IOSH forums home
»
Our public forums
»
OSH discussion forum
»
GDPR compliance and Accident Reports/Riddor question
Rank: Forum user
|
I have been away from a H&S role for a few years now but have the potential opportunity to assist with some H&S work.
Can I just ask members how they manage GDPR compliance relating to recording accidents and reporting under RIDDOR? Would it be viewed that an Individual providing their information/data to complete an accident report, as them providing consent for it to be used in conjunction for the purpose it has been obtained and for it to be used for onward reporting under RIDDOR and/or advising insurers. If not, what processes do members adopt to comply/facilitate this?
Thank you for your assistance.
|
|
|
|
Rank: Super forum user
|
GDPR does not trump UK legal obligations under RIDDOR (i.e. you do not need to seek consent).
Your only concern will be regarding widely distributing the I.P. name in internal / external business reports. The issue becomes more complex if you firm is based or has overseas operations - we have had to stop "naming names" in our in-line reporting system so that it can be used in European countries where their own interpretations of GDPR take precedence.
|
2 users thanked Roundtuit for this useful post.
|
|
|
Rank: Super forum user
|
GDPR does not trump UK legal obligations under RIDDOR (i.e. you do not need to seek consent).
Your only concern will be regarding widely distributing the I.P. name in internal / external business reports. The issue becomes more complex if you firm is based or has overseas operations - we have had to stop "naming names" in our in-line reporting system so that it can be used in European countries where their own interpretations of GDPR take precedence.
|
2 users thanked Roundtuit for this useful post.
|
|
|
Rank: Super forum user
|
The use of personal information under RIDDOR would be classed as a legal requirement under the The Social Security (Claims and Payments) Regulations 1979...and would not need consent under GDPR ...that said however it would be good practice to inform the person at the time where thier data is likely to end up...the same does not apply for subsequent or related medical information which will need consent to obtain and store.
|
|
|
|
IOSH forums home
»
Our public forums
»
OSH discussion forum
»
GDPR compliance and Accident Reports/Riddor question
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.