Which charities will benefit from this funding and when – Key Services?

We are working with many of our clients to progress with stopping up applications in order to divert/stop up highways and public rights of way affecting development sites. Due to lockdown restrictions the Department for Transport stalled the progress of applications because they were unable to comply with the statutory publicity requirements. We have very recently been contacted by the Department for Transport casework team who have confirmed that the stopping up/diversion applications can now be progressed. We are aware that Councils across the country are also now progressing with applications. Please contact us if you require any advice/assistance in respect of your application.

• On admission to critical care, the risks, benefits and likely outcomes of the different treatment options should be discussed with patients, families and carers so they can make informed decisions about their treatment wherever possible.
• A member of the critical care team should be involved in these discussions whenever the patient or team needs advice about critical care to make decisions about treatment.

On 7 May the Government published guidance on how contracting parties can act responsibly in order to assist the effort to deal with Covid-19. The guidance seeks to persuade contracting parties to act reasonably and recognise the impact of Covid-19 on contractual counterparties. This will continue to be relevant as business begins to emerge from lockdown.

With the loss of face-to-face meetings in the current situation, video conferencing has taken centre stage. But how do you do that in a compliant way? Here are some of the main high-level data protection issues to consider when selecting and implementing a new third party provider’s video conferencing system.

1. Make sure you do your due diligence on the security measures offered by the provider. Clearly you can’t visit them, so look at the information offered publicly by the provider and read good quality, reliable, third party sources and ask the provider questions directly. Also ask any other organisations you know that use the provider. Document all this.
2. If personal information is being sent outside of the UK/European Economic Area, make sure that transfer complies with GDPR. If it’s a US provider, is it registered in the EU-US Privacy Shield list or does it offer a model clause contract (you’re likely to need the 2010 version)? Or is the service provided from a country whose data protection laws offer equivalent protection to those in Europe? Look at the support service as well as the hosting. Document this.
3. Make sure you put a compliant processor agreement in place. The provider should offer one as part of the contract terms. Check it meets GDPR requirements.
4. You’re likely to need to update your privacy notice, particularly if you’re going to record calls. Provide participants with a short message and link to the privacy notice in the meeting invite and on any registration page.
5. Create or update other GDPR-mandated documentation – for example, depending on your use, you may need a legitimate interests assessment and to update your record of processing.
6. Finally, configure and use the system in a secure and compliant way. Look at the settings/options carefully and think through the security and compliance implications of each. That could include deciding who in the meeting can share their screen; whether or not you use passwords for participants; whether or not to record, and if you’re going to record, where to store the recording. Document your decisions and the reasons for them.

The ICO has said it understands that resources, whether they are finances or people, might be diverted away from usual compliance work during the pandemic. However the last thing you need at the moment is to create a bigger problem than the one you are trying to solve. So do the best you can, ask for help from one of our specialists if you need it, and keep the whole thing under review.

On 16 April 2020, Ian Hulme, the ICO’s Director of Assurance, posted a blog for business owners, employers and managers about how to safely roll out the latest video conferencing technology.

On 21 April 2020, the NCSC published security guidance for organisations on choosing, configuring and deploying video conferencing services.

There have always been ways for public bodies to assist without being required to notify these for approval. These continue to be available during the financial crisis, and are likely to be increasingly useful for measures which need to be introduced quickly. The measures include:

Those where it is possible to conclude that there is no effect on trade between Member States – for example, measures which are likely to have only a limited local effect. The European Commission has concluded, for example, that measures to assist locally-focused cultural activity can be assumed to have no effect on inter-State trade. 

Those where it is possible to conclude that the State is acting in a way consistent with a commercial operator (the so-called Market Economy Operator Principle) – particular care will need to be taken in the context of current economic conditions to ensure that it can reasonably be asserted that a commercial operator would act in the same way as the public body.

Measures under the General Block Exemption Regulation – this legislation allows various types of aid, or aid schemes, to be employed.

Examples include aid for SMEs, aid for research and development, aid for local infrastructure and aid to ports and airports.

De Minimis Measures – Member States are permitted to grant small amounts of aid to undertakings over three fiscal years (the current year and the previous two years). This allows undertakings to receive up to €200,000 (or €500,000 where they are providing public services).