What are the data protection implications of holding Covid-19 health data?
The ICO is providing new guidance to organisations regarding data protection and coronavirus, which can be accessed here: https://ico.org.uk/for-organisations/data-protection-and-coronavirus/
Information about the Covid-19 health status of individuals is special category data under the GDPR. This means it is high risk which has implications for how you use it, store it and keep it secure.
You will already hold health data about your employees as this is necessary to provide a safe, accessible place to work and to make reasonable adjustments to the workplace. You now need to make sure that the information you gather about your employees, visitors to your sites, customers and suppliers about Covid-19 is processed in accordance with data protection laws.
Related FAQs
The workplace will not revert to its pre-Covid-19 state overnight, with social distancing in the work place likely to remain in place for quite some time to come.
This could mean that businesses will need to think carefully about how their capacity will be impacted, and how this will affect their ability to perform contractual obligations.
For example, if a business has an outsourcing contract under which it has to perform a business process, or produce a particular output, will it be able to comply with contractual performance standards whilst social distancing is still in place? In the context of a manufacturing business, what will be the impact on production schedules and delivery dates? There might also be an impact on operating costs, for example if processes are changed and additional shifts are introduced – can these additional costs be sustained?
Businesses need to plan a safe system of work for their employees to ensure they comply with Health and Safety legislation, but they also need to consider how this will impact on their ability to perform pre-existing contractual obligations. Ultimately, contractual arrangements with customers might need to remain on a revised footing for a number of months.
Getting to a point where agreement is reached on allocation of additional costs and/or changes to key elements of a contract such as scope of work, performance standards and delivery date will require co-operation between contracting parties. Again, it is important that any variations that are agreed are recorded properly and follow the required contractual procedures.
If it is not possible to find work for the employee to do at home, you do have the option of putting the employee on furlough.
Lay off is a temporary measure where an employee is required not to do any work by their employer in any given week and does not receive any salary for that period. This is sometimes used interchangeably to refer to redundancies; however, this is not correct and lay-off is different to redundancy.
Lay-off may be very useful to achieve short or medium-term cost savings in response to a temporary reduction in demand for products or services. Whether the employer has the right to implement lay-offs and how swiftly they can expect to be able to do so will depend on whether the relevant contracts of employment have specific provisions which deal with lay-off.
Short time working is where an employer temporarily reduces an employee’s working hours, with a corresponding reduction in their pay to less than 50% of their usual salary. This could be through reducing the number of working days, reducing the length of working days or a combination of both.
Short time working provides the employer with the ability to reduce staffing costs whilst providing flexibility in deciding the form of working pattern. As with lay-off, whether the employer has the right to unilaterally impose short-time working and how swiftly they can expect to practically implement this will depend on whether the relevant contracts of employment contain a short time working clause.
Where there is a contractual right to lay off or impose short time working: There is no strict process which has to be followed. We would advise transparent communication and confirmation in writing.
Where there is no contractual right: Imposing these options without a contractual right to do so will be a fundamental breach of the employee’s contract of employment. In these circumstances the employee’s options are: accept the situation and keep working; claim for lost pay; resign and claim constructive dismissal. The best approach for employers in these circumstances is to instead seek to agree lay-off or short-time working arrangements with employees.
Selecting employees for lay-off or short time working: There is no prescribed method for selecting which employees are to be laid-off or placed on short-time working, provided that the employee cannot argue that the method of selection is discriminatory in some way. We would advise selection based on objective business reasons.
Entitlement to pay during lay-off or short time working: Employees must be paid for the time they work. Additionally, while on lay off or short time working, an employee is entitled to receive statutory guarantee pay for the first 5 workless days in any 3-month period. The maximum statutory guarantee pay in any 3-month period is £150 (i.e. £30 for each workless day up to a maximum of 5).
Entitlement to statutory redundancy pay: Once employees have been on lay-off or on short-time working for 4 consecutive weeks or for a combined total of 6 weeks during any 13-week period, they may seek to claim a statutory redundancy payment (provided that they have two years’ service). There is a prescriptive process for this – please seek advice.
The guidance states that people should aim to wear a face-covering in indoor spaces where social distancing is not always possible and they come into contact with others, for example on public transport or in some shops, and potentially in the workplace. Face coverings do not mean face masks such as clinical masks worn by certain key workers as PPE, which should be reserved for those people.
Staff working in areas that are open to the public must wear face coverings, this includes:
- shops
- supermarkets
- bars
- pubs
- restaurants
- cafes
- banks
- estate agents
- post offices
- public areas of hotels and hostels
If these businesses have taken steps in line with Health and Safety Executive guidance for COVID-19 secure workplaces to create a physical barrier between workers and members of the public then staff behind the barrier will not be required to wear a face covering.
For other indoor settings, employers should assess the use of face coverings on a case by case basis depending on the workplace environment, other appropriate mitigations they have put in place, and whether reasonable exemptions apply.
Put simply, if it is a requirement of a particular role that PPE is worn, then this should be provided to the employee. If an employer dismissed an employee for refusal to carry out their role due to lack of PPE then this is likely to be an automatically unfair health and safety dismissal.
Furthermore, anyone who is subject to a detriment as a result of raising a health and safety concern, e.g. someone in this situation who refuses to work due to lack of PPE and is sent home without pay, will also have a potentially valid claim in the Employment Tribunal for that detriment, even if they are not dismissed.