Can I collect health data in relation to Covid-19?

The formal Government position relating to construction sites is that construction work should continue on site if it can be conducted safely, and the Business Secretary, Alok Sharma, has written an open letter to the UK Construction Industry thanking it for all its help in the current crisis. The letter also confirms the Government’s current official policy of keeping construction sites open. The full text of the letter can be downloaded.

This also remains the formal position of the Construction Leadership Council (CLC) with the qualification that sites should operate in accordance with Public Health England instructions; without compromising health and safety; and in accordance with the Site Operating Procedures issued last week by the CLC.

In practice, many construction sites have been closed by national developers and house builders due to difficulties with staffing and supply chain, and practical issues with compliance with the social distancing and site operating procedures.

The Scottish Government has recently issued guidance that all non-essential construction sites, which includes housing, office, leisure, schools and retail sites, must close to reduce the risk of the spread of Covid-19.

We have teamed up with Scaleup North East to help companies impacted by the coronavirus outbreak plan how to get back to business.

Our specialist lawyers will provide a free “diagnostic” call with eligible businesses across the NE, exploring challenges they are facing in the aftermath of the lockdown, and identify specific steps to survive, and then thrive, in these challenging times and beyond.

Through the collaboration with Scaleup North East, eligible North East-based SMEs are then able to apply for up to 40% funding towards up to £4,000 of legal advice.

These might include:

• Employment issues, such as dealing with a phased return to work
• Measures to support cash-flow, such as amendment to terms of trading and debt collection procedures
• Renegotiations and amendments to contracts, and other advice about contracts with suppliers and customers to deal with consequences of Covid-19
• Managing property costs – review of leases, advice on break clauses and formalisation of any revised arrangements recently put in place with landlords/tenants
• Health and safety implications of return to work and social distancing

Find out more on our website or contact partner Damien Charlton.  If you are not eligible because of location but are interested in the free “diagnostic”, please contact us.

Employees will be reluctant to take unpaid leave or a sabbatical but when faced with the alternative prospect of redundancy may give it some serious consideration. This would remove the cost of that employee from the employer’s business for an agreed period of time. This is an option which can be offered to employees but again, imposing it without agreement creates significant risk.

Parties still need to comply with the various Protocols that apply and will be expected to exchange information in the usual way. Court proceedings can be issued electronically.

Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.

• Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
• Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
• Only use the information for the purpose of managing the workforce during the pandemic.
• Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
• Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
• Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
• Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
• Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
• Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
• All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.

If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.

** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.