What are the data protection implications of holding Covid-19 health data?
The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/
Information about the Covid-19 health status of individuals is special category data under the GDPR. This means it is high risk which has implications for how you use it, store it and keep it secure.
You will already hold health data about your employees as this is necessary to provide a safe, accessible place to work and to make reasonable adjustments to the workplace. You now need to make sure that the information you gather about your employees, visitors to your sites, customers and suppliers about Covid-19 is processed in accordance with data protection laws.
Related FAQs
The best advice is that parties should proceed as they would have done before the crisis began.
Ultimately closing a service will be a decision that is taken at the highest level and that decision will depend on risk appetite. Often these types of higher risk are mitigated by way of insurance but that still depends on an insurer being willing to accept that risk. This decision will depend on accepting a known risk and its consequences.
Employers had until 31 July 2020 to make any claims for claim periods up to 30 June 2020. That was the end of the old scheme.
From 1 July 2020, claim periods must start and end within the same calendar month and must be for at least 7 days unless you are claiming for the first few days or the last few days in a month.
You can only claim for a period of fewer than 7 days if the period you are claiming for includes either the first or last day of the calendar month, and you have already claimed for the period ending immediately before it.
For example, if an employee is furloughed for 7 days spanning a month. You can claim the last 3 in one month, and 4 from the next.
The crucial point is that you cannot make claims that cross calendar months.
The first time that you could make a claim for days in July 2020 was 1 July 2020. You could not claim for periods in July 2020 before this point.
As the coronavirus outbreak continues to develop, we have seen many countries begin to implement emergency procedures and legislation in an attempt to control the spread of the disease.
These have included bans on gatherings and public events, closures of shops, bars, restaurants and public spaces, and full lockdowns which restrict all but key workers to their homes except in certain limited circumstances.
This has a direct impact on businesses and their ability to operate. So what happens if a contract becomes impossible to perform because of emergency legislation?
For example:
- If you are a hospitality business, you have agreed to host an event, and gatherings are prohibited
- If you are a manufacturer or service provider, and your staff are required to remain at home, making performance of the contract impossible
The GMC recognises the challenges the doctors may face as the situation continues to develop. This includes concerns about the risks to the health of the doctors when treating patients with coronavirus. Doctors should follow the current public health advice including self-isolating if they know or suspect that they are infected or are at a higher risk of infection.
Finally, all necessary steps should be taken to ensure that doctors have access to protective equipment and minimise the risk of transmission when treating patients. It is imperative that a record is kept of all decisions made and how any safety or health concerns have been handled.
The GMC continues to work with NHS England and UK’s Chief Medical Officers to provide updates and advice to all doctors as the situation develops. Click here for more information.