ICO publishes data protection guidance on customer information amid coronavirus (COVID-19)

ICO publishes data protection guidance on customer information amid coronavirus (COVID-19)

The Information Commissioner’s Office (ICO) has published data protection guidance for organisations required to collect customer and visitor information amid the coronavirus (COVID-19) pandemic. Businesses in the hospitality sector, leisure and tourism sector and close contact businesses, such as barbers and beauticians, in England are required by the government to collect customer information for its test and trace programme. Both the Scottish and Welsh Governments have also mandated certain organisations to ask for customer and visitor information.

The ICO has advised businesses throughout the UK to follow five steps when dealing with people’s data:

• only ask for the specific information included in the government guidance

• be clear, open and honest with people about the reasons why their personal information are being processed

• keep people’s data secure by notably ensuring that customers’ personal information is kept private

• don't use the personal information collected for contact tracing for other purposes, such as direct marketing, profiling or data analytics

• don't retain the personal information collected after 21 days

Source: Data protection guidance for collecting customer information

Related Articles:
Latest Articles: