What are the rules?

The Information Commissioner’s Office (ICO) announce new guidance in light of coronavirus.

The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/

The ICO has stated the following:

“Data protection is not a barrier to increased and different types of homeworking. During the pandemic, staff may work from home more frequently than usual and they can use their own device or communications equipment. Data protection law doesn’t prevent that, but you’ll need to consider the same kinds of security measures for homeworking that you’d use in normal circumstances.”

Whether you work from home or in the office, you still need to comply with data protection laws. While you need to process personal data with the same care you use in the office, the home working environment throws up specific data protection concerns particularly in respect of data security. You should make sure you have a home working policy which deals with data protection and these data security issues.

 Organisations must ensure that, for staff who can work from home, their obligations in respect of processing personal data are clearly communicated. Organisations may already have a home working policy – if this is the case, then this should be reviewed to ensure it remains relevant and up-to-date for practices during this pandemic.

A break or pause in learning can be initiated where the interruption to learning due to Covid-19 is greater than four weeks. This must be reported as a formal break in learning. In such circumstance the funding to the training provider will be suspended for the duration of the break. Previously, the rules only allowed an apprentice to initiate this break in learning but this has been expanded to give employers and training providers the right to initiate this. Training providers should continue with their monthly IRL submissions to the ESFA. During breaks in apprenticeships it is not necessary for the apprentice to comply with the minimum of 20% on the job training requirement but this will resume when the break ends.

All policies will impose a stringent obligation, often with time limits, for you to notify insurers of circumstances that may give rise to a potential claim under the policy and non-compliance may well negate your cover. If therefore you have potential cover under your policy you must make a precautionary notification to Insurers as soon as possible.

The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/

Information about the Covid-19 health status of individuals is special category data under the GDPR. This means it is high risk which has implications for how you use it, store it and keep it secure.

You will already hold health data about your employees as this is necessary to provide a safe, accessible place to work and to make reasonable adjustments to the workplace. You now need to make sure that the information you gather about your employees, visitors to your sites, customers and suppliers about Covid-19 is processed in accordance with data protection laws.

The Government has announced a £750 million funding package for charities to ensure they can continue their vital work during the coronavirus outbreak.  This is for a 3 month period and further specific funding may be made available.

Charities which are businesses can also access the Government’s Coronavirus Business Interruption Loan Scheme (CBILS) – Please see our Funding and Finance FAQ’s.