Who should come back to work and when?

Yes. With respect to employees you have an obligation to protect their health so you can gather information to do that. You might gather information from your employees on who has the virus, who has had it and recovered and also who has tested negative. You might also want to know if individuals have been in contact with someone who has it or if they are in a vulnerable group. It is reasonable to want to know where individuals have travelled. In the future it may also be reasonable to know if they are planning to travel to a virus hot spot, as the impact of the virus around the world is likely to continue for some time even after the outbreak has been contained in the UK.

It is reasonable to gather some information about visitors to your site, be they customers or suppliers, as this information will also help protect your staff. However, you should keep what you gather to a minimum. For visitors, it’s unlikely that you need to know anything more than they have Covid-19, are displaying symptoms or have recently been in contact with someone who has the virus.

The guidance gives numerous examples of the types of performance adjustment which parties should consider. For example this includes:

• Varying deadlines (e.g. for performance or payment)
• Varying compensation (e.g. to recognise increased costs)
• Varying the nature of performance (e.g. allowing substitute goods, allowing pert delivery of services)

The guidance also encourages a reasonable approach to enforcement, which might encourage delaying issuing formal proceedings, increased use of mediation or providing more information to the other party than would be volunteered under normal circumstances.

All employers have a duty to prevent illegal working, and carrying out proper Right to Work checks are a fundamental part of this. In light of Covid-19, the Home Office has brought in some temporary measures for employers to use to carry out the requisite Right to Work checks. Failure to follow these could lead to enforcement action and penalties.

Privacy policy – You must make sure the relevant privacy policies deal with how you will process Covid-19 data. You should have an employee privacy policy and this may already deal with health data (if it doesn’t, it should). You might also need to look at privacy policies for customers, visitors and suppliers. This ensures that processing is lawful, fair and transparent.

Lawful processing conditions – You will need to consider which processing conditions you are relying on (remembering that you need both an Article 6 condition and an Article 9 condition – this is the part of the GDPR which deals with special category data). As a lot of the data you collect will be about employees, you can’t use consent so you will have to find another lawful reason under GDPR which allows you to process the data.

Appropriate policy document – When you are considering your Article 9 processing conditions, remember you must also have an “appropriate policy document” in place.

Processing record – Finally make sure your processing record is up to date with information on what data you collect and use.

Borrowers will not have to pay a guarantee fee. Lenders will pay a fee to access the scheme. The Government will make a Business Interruption Payment to cover the first 12 months of interest payments and any lender-levied fees, allowing smaller businesses to benefit from no upfront cost.

British Business Bank has indicated that following earlier discussions with the banking industry, some lenders indicated that they would not charge arrangement fees or early repayment charges to SMEs borrowing under the scheme. Each business should check the terms of the loans being made to ensure this is the case and what the interest rate and prepayment fees will be following the period in which the Government makes payment of these amounts.