DPC publishes guidance on processing COVID-19 vaccination data

Share
Last updated: May 19th, 2022

Employers in all sectors are working hard to ensure their workplace is safe for everyone, customers and employees alike.

One way they’re trying to protect their entire workforce is by asking employees if they’ve had their COVID-19 vaccine.

In response to this, the Data Protection Commission (DPC) has published guidance on processing COVID-19 vaccination data in the context of employment.

Stick to public health advice

In their guidance, the DPC has reminded businesses to follow the government’s public health policies and advice when processing health data. This is due to the absence of public health advice requiring employers to monitor COVID-19 vaccination status.

The DPC advises that “the processing of vaccine data is likely to represent unnecessary and excessive data collection for which no clear legal basis exists.”

Purpose of vaccination data collection

The Work Safely Protocol outlines certain circumstances regarding the lawful collection of employee vaccination data on the legal basis of necessity. This may apply to businesses that require vaccination as a necessary safety measure. Areas include frontline healthcare service providers.

Data minimisation

The DPC guidance specifically refers to the principle of data minimisation under Article 5(1)(c) of the General Data Protection Regulation (GDPR).

This guidance document recommends that businesses adhere to the public health infection and control measures set out in the Work Safely Protocol. However, no measures refer to asking staff about their vaccination status.

And so, adhering to the existing public health advice remains paramount. Doing so ensures you comply with the principle of data minimisation and avoid any unnecessary processing of employees’ personal data.

Employee vaccination: Special category data

Employee vaccination status is special category data under Article 9 of the GDPR. As vaccination is considered health-related information, it receives extra protection under data protection legislation.

The guidance reinforces the fact that taking a vaccine is a voluntary decision. In turn, it shouldn’t be a mandatory workplace safety measure unless specific circumstances demand vaccination.

There’s also the added issue of younger employees being ineligible for a vaccine under the public health programme. Some of your employees may also have medical reasons for not taking the vaccine. On these issues, the DPC advises that processing vaccination data in an employment context is likely to be unnecessary under data protection principles.

Article: Should Irish employers require staff to take a COVID-19 vaccine?

Imbalance of power between business and staff

Another issue raised in the DPC guidance is the power imbalance that exists between a business and its staff.

This is cited as another reason why employers should refrain from asking employees to provide their consent when undertaking vaccination data collection. In the context of an employment relationship, there could be a question as to whether this consent is given willingly.

What next for employers?

Employers have a lot of questions about the processing of employee COVID-19 vaccination data. Thankfully, and the DPC guidance clarifies many of these.

At present, employers find themselves in a tricky position when it comes to their data protection obligations. If nothing else, it makes it harder to manage health and safety in the workplace. As the situation remains fluid, it’s best to continue to monitor public health advice until further notice.

Need our help handling staff vaccination?

Having read our article, you may have questions on handling staff vaccination. If so, speak to an expert Graphite employment law consultant now on 01 886 0350 or request a callback here.

Book a call with a consultant

Complete the form below and a consultant will call you as soon as possible.

Book a call with a consultant

Complete the form below and a consultant will call you as soon as possible.

Latest Resources

Employer’s guide to lay-off in Ireland

lay-off in Ireland
It’s common for businesses facing a downturn in trade to let employees go on a temporary basis. As an employer, you may also need to […]
Read

Long-term sickness absence: When to conduct an informal welfare meeting

Everyone gets sick, so short-term sickness absence is something all employers will have to deal with from time to time and tends to cause minimal […]
Read

Notice periods: an employer’s guide

Notice periods: an employer’s guide
Notice Period: Within a business, it’s constantly necessary to re-evaluate and adjust workforce planning. Whether this is due to employees looking for different career paths […]
Read
View more articles

Sign up to our Newsletter

Graphite White Logo

Graphite HRM
Block W,
East Point Business Park,
Dublin 3,
Ireland

Tel: 01 886 0350

 

Unit 5,
Citylink Business Park,
Albert Street,
Belfast,
BT12 4HQ,
Northern Ireland

Tel: 028 90 32 5495

26/27 South Mall,
Cork City,
County Cork,
Ireland

Tel: 01 886 0350

Call Us Now
01 886 0350

Email Us
info@graphitehrm.com
Twitter Linkedin-in Facebook-f Instagram Youtube

Olga Shevchenko

Director/Advocate, Immigration Advice Bureau

Olga Shevchenko specialises in immigration advocacy and consultancy, in particular, employment permit, visas, family reunification, citizenship, etc, for those seeking to visit, reside or invest in Ireland.

Olga provides extensive information, knowledge, and support to her clients, enabling access to positive solutions for people struggling to handle the immigration law.

Minister Neale Richmond

Minister of State, Department of Enterprise, Trade and Employment

Neale Richmond TD was appointed as Minister of State at the Department of Enterprise, Trade and Employment with special responsibility for Employment Affairs and Retail Business and the Department of Social Protection in January 2023.

Much of his work at the Department of Enterprise, Trade and Employment is with businesses, workers, their representative bodies and the State Agencies to ensure that the economic recovery and growth extends to all parts of the country. He works closely with the SME sector, including retail, on building resilience and on the transition to the green and digital economies.

Mark Carpenter

Director of Regulatory & Corporate Affairs, Sky

Mark Carpenter is Director of Regulatory & Corporate Affairs at Sky Ireland. In this role he has responsibility for External and Internal Communications, Public Policy and Regulatory Affairs and the company’s ‘Bigger Picture’ (CSR) programme. He also works closely with Sky Group teams on a variety of matters, in particular our partnerships with domestic broadcasters.

Prior to working at Sky, Mark worked as a Policy Officer in Houses of the Oireachtas and as a Management Consultant at Accenture. He has a BA in History from Oxford University and a PhD in Political Science from Trinity College Dublin.

Nora Cashe

Litigation and Compliance Manager, Peninsula

Nóra studied Law in Griffith College Dublin and qualified as a Barrister in 2008, practising in the area of Criminal law. She is also member of the Irish Employment Law Association.

Nora has extensive experience representing clients at Employment Tribunal hearings, Conciliation / Mediation meetings before both the Workplace Relations Commission and the Labour Court. 

Nóra is a member of the Irish Employment Law Association and engages with the WRC Adjudication Service as part of their stakeholder engagement forum.

Deiric McCann

Managing Director, Genos International Europe

Deiric McCann leads Genos International Europe – The EU division of a world-leading provider of emotional intelligence solutions. 

With over two decades experience at the highest levels of management, Deiric supports clients to develop the resilience, emotional intelligence, psychological safety and engagements of their employees.

Rhiannon Coyne

Senior HR Consultant, Graphite HRM

Rhiannon Coyne is a Senior HR Consultant at Graphite HRM and will be providing an overview of best practice on how to deal with complaints of bullying and harassment in the workplace. 

With a number of recent updates to employment laws, Rhiannon will take a closer look at employment equality and how it is interlinked to Health & Safety and what employers can learn from recent case laws.

David Begg

Chairman, Workplace Relations Commission

David Begg was appointed Chairperson of the Workplace Relations Commission (WRC) in January 2021.

David is also a professor at Maynooth University Institute of Social Sciences. Mr Begg’s extensive history in the trade union movement included leading the ESB Officers Association and Irish Congress of Trade Unions, stepping away from the latter in 2001 to chair international aid agency Concern.

David Begg was also previously a director of the Central Bank of Ireland between 1995 and 2010.