge from this guidance. Access to the full guidance can be found here.
Employees who are union or non-union representatives may undertake duties and activities for the purpose of individual or collective representation of employees or other workers. However in doing this, they must not provide services to or generate revenue for, or on behalf of your organisation or a linked or associated organisation.
Employees who are pension scheme trustees or trustee directors of a corporate trustee may also undertake trustee duties in relation to the pension scheme. However, a professional, independent pension scheme trustee who has been furloughed by the independent trustee company cannot undertake trustee work that would provide services to or generate revenue for, or on behalf of, the independent trustee company or any organisation linked or associated with that independent trustee company during hours when they are recorded as being on furlough.