How can RPs carry out Person Centred FRAs/PEEPs on tenants within directly managed supported living units where the RP is not providing support and any floating support provider doesn’t see it as part of their responsibility?
There is no simple answer.
The NFCC guidance states:
“The person-centred fire risk assessment is intended only as a simple means for non-specialists who have suitable understanding of relevant fire risks to determine whether additional fire precautions might be needed. The person who carries out the person-centred fire risk assessment will depend on the circumstances of the housing and support provision. It can be carried out by those who regularly engage with the resident, with input from specialists where necessary. Assessments will normally be undertaken with residents themselves.
In sheltered housing with scheme managers, the scheme managers normally engage with residents on a routine basis, enabling residents who need a person-centred fire risk assessment to be identified. Many vulnerable residents will be in receipt of care, so enabling the care provider to identify residents in need of a person-centred fire risk assessment. Providers of regulated care are required to take into account risks to people from their wider environment, to take steps to help people ensure that they are dealt with by appropriate agencies, or to raise safeguarding alerts when this is appropriate. Where a ‘stay put’ strategy is adopted, there will be a need to identify residents who need assistance from the fire and rescue service to evacuate the building.
In supported housing, the number of residents in each property is usually quite small. This, and the nature of the care service normally provided, enables person-centred fire risk assessments to be carried out asa matter of course, when a resident first moves into the property.
Where additional fire precautions cannot be provided in the short term, the risk should be reduced as far as reasonably practicable and an adult at risk referral should be made to Adult Social Care.”
Ideally then the RP will need to engage with any care providers in order to conduct the PCRA and identify risk mitigation measures. If they are reluctant to do so, the RP should engage with the individual in any event in undertaking the assessment.
Related FAQs
You also need to consider other aspects of data protection.
Be proportionate – only gather and use Covid-19 data where you need to.
Keep data to a minimum – you shouldn’t gather more data than you need. You need to know someone has Covid-19 but you don’t need to know all their symptoms. Data minimisation also applies to who gets access to the data. It’s unlikely that a spreadsheet, accessible to everyone updating them on the health status of all employees, would be appropriate. Data should be shared on a need to know basis. You need to balance the privacy of individuals against your duty of care to be responsible with regards to the data of your employees, visitors, customers and suppliers.
Keep it up to date – make sure you update data. People’s health status will change and if you keep a record of this, you need to make sure it is accurate and up to date (although this doesn’t mean you should batter individuals with constant requests for updates on health status. Again, be proportionate).
Identify individuals only when you need to – although you will need to know who has Covid-19, that doesn’t mean you need to tell everyone in the organisation. As soon as you can, you should remove personal data from any information you gather. For example, you might want to update employees on the health status of their fellow employees but you probably don’t need to name individuals and even if you feel it is necessary, you should keep the information you provide to a minimum. Removing personal identifiers in a document is also a good data security technique.
Keep the Covid-19 health data secure – Covid-19 data will be special category data and deemed high risk. This means that if you have a breach of this data you will need to notify it to the ICO. A breach could happen by someone losing a print-out of the names of Covid-19 employees, customers or visitors. It could also happen if you set access rights to lists of Covid-19 sufferers open to more people than need to know the information. The risk of ICO enforcement action increases with the potential harm the disclosure could cause. Although the ICO has indicated that it will be understanding about the impact of Covid-19 on normal operations, this doesn’t mean that they will not prosecute you if the breach is sufficiently serious.
Destroy the data once you don’t need it – Finally, of course, make sure that you delete data at the end of your needs. This might last longer than the pandemic, for example if you have an insurance claim or ongoing litigation. If you do need to keep it, consider whether or not you can delete some of the data to minimise what you hold.
The reaction from NCVO is that this is an important first step. However, it will not stop well run charities from closing and others will look very different in a few months’ time.
The Cabinet Office has published a helpful Procurement Policy Note (“PPN”) on relief available to suppliers due to Covid-19 (available here). This can include making advance payments to suppliers, if necessary. The PPN sets out actions that public sector bodies should take (until at least 30 June 2020) to ensure continuity of service and to ensure that its suppliers can resume normal contract activity once able to.
The actions public sector bodies should be taking include:
- Informing its suppliers (that they believe are at risk) that they will continue to be paid as normal until the end of June 2020 (even if service delivery is currently interrupted). Risk might include supply chains collapsing and/or significant financial implications for a supplier
- If a contract involves a payment by results mechanism, basing payments on previous months (e.g. the average monthly payment over the previous 3 months), and
- Ensuring that invoices submitted by suppliers are paid immediately to maintain cash flow in the supply chain and help to protect jobs.
If you are a supplier to a public sector body, you must act transparently and on an open-book basis, making cost data available to your public sector clients. You must also continue to pay your employees and subcontractors / suppliers. Suppliers to the public sector must not expect to make profits on any undelivered elements of a contract. The PPN makes clear that, should suppliers be found to be taking undue advantage, or failing to act transparently, a public sector body can take action to recover payments made to that supplier.
The PPN requires public sector bodies to urgently review their contract portfolios and take steps to support suppliers who they believe are “at risk”. However, no definition of “at risk” is given in the document. We would suggest that if you are a supplier and you have yet to hear from a public sector client, you should seek to get in touch with them as soon as possible, particularly if you have concerns about your supply chain, staff retention and/or are experiencing financial difficulties currently. Given the requirement for transparency, you may be required to provide evidence, so it may be helpful to have any relevant documentation ready to send, if necessary, as this may help ensure a decision is made by the public sector client more promptly, particularly as the public sector body may have a number of contracts to consider.
All of the measures announced above are aimed at all employers in the UK and are not sector specific. However, over and above these measures the Chancellor also announced a number of financial measures that he hopes will save jobs in the hospitality industry such as the reduction of VAT on food and drink and the “eat out to help out” scheme which has already taken place. The Job Support Scheme is designed to support businesses who face lower demand due to the pandemic, and so is designed to have an impact on those sectors most badly hit.
Details of your MHFAs should be posted somewhere that everyone can access easily – a specific area on an intranet or whatever alternative exists. Regular comms involving the MHFAs, webinar sessions, Q&A sessions and mental wellbeing drop in sessions are all ideas that may work well.