What do we need to do?
Privacy policy – You must make sure the relevant privacy policies deal with how you will process Covid-19 data. You should have an employee privacy policy and this may already deal with health data (if it doesn’t, it should). You might also need to look at privacy policies for customers, visitors and suppliers. This ensures that processing is lawful, fair and transparent.
Lawful processing conditions – You will need to consider which processing conditions you are relying on (remembering that you need both an Article 6 condition and an Article 9 condition – this is the part of the GDPR which deals with special category data). As a lot of the data you collect will be about employees, you can’t use consent so you will have to find another lawful reason under GDPR which allows you to process the data.
Appropriate policy document – When you are considering your Article 9 processing conditions, remember you must also have an “appropriate policy document” in place.
Processing record – Finally make sure your processing record is up to date with information on what data you collect and use.
Related FAQs
The current guidance issued by Mr Justice Hayden confirms that remote hearings may be conducted using the following facilities and that this will be the default position until further direction:
- By way of an email exchange between the court and the parties;
- By way of telephone using conference calling facilities;
- By way of the court’s video-link system, if available;
- The use of the Skype for Business App installed on judicial laptops;
- Any other appropriate means of remote communication, for example BT MeetMe, Zoom or FaceTime.
As above, people must not leave their home unless they have a ‘reasonable excuse’ and travelling should be limited to their local area. Employees may leave their home and local area to travel for work if they cannot reasonably work from home. You should attempt to reduce the number of journeys they make.
Employees will be reluctant to take unpaid leave or a sabbatical but when faced with the alternative prospect of redundancy may give it some serious consideration. This would remove the cost of that employee from the employer’s business for an agreed period of time. This is an option which can be offered to employees but again, imposing it without agreement creates significant risk.
Yes – there should be a framework in place to ensure that MHFAs are fully supported themselves and so that individuals are supported beyond the support the MHFAs provide.
This will be dependent upon the how the leasehold structure is set up for each relevant building, but it may be the local authority. We would be happy to provide further advice in relation to specific buildings if you contact us separately with the relevant details and documents.