What do we need to do?
Privacy policy – You must make sure the relevant privacy policies deal with how you will process Covid-19 data. You should have an employee privacy policy and this may already deal with health data (if it doesn’t, it should). You might also need to look at privacy policies for customers, visitors and suppliers. This ensures that processing is lawful, fair and transparent.
Lawful processing conditions – You will need to consider which processing conditions you are relying on (remembering that you need both an Article 6 condition and an Article 9 condition – this is the part of the GDPR which deals with special category data). As a lot of the data you collect will be about employees, you can’t use consent so you will have to find another lawful reason under GDPR which allows you to process the data.
Appropriate policy document – When you are considering your Article 9 processing conditions, remember you must also have an “appropriate policy document” in place.
Processing record – Finally make sure your processing record is up to date with information on what data you collect and use.
Related FAQs
Potentially, yes. If someone refuses to follow the health and safety measures that have been put in place to protect them, colleagues and possibly their customers, including (where appropriate) the use of PPE then this is a disciplinary issue and should be dealt with as such. Repeated failure to comply with the requirement to follow these measures, or a one off significant failure, may be sufficient to justify dismissal, depending on the circumstances.
The guidance is helpful and is likely to be useful to businesses as they seek to respond to the crisis and to restart their business activities as lockdown is eased. However, there remain outstanding questions. For example, can collaboration to prevent widespread insolvencies be viewed as in the interest of consumers? Businesses need to remain aware of the extremely high stakes involved in relation to competition law. Businesses contemplating collaboration with competitors should take legal advice before doing so.
Employees on Flexible Furlough can engage in training during hours which you record your employee as being on furlough, as long as in undertaking the training the employee does not provide services to, or generate revenue for, or on behalf of their organisation or a linked or associated organisation.
Where training is undertaken by furloughed employees during hours which you record your employee as being on furlough, at the request of their employer, they are entitled to be paid at least their appropriate national minimum wage for this time.
Although these measures fall short of the level of assurance given to employees both in terms of eligibility for an immediacy of access to payments, they are a vast improvement on the support for self-employed workers that has been put in place until now. Current support includes:
- Access to business interruption loans
- Self-assessment tax payments that were due in July 2020 have been deferred until January 2021
- VAT is deferred until the next quarter
- The introduction of Time to Pay arrangements under which deferrals for HMRC payments can be agreed
- The minimum income floor for universal credit has been suspended which will allow self-employed workers to access the equivalent of Statutory Sick Pay (SSP)
- Universal credit and tax credit payments to increase by £1000 per year
The key factors for determining status for employment and tax purposes are generally the same. However there are some cases that highlight the different approaches taken by employment tribunals and HMRC when determining status. The important thing to consider for IR35 purposes is that being deemed employed for tax purposes does not mean a contractor is ’employed’. PSC’s can still be used in moving forward but there are likely to be discussions on the commercial aspects of the contractor arrangement. Employment status for tax purposes is likely to come at a cost for both parties.