Shorter Reads

Protecting Personal Data as Lockdown unlocks

1 minute read

Published 18 June 2020

Authors

Share

Key information

Alongside all the other practical challenges of the easing of lockdown restrictions is the question of what additional requests organisations may need to make of their employees to provide a safe working environment.  This may include asking employees if they are experiencing any COVID-19 symptoms, requiring them to undergo testing in certain circumstances, and requiring them to provide for details of other employees, clients and suppliers with whom they may have been in contact.

Requests such as these will necessarily involve processing personal data and employees will perfectly reasonably want to be reassured that the protections and requirements of the GDPR and Data Protection Act 2018 are being observed.

It is therefore timely that the ICO has issued a 6 step guide to employers on these issues, as part of a toolkit of advice to businesses dealing with data protection during the Coronavirus lockdown.

In brief, the 6 steps are:

1.  Only collect and use what personal data is necessary;

2.  Keep it to a minimum;

3.  Be clear, open and honest with staff about their data

4.  Treat people fairly, to avoid discrimination;

5.  Keep people’s information secure; and

6.  Staff must be able to exercise their information rights.

While much of this may seem like a statement of the obvious, it is exactly these basic messages that need to be restated and reinforced at a time when a disorganised unlocking of lockdown can result in serious harm to individuals if sensitive health data is treated in a cavalier fashion.  The ICO has behaved exactly as we should wish a responsible regulator to behave: no scaremongering, no heavy handed application of rules or guidance, just reassuring common sense advice and policies that should not cause any difficulty to any business.

https://ico.org.uk/global/data-protection-and-coronavirus-information-hub/coronavirus-recovery-six-data-protection-steps-for-organisations/

Related latest updates
PREV NEXT

Arrow Back to Insights

Shorter Reads

Protecting Personal Data as Lockdown unlocks

Published 18 June 2020

Associated sectors / services

Authors

Alongside all the other practical challenges of the easing of lockdown restrictions is the question of what additional requests organisations may need to make of their employees to provide a safe working environment.  This may include asking employees if they are experiencing any COVID-19 symptoms, requiring them to undergo testing in certain circumstances, and requiring them to provide for details of other employees, clients and suppliers with whom they may have been in contact.

Requests such as these will necessarily involve processing personal data and employees will perfectly reasonably want to be reassured that the protections and requirements of the GDPR and Data Protection Act 2018 are being observed.

It is therefore timely that the ICO has issued a 6 step guide to employers on these issues, as part of a toolkit of advice to businesses dealing with data protection during the Coronavirus lockdown.

In brief, the 6 steps are:

1.  Only collect and use what personal data is necessary;

2.  Keep it to a minimum;

3.  Be clear, open and honest with staff about their data

4.  Treat people fairly, to avoid discrimination;

5.  Keep people’s information secure; and

6.  Staff must be able to exercise their information rights.

While much of this may seem like a statement of the obvious, it is exactly these basic messages that need to be restated and reinforced at a time when a disorganised unlocking of lockdown can result in serious harm to individuals if sensitive health data is treated in a cavalier fashion.  The ICO has behaved exactly as we should wish a responsible regulator to behave: no scaremongering, no heavy handed application of rules or guidance, just reassuring common sense advice and policies that should not cause any difficulty to any business.

https://ico.org.uk/global/data-protection-and-coronavirus-information-hub/coronavirus-recovery-six-data-protection-steps-for-organisations/

Associated sectors / services

Authors

Need some more information? Make an enquiry below.

    Subscribe

    Please add your details and your areas of interest below

    Specialist sectors:

    Legal services:

    Other information:

    Jurisdictions of interest to you (other than UK):



    Article contributor

    Enjoy reading our articles? why not subscribe to notifications so you’ll never miss one?

    Subscribe to our articles

    Message us on WhatsApp (calling not available)

    Please note that Collyer Bristow provides this service during office hours for general information and enquiries only and that no legal or other professional advice will be provided over the WhatsApp platform. Please also note that if you choose to use this platform your personal data is likely to be processed outside the UK and EEA, including in the US. Appropriate legal or other professional opinion should be taken before taking or omitting to take any action in respect of any specific problem. Collyer Bristow LLP accepts no liability for any loss or damage which may arise from reliance on information provided. All information will be deleted immediately upon completion of a conversation.

    I accept Close

    Close
    Scroll up
    ExpandNeed some help?Toggle

    < Back to menu

    I have an issue and need your help

    Scroll to see our A-Z list of expertise

    Get in touch

    Get in touch using our form below.



      Business Close
      Private Wealth Close
      Hot Topics Close