What should I be mindful of in relation to pregnant workers? Is there a right to suspend?

• On admission to hospital, all adults should be assessed for frailty, irrespective of their age and Covid-19 status. Regard should be had to any comorbidities and underlying health conditions.
• If a patient is identified as potentially having Covid-19, the UK Government guidance on infection prevention and control measures should be followed.
• If Covid-19 is then diagnosed in someone who is not isolated from admission or presentation, the UK Government guidance on actions required when a case was not diagnosed on admission should be followed.

Employers will be collecting and sharing health information. Health information is sensitive and higher data protection standards apply. Here are a few key pointers.

• Update privacy notices to cover the new collection and sharing of employees’ information and provide these to the workforce. Be transparent and fair.
• Identify the legal basis and condition for use of this information and put any required paperwork in place. The ICO guidance will help. For some conditions such as the employment condition, an Appropriate Policy Document (APD) will be required. The ICO has an APD template.
• Only use the information for the purpose of managing the workforce during the pandemic.
• Only collect or share information if it’s necessary – if it’s a targeted and proportionate way of achieving your purpose.
• Make sure any health information collected and shared is accurate – there may be serious consequences if it’s not.
• Work out how long the information must be kept for. Keep a record of that period and act on it at the appropriate time.
• Security is very important – there may be malicious actors trying to trick employers and employees. Make sure employees know how to identify a genuine NHS Test and Trace contact. Keep the information secure. Use the ICO’s data sharing checklists** and keep a record of the disclosures made and why. Control external disclosures – only certain authorised members of staff should make them.
• Make sure individuals can still exercise their data protection rights – that’s also very important. Keep data protection records up-to-date and ensure any exports of personal information outside the UK are compliant.
• Before introducing employer-led testing like taking temperatures, thermal imaging or other potentially intrusive tests, work out if a data protection impact assessment (DPIA) is required. It will be if the intended processing is ‘high risk’. If it is, then carry out a full DPIA. It will help address the issues systematically and mitigate risks.
• All this demonstrates ‘accountability’ – it shows affected individuals and the ICO that the employer is complying with data protection requirements.

If you need further help, please visit the ICO’s data protection and coronavirus information hub or ask our data protection team.

** Please note that this link is to the ICO’s existing checklists and data sharing code of practice. We will update the link to the ICO’s new checklists after they are published.

If you have obtained a Grant of Probate or Grant of Letters of Administration there should be no need to complete an indemnity, merely an account closure form. If however you have not yet obtained a Grant but the bank is willing to release funds then they will generally require an indemnity to be executed. Several banks and building societies including Barclays, Lloyds, HSBC and Santander have signed up to the British Banking Association’s voluntary Bereavement Principles, one of which is to support the bereaved according to their personal needs and work with you to resolve everything as quickly as possible.

If the indemnity requires a solicitor to act as a witness, you should contact the bank to see what they are willing to do to get around the problem, given the current situation.

CEST stands for Check Employment Status for Tax and, although this should do exactly what is says on the tin, there has been criticism of its accuracy and effectiveness. The CEST tool does not test whether there is ‘mutuality of obligation’ in the relationship which is a key factor in determining status.

You are not obliged to use CEST if you are happy with your own assessment process. If you do use CEST keep a record of the certificate given at the end of the assessment and keep this on the contractor’s file. HMRC will stand by the outcome of a CEST assessment provided the information has been honest and accurate. However, you must have entered information honestly to rely on it – you can’t just say what you want to get the right answer, as HMRC may test what you have said.  Also, many people are unhappy with the CEST tool and consider it leans too much towards employed status.

Has there ever been a more important time for all staff to feel that they are able to raise concerns about their working environment?

It is a pertinent time to remind all staff that they should be able to raise concerns without the fear of repercussions. It is a good time to be reviewing and re-issuing your Freedom to Speak up/Whistleblowing policy to all. Likewise it is a good time to remind all staff that they should not treat others unfairly or detrimentally for raising health and safety concerns.

Both subjecting someone to a detriment because they have blown the whistle or raised health and safety concerns (and dismissing someone for the same) is unlawful.