What are the temporary adjustments to Right To Work checks?

Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.

• Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
• Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
• Only use the information for the purpose of managing the workforce during the pandemic.
• Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
• Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
• Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
• Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
• Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
• Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
• All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.

If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.

** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.

Ward Hadaway in conversation with Begbies Traynor webinar was recorded on Tuesday 16th June.

The business spotlight is firmly on Directors. Difficult, sometimes drastic decisions need to be made in unprecedented times. But the consequences of those decisions have long shadows, and Directors need to consider their future position through the lens of their creditors, shareholders, funders, HMRC and even the courts.

In conversation with leading business rescue and recovery specialists, Begbies Traynor, we focused on the proactive approach Directors can take in these exceptionally challenging times. We discussed very practical advice about the quickest routes to funding, how to bolster cash flow, protecting the Board, and ultimately how to be proactive and in control of the process if you think there is no way back for your business as a result of the pandemic.

It is important to note that the changes to insolvency law currently before parliament only deal with wrongful trading – all other duties remain the same. So Directors must still ensure they are acting in the best interests of the company, its shareholders and creditors. In this context, the webinar discussed funding options for keeping a business solvent, and how to manage the process if this is not possible.

Ward Hadaway partner Emma Digby talked to fellow partner and insolvency specialist Jane Garvin and Kris Wigfield and Matthew Cluer from Begbies Traynor about these issues.

This webinar is the first of our Yorkshire “In conversations with…” where we explore with other experts how businesses can get on the front foot in #gettingbacktobusiness.

Once the collective process concludes, an employer can make the decision to proceed with the restructure. They will then have 1-on-1 meetings with employees about the impact of the restructure on them. This will include consideration of alternative employment. There is no need to consult further about the proposal, merely the effect of the restructure on the individual.

It is unlikely that an employer can place such a requirement on staff without infringing the employee’s privacy. If the employee is acting in accordance with the rules, limiting their activity would likely be considered unreasonable.