Data protection



The employer is responsible for taking appropriate measures to ensure the protection of data used and processed by the teleworker. It is important that the employer informs the teleworker of all company rules concerning data protection. It is then the teleworker's responsibility to comply with these rules.

General advice

Employers and teleworkers should be careful to ensure that the other household members should not have access to personal data as defined by the data protection legislation.

Data security

Remote working is likely to raise issues of data security. The most important safeguard for employers is to make teleworkers aware of the risks, supported by simple and explicit policies including regular data backup procedures, automatic downloading and installation of security patches to all teleworker's computers, the use and maintenance of professionally supported anti-virus software (again with automatic downloading and installation of updates) and the use of email communications for and on behalf of the employer by the teleworker.

Other information

The legislation governing data protection is the General Data Protection Regulation (GDPR) and the Data Protection Act 2018. For general information on this topic see our data protection section.

You may also wish to refer to the Information Commissioner's Office's website, in particular its Guide to the GDPR.

Explore the law guide