The Information Commissioner’s Office (ICO) has recently released guidance on the unprecedented challenges being faced by organisations during the Coronavirus (COVID-19) pandemic (available at The ICO has confirmed that it will not take regulatory action against organisations that need to prioritise areas other than data protection, or where organisations need to adapt their usual approach during the COVID-19 pandemic. However, organisations must still be mindful of their data protection obligations as the ICO’s more lenient approach will only extend to those organisations and circumstances that are legitimately affected by the COVID-19 pandemic.

Key points from the ICO guidance:

Practical steps you can take now:

If you would like to discuss further or enquire about advice on any aspect of data protection law, please call one of the Knights plc Data Protection Team whose details can be found here: