Which charities will benefit from this funding and when – Key Services?

Obtaining an employee’s Covid-19 test result will amount to processing personal data for the purposes of the General Data Protection Regulation 2016/679 (GDPR) and information about an employee’s health is a special category of data (sensitive personal data under the Data Processing Act 2018 (DPA)).

In accordance with the GDPR and DPA, there must be lawful grounds for processing such information. Most employers rely on employees’ consent to obtain medical information and process sensitive personal data and if the employee is unwilling to give consent, you will not normally be entitled to the information.

Special category data can be processed lawfully if it is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller. Employers may be able to require an employee to disclose their Covid-19 test if there is a substantial public interest, such as ensuring that the employee self-isolate if they have a positive test. However, there is a risk that this measure could be considered disproportionate particularly if it is enforced on all employees as a blanket measure.

With the loss of face-to-face meetings in the current situation, video conferencing has taken centre stage. But how do you do that in a compliant way? Here are some of the main high-level data protection issues to consider when selecting and implementing a new third party provider’s video conferencing system.

1. Make sure you do your due diligence on the security measures offered by the provider. Clearly you can’t visit them, so look at the information offered publicly by the provider and read good quality, reliable, third party sources and ask the provider questions directly. Also ask any other organisations you know that use the provider. Document all this.
2. If personal information is being sent outside of the UK/European Economic Area, make sure that transfer complies with GDPR. If it’s a US provider, is it registered in the EU-US Privacy Shield list or does it offer a model clause contract (you’re likely to need the 2010 version)? Or is the service provided from a country whose data protection laws offer equivalent protection to those in Europe? Look at the support service as well as the hosting. Document this.
3. Make sure you put a compliant processor agreement in place. The provider should offer one as part of the contract terms. Check it meets GDPR requirements.
4. You’re likely to need to update your privacy notice, particularly if you’re going to record calls. Provide participants with a short message and link to the privacy notice in the meeting invite and on any registration page.
5. Create or update other GDPR-mandated documentation – for example, depending on your use, you may need a legitimate interests assessment and to update your record of processing.
6. Finally, configure and use the system in a secure and compliant way. Look at the settings/options carefully and think through the security and compliance implications of each. That could include deciding who in the meeting can share their screen; whether or not you use passwords for participants; whether or not to record, and if you’re going to record, where to store the recording. Document your decisions and the reasons for them.

The ICO has said it understands that resources, whether they are finances or people, might be diverted away from usual compliance work during the pandemic. However the last thing you need at the moment is to create a bigger problem than the one you are trying to solve. So do the best you can, ask for help from one of our specialists if you need it, and keep the whole thing under review.

On 16 April 2020, Ian Hulme, the ICO’s Director of Assurance, posted a blog for business owners, employers and managers about how to safely roll out the latest video conferencing technology.

On 21 April 2020, the NCSC published security guidance for organisations on choosing, configuring and deploying video conferencing services.

The Construction Leadership Council (with backing from the Government) has issued practical guidance and draft pro-forma documents to enable all parties involved in the construction supply chain to enter into collaborative and open dialogue about applications for extensions of time and additional payment and to minimise potential disputes. The guidance can we downloaded here

The draft letters and notices included in the guidance have been prepared on the basis of the standard JCT Design and Build 2016 and NEC 3/4 Engineering and Construction Contract (Option A) and parties will need to make sure that they are completed/adjusted to comply with their own specific contracts.

The Cabinet Office has also issued a general statement calling on parties to contracts adversely affected by C-19 to act responsibly and fairly and to support national efforts to protect jobs and the economy.

During these unusual times, we are all having to adapt to what has become the ‘new normal’ and implement changes in how we carry out civil cases. If you are to give evidence in a remote hearing, whether this is by Microsoft Teams, Skype for Business or the Cloud Video Platform, we have pulled together a quick and useful guide below on what would be expected by the courts:

Before the hearing

• Make sure that you have access to the video-conferencing software that will be needed for the hearing. We will tell our clients and their witnesses in advance which platform will be used. The courts have increasingly been using Skype for Business to conduct the hearings (but you may find other platforms being used)
• Test that your camera and microphone are working and it is clear to see/hear you.
• Dress appropriately, as if it was an in-person hearing, and use the same formalities.
• Ensure that the background which is visible on your screen is appropriate and allows for your face to be clearly seen. A ‘blur background’ option may also be available on your settings which you may prefer.
• Make sure that your mobile phone is on silent and you are in a location where there will be no/minimal distractions. You should be on your own in a room when giving evidence, however, as we have all experienced with working from home, sometimes interruptions such as children appearing cannot be avoided.
• Join the call ahead of the allocated time, in order to allow for any small technical difficulties.

During the hearing

• Have a copy of the hearing bundle to hand, so that you can follow the proceedings (this may be in hard copy or soft copy). You are not allowed any other notes or papers, whether hard copy or electronic, in front of you when giving evidence.
• Unless addressing the Judge or you have been directly asked a question, keep your microphone muted.
• When giving evidence, you must make sure both your camera and your microphone are switched on.
• Remote hearings can be difficult and if you do not understand or you do not hear a question properly, then do ask for the question to be repeated/re-framed.
• You should not move away from the screen without permission from the Judge. The Judge will allow time for breaks.
• Address the judiciary and other advocates the same way as you would if you were in a physical courtroom.
• It is permitted to drink water throughout the hearing, but mugs of tea and/or coffee are probably best avoided. It is also not permitted to eat food during the hearing.
• Don’t panic if someone walks into the room or the dog starts barking because there is a knock at the door. Judges are only too aware about what might happen. Communication is key and if the interruption has interfered with your train of thought or the evidence you are giving then do say so.
• Be aware that all evidence is recorded and that a transcript of all evidence can be obtained at a later date.

We recommend that ongoing support is provided to all MHFA’s beyond completion of the MHFA training. It is necessary to do refresher training (approx. every 3 years) and ideally ongoing ‘continued professional development’ should be provided as well as regular opportunities for debriefing / seeking support. One way of supporting your MHFAs in the workplace is by creating a buddy system amongst the MHFAs. That way the individuals carrying out the role of MHFAs have a support structure in place amongst themselves. All trained MHFAs can also reach out to management to discuss any concerns they have or to seek any further support they need.