news

Overzealous Monitoring May Overstep Data Protection Boundaries

Employers who harness software to help manage productivity and other employee activity may find themselves inadvertently over-stepping data protection regulations.

The rise of electronic monitoring of employees has risen in tandem with the rise in home working triggered by the Covid-19 pandemic. While the numbers working from home has dropped from its peak of 49% during the 2020 lockdowns, the most recent figures from the Office of National Statistics show that around 40% of working adults are still working from home at least some of the time.

Before the pandemic, the figure was around 12.5%, and the dramatic shift has driven businesses and organisations into uncharted territory to manage their newly remote workforce. Many have addressed the challenge through an increasing use of electronic monitoring to tackle what may be seen as a loosening of control.

New research from the Information Commissioner’s Office “ICO”, which oversees and regulates data protection and freedom of information in the UK, found that 19% of those surveyed believe they have been monitored by their employer.

When asked how they felt about being monitored, 70% of those surveyed by the ICO said they felt it was intrusive and only 19% were comfortable taking a new job where an employer would be monitoring their activity.

This discomfort echoes findings by the Trades Union Congress “TUC” in 2022, which found significant and growing support among workers for stronger regulation of AI and tech-driven workplace surveillance, with more than 70% saying they believed technology-informed decision-making could increase unfair treatment. The TUC research found some sectors reporting very high levels of surveillance, at more than 70% across the financial sector and the wholesale and retail sectors.

Developments in software have made a range of options available to employers, making it all too easy to implement a form of monitoring, whether to check if people start work on time or to monitor activity – such as through the number of keystrokes being made – but that ease of monitoring should not be taken for granted. Any monitoring has to comply with data protection law.

There is a potential breakdown in the implied term of trust and confidence which should exist between an employer and employee. If the employer oversteps the mark and imposes monitoring which is not permitted within data protection law, there is a risk of reputational damage to the employer that may come through implementing what employees may consider to be an excessive surveillance culture.

The ICO has issued guidance for employers to support organisations in ensuring that any monitoring of workers is undertaken lawfully, transparently, and fairly. Their guidance highlights some of the key considerations. The privacy watchdog has also issued a warning to employers, saying they will take action if people’s privacy is undermined.    

Any surveillance needs to be compliant with the law, there is always an imbalance in an employer/employee relationship. In some circumstances employees may feel they would be putting their job at risk if they were to dispute a planned form of monitoring.

The best approach is to ensure that any action taken is legal, also for employers to communicate with their employees to ensure that they know what is happening and have a sense of trust. We recommend that company policies are reviewed and updated regularly, to ensure advances in technology adhere to the Data laws.

If you would like to discuss anything in this article, contact our Employment Law team on 01603 677077 or email info@spiresolicitors.co.uk.