Skip to content
Menu

Home FAQs What are the data protection implications of holding Covid-19 health data?

What are the data protection implications of holding Covid-19 health data?

The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/

Information about the Covid-19 health status of individuals is special category data under the GDPR. This means it is high risk which has implications for how you use it, store it and keep it secure.

You will already hold health data about your employees as this is necessary to provide a safe, accessible place to work and to make reasonable adjustments to the workplace. You now need to make sure that the information you gather about your employees, visitors to your sites, customers and suppliers about Covid-19 is processed in accordance with data protection laws.

Related FAQs

What is the Clinical Negligence Scheme for Coronavirus?

The Government has recently passed the Coronavirus Act 2020 in a response to the challenges posed by the pandemic, especially in relation to those facing the NHS during this time of crisis.  NHS Resolution worked closely with the Department for Health and Social Care to draft a clause within the Coronavirus Act providing indemnity for clinical negligence for any coronavirus related activity not currently covered by an existing arrangement.  In order to implement this clause, NHS Resolution has launched the Clinical Negligence Scheme for Coronavirus (“CNSC”).

It is intended that the CNSC will cover new contracts put in place for healthcare arrangements to respond to coronavirus, such as organisations supporting testing arrangements or Independent Contractors making agreements with NHS England and NHS Improvement to release capacity to the NHS.  Membership is not required for this scheme and the contracts entered into will automatically provide indemnity under the scheme.

The CNSC will not replace existing indemnity provisions made under the Clinical Negligence Scheme for Trusts (“CNST”) and it has been confirmed that the new Nightingale Hospitals will be covered by CNST rather than CNSC.  Similarly, NHS Resolution have confirmed that those doctors and nurses returning to practice from retirement, or those joining as students will be covered by the CNST or, where applicable the Clinical Negligence Scheme for General Practice (“CNSGP”).  The CNSC will not cover returning midwives to the profession, but the Royal College of Midwives have confirmed that they will extend all of the benefits of membership including Medical Malpractice Insurance to returning retired midwives.

For more information regarding this please click here.

Last updated on 7th April, 2020

Can I use my Public and Employer's Liability insurance to protect my business from a claim?

Business operators such as travel operators, hotels and restaurants remain vulnerable to claims of failure to protect against contracting the virus. There is a high chance of claims from employees, clients and members of the public. These are likely to be covered under public liability and employer’s liability insurance.

Last updated on 27th April, 2021

When will these temporary Right To Work measures end?

The Home Office has not stated when it will end these temporary measures, albeit it has stated that it will provide a warning. Where employers have carried out checks using the temporary measures, the Home Office has confirmed that it will require employers to carry out retrospective checks on any of the following:

  • Employees who started working for you when the temporary measures were in place
  • Employees who required a follow up check during the temporary measures (for example because their previous leave was coming to an end).

It is not explicit from the guidance but these retrospective checks must require you to have in your possession the physical ID in its original form. When carrying out the retrospective check, employers must record this using the following wording “the individual’s contract commenced on [insert date]. The prescribed right to work check was undertaken on [insert date] due to Covid-19.”

These further checks must be made within eight weeks of the temporary measures ending, and employers must keep records of both checks undertaken. Where the employer discovers that the employee does not have the right to work during the retrospective check they should stop employing them.

Last updated on 15th May, 2020

How does salary sacrifice affect the Government's Coronavirus Job Retention Scheme?
  • Employee pensions contributions are often paid by way of salary sacrifice arrangements.
  • Use of such arrangements may reduce the amount of wage an employer can claim under the Coronavirus Job Retention Scheme, as the reimbursement is calculated by reference to an employee’s actual pay as at 28 February 2020, hence post sacrifice pay.
  • Using the Coronavirus Job Retention Scheme does not in itself bring a salary sacrifice arrangement to an end, but where an employer wishes to maximise the amount of an employee’s pay that will be covered by the CJRS, the employer and employee(s) concerned may agree to terminate the salary sacrifice arrangement as part of furlough. HMRC has recently announced that the Covid-19 pandemic will be considered a “life event” (i.e. one of the permitted reasons to break a salary sacrifice arrangement mid-term), if the employment contract is updated accordingly.

Last updated on 14th April, 2020

How have competition law rules been relaxed in the light of the coronavirus outbreak?

The Competition and Markets Authority (CMA) has issued a number of guidance documents about the application of competition law rules during the coronavirus outbreak. In general, the competition law rules are being relaxed in very specific circumstances.

Last updated on 31st March, 2020