What do we need to do?
Privacy policy – You must make sure the relevant privacy policies deal with how you will process Covid-19 data. You should have an employee privacy policy and this may already deal with health data (if it doesn’t, it should). You might also need to look at privacy policies for customers, visitors and suppliers. This ensures that processing is lawful, fair and transparent.
Lawful processing conditions – You will need to consider which processing conditions you are relying on (remembering that you need both an Article 6 condition and an Article 9 condition – this is the part of the GDPR which deals with special category data). As a lot of the data you collect will be about employees, you can’t use consent so you will have to find another lawful reason under GDPR which allows you to process the data.
Appropriate policy document – When you are considering your Article 9 processing conditions, remember you must also have an “appropriate policy document” in place.
Processing record – Finally make sure your processing record is up to date with information on what data you collect and use.
Related FAQs
Unfortunately, losses caused by pandemics are not often covered expressly under standard policies, as the risk has been difficult for insurers to price and understand.
Even where additional cover in respect of notifiable diseases has been purchased, it typically will not include Covid-19 within the range of diseases covered by the policy. If the policy includes a list of notifiable diseases, and which does not include Covid-19, it is very unlikely that cover will be available for pandemic-relates losses.
The most common types of covers that could be afforded by insurance policies for coronavirus-related losses and liabilities are traditional business interruption insurance, contingent business interruption insurance, liability insurance, as well as cancellation and abandonment insurance.
On 25th June 2020, the Corporate Insolvency and Governance Act, among other things, introduced new restrictions on suppliers of goods and services to terminate the contract in the event that the customer enters an insolvency process. This has very important consequences for many businesses as it could expose them to greater financial risks.
As we all adjust and adapt in line with the Government’s guidance throughout this uncertain time, we must consider how we can revise current processes and implement new ones to maintain effective and compliant ways of working. We have identified several key issues that all housing providers should consider.
Protocol Compliance
Housing providers will continue to receive new disrepair claims. Throughout the disruption caused by coronavirus, landlords will still be expected to respond to these claims and comply with the Pre-Action Protocol for Housing Conditions Claims whilst doing so. We address the issue of disclosure in particular below.
Letters of claim will continue to be sent by post to your Registered Office, and the deadlines will run from the date of deemed service. Ensure you have systems to enable you to scan correspondence and forward it to the responsible officer who will handle the claim so deadlines are met.
Under the Protocol, the deadline for disclosure is 20 working days from deemed service of a letter of claim (2 working days after it is sent). So, for example, a letter dated 2 March 2020 would be deemed served on 4 March 2020 and disclosure would therefore be due by 1 April 2020. All housing providers must continue to comply with the Protocol and so landlords should begin preparing now.
Failure to meet deadlines often result in the issuing of further applications to court by tenant’s solicitors which in turn will lead to unnecessary costs orders against landlords.
Therefore, all records, particularly relating to customer contact and repair logs, should be held electronically. If required, this will allow for such documentation to be redacted for GDPR purposes remotely and disclosed to the tenant’s solicitor simply and efficiently.
Remember it is possible to request an extension to all Protocol deadlines and it is inevitable in these unusual times, this will need to be utilised, and should not be refused. Request extensions to deadlines at the earliest opportunity to enable an achievable timescale. It would be a difficult lawyer that would not agree to such a request.
Some of these can be implemented by you, some need agreement or consultation and some depend on the wording of contracts. We’ll explain more in relation to each option.
The Coronavirus pandemic will have impacted businesses in many different ways, but some of the most likely impacts that could have a legal implication are as follows:
- Services were not performed in accordance with contract during the period of disruption. This could be a reduction in volume of services performed, a suspension of services, or performance in a way that does not comply with contractual KPIs
- Late delivery or non-delivery of goods because of factory closures, or disruption in the supply chain
- Changes being agreed between parties to contracts to deal with the consequences of the Covid-19 outbreak