What do we need to do?
Privacy policy – You must make sure the relevant privacy policies deal with how you will process Covid-19 data. You should have an employee privacy policy and this may already deal with health data (if it doesn’t, it should). You might also need to look at privacy policies for customers, visitors and suppliers. This ensures that processing is lawful, fair and transparent.
Lawful processing conditions – You will need to consider which processing conditions you are relying on (remembering that you need both an Article 6 condition and an Article 9 condition – this is the part of the GDPR which deals with special category data). As a lot of the data you collect will be about employees, you can’t use consent so you will have to find another lawful reason under GDPR which allows you to process the data.
Appropriate policy document – When you are considering your Article 9 processing conditions, remember you must also have an “appropriate policy document” in place.
Processing record – Finally make sure your processing record is up to date with information on what data you collect and use.
Related FAQs
Yes. Their contracts can be renewed or extended during the furlough period without breaking the terms of the scheme.
If the employee’s contract has not already expired, the contract can be extended or renewed. The employee may be furloughed provided that they were employed on or before 30 October 2020. You must also have made a RTI submission to HMRC between 20 March 2020 and 30 October 2020.
If the employee’s contract expired on or after 23 September 2020, the employee can be re-employed and furloughed. Please note that the employee must have been employed by you on 23 September 2020 and you must have made a RTI submission to HMRC between 20 March 2020 and 30 October 2020.
In appropriate cases, disciplinary action and then dismissal may be fair if an employee refuses to wear a face covering in the workplace. For example, if this is in breach of the government guidance or if employer has issued a reasonable management instruction to this effect due to an identified health and safety risk.
It is important that employers use a fair and reasonable procedure when deciding whether to discipline and/or dismiss an employee and that its actions does not unlawfully discriminate against employees who have legitimate reasons for not wearing masks, such as those individuals who have health conditions like asthma.
It really depends on what your measure of success is! We would suggest regular wellbeing surveys – if the results of wellbeing surveys suggest that the culture is becoming more open, more psychologically safe, if people are asking for help or referring colleagues to MHFAs as a safe and effective pair of hands – these would be strong indicators of success.
The BBC
The national broadcaster’s collated content surrounding the Covid-19 pandemic:
https://www.bbc.co.uk/news/coronavirus
and with regards to business:
https://www.bbc.co.uk/news/business
You must only make a report under RIDDOR (The Reporting of Injuries, Diseases and Dangerous Occurrences Regulations 2013) when:
- An unintended incident at work has led to someone’s possible or actual exposure to coronavirus. This must be reported as a dangerous occurrence
- A worker has been diagnosed as having COVID 19 and there is reasonable evidence that it was caused by exposure at work. This must be reported as a case of disease
- A worker dies as a result of occupational exposure to coronavirus.