#RSAC365: Organizations Must Prepare for New #COVID19 Data Privacy Challenges

New data protection issues brought about by the COVID-19 pandemic were discussed by Behnam Dayanim, partner and global chair of privacy and cybersecurity practice at Paul Hastings LLP, during a session at the RSAC 365 Virtual Summit.

With COVID-19 vaccines now being rolled out across the world, many organizations are preparing to enable the safe return of staff to their offices. In the view of Dayanim, it is important to question and challenge the storing of sensitive personal data related to this return. He cited a recent IAPP/EY study analyzing data collection by organizations of staff returning to physical work locations. Among the findings, 76% of organizations have asked employees to notify them if they are diagnosed with COVID-19, 53% asked staff about personal travel and 23% have taken temperature tests of employees. He asked: “Is there really a need to record that, or is it simply enough to know that you have that process in place?”

Dayanim also said that, over the next few months, it is likely employers will ask their staff to notify them about whether or not they have been vaccinated. “All of these things are quite novel; not the types of questions that one would normally have expected employers to be asking of their employees,” he added.

Another data privacy issue regards organizations sharing sensitive COVID-related data about their employees with third parties. For instance, it has been shown that three in 10 organizations have been asked to share anonymized COVID data with governmental bodies or NGOs, while 20% have shared the names of staff diagnosed with other employees or government agencies.

Over the coming months, it is important that proce ..

Support the originator by clicking the read the rest link below.