New Ways of Working

Explore and keep track of key legal and compliance considerations for multinational employers as new ways of working become increasingly embedded as the pandemic begins to recede. Learn more about the response taken in specific countries or build your own report to compare approaches taken around the world.

Choose countries

 

Choose questions

Choose the questions you would like answering, or choose all for the full picture.

02. Outline the key data protection risks associated with remote working in your jurisdiction.

02. Outline the key data protection risks associated with remote working in your jurisdiction.

Flag / Icon

Argentina

  • at MBB Balado Bevilacqua
  • at MBB Balado Bevilacqua
  • at MBB Balado Bevilacqua

There is no specific statutory regulation on this matter related to employees under the home office framework. However, it is advisable to create a clear general policy on data protection or include in employment agreements provisions regarding data protection in order to clarify to employees the extent of their obligation. We recommend executing those documents in Spanish, due to the protective nature of local labour law; if there is a conflict with employees, a labour court is likely to dismiss all documents in a foreign language.

As a result, the Personal Data Protection Law (PDPL), Law No. 25,326, establishes the full protection of personal information recorded in personal files, registers, banks, or other technical means of data storage and processing. Therefore, employers must comply with the PDPL and take steps to ensure that this law applies throughout their organisation.

The main aspects of the PDPL are:

  1. The purpose of collecting employee data must be communicated to employees and written consent needs to be obtained.
  2. However, consent is not required if the data has been obtained from a public source; collected for the performance of the state’s duties; consists of lists limited to name, ID number, tax or social security identification, occupation, date of birth, domicile, and telephone number; or arises from a contractual relationship, either scientific or professional, of the data owner, and are necessary for its development or fulfilment.
  3. In addition, this Law establishes the employee’s right to access and modify any incorrect or false information. Furthermore, the collection of information related to an employee’s private life is permissible as long as the information collected complies with the following requirements: it is not used for discriminatory purposes; it does not violate the individual’s right to privacy; and it is reasonably used.
  4. When an employer requests personal data from an employee, they must be notified in advance and in an express and clear manner about: the purpose for which the data needs to be processed and who can use such data; the existence of the relevant data file or register, whether electronic or otherwise, and the identity and domicile of the responsible person; the compulsory or discretionary character of the information requested; the consequences of providing the data, of refusing to provide such data, or if it is inaccurate; and the data owner’s rights to data access, rectification, and suppression.
  5. Indeed, the processing of personal data requires express consent from the data owner, which must be accompanied by appropriate information, prominently and expressly explaining the nature of consent sought. This can be achieved by the employee signing a general consent form on entering employment. However, consent may be withdrawn by an employee.
  6. Various restrictions apply to the disclosure of personal data to third parties. This is generally only allowed if it is in the legitimate interests of the database owner (eg, the employer) and the data owner (eg, the employee) has consented. This consent can be revoked at any time by the data owner.
  7. The transfer of personal data to another country – which does not guarantee a proper level of data protection – is forbidden. Nevertheless, such prohibition is not applied when the individuals, whose personal information is intended to be transferred, give their express written consent.

All data regarding employees’ health is sensitive information, so the employer must get the express authorisation of the employee for any transfer of such date, and employers should stop or restrict the transfer to other companies or its employees that lack sufficient clearance to deal with health information, including covid-19 information.

Last updated on 13/07/2022

Flag / Icon

Australia

  • at People + Culture Strategies

In the context of an employer-controlled workplace, it is generally much easier to control and mitigate risks to an organisation’s confidential and sensitive information. There are physical protections intrinsic to the workplace (including by generally being off-limits to non-staff) and cyber-networks often have institutional protections in place, such as virtual private networks, firewalls, anti-virus software and secure IP addresses.

Other data protections that normally exist in an employer-controlled workplace include:

  • the use of private meeting rooms to conduct meetings and discussions involving sensitive and confidential information;
  • the secure storage of private, confidential and sensitive information (both hardcopy and in electronic form) on employer-controlled premises;
  • restrictions on the use of personal electronic devices in the workplace; and
  • the content of phone calls or video calls, and even information simply displayed in the workplace (including on computer screens), being kept private under the confines of the physical workplace.

However, the risks to data protection can be much harder to mitigate in the remote-working environment. These risks are heightened for several reasons, including that an employer has much less “visibility” over how employees deal with the employer’s (and any client’s) information in the home environment and much less when it comes to others who may be sharing that space. In this context, one obvious risk is the inadvertent and even deliberate sharing of sensitive information with one’s housemates, family members or guests.

Last updated on 21/09/2021

Flag / Icon

Austria

  • at Littler
  • at Littler
  • at Littler

The potential data protection risks associated with remote working are largely equivalent to those associated with working in a regular workplace, but are arguably even more prevalent.

A significant potential risk factor is the transfer of personal data if it is no longer securely stored on a company's servers. In addition, employers thereby transfer responsibility for the safekeeping and use of sensitive data to the worker. In doing so, employers have a significantly reduced ability to exert any influence. Nevertheless, companies are still generally regarded as being responsible for data protection within the meaning of the General Data Protection Regulation (GDPR), which creates a certain amount of friction.

It is also questionable whether a so-called privacy impact assessment must be carried out when working in a home office.

In principle, such an assessment must be conducted if data processing – especially when using new technologies – is likely to result in a high risk to the rights and freedoms of natural persons due to the nature, scope, circumstances, and purposes of the processing.

At present, it cannot be assumed that the threshold for the use of new technologies has already been exceeded in the context of remote working. In individual cases, however, it could amount to an "organisational solution" within the meaning of the GDPR, which also triggers the obligation of a privacy impact assessment by the data controller.

Insecure data connections that might not be constantly checked and maintained should also be considered. Another potential risk arises from it being easier for third parties to obtain access to sensitive data, whether it be persons in the same household or others at public places of work.

From a legal perspective, compliance with data security can also be adequately ensured for remote work, considering the GDPR and the corresponding national legal basis (Austrian Data Protection Act).

In home-office agreements, however, it is advisable to make further reference to data protection aspects. Here, companies should refer to the secure and data protection-compliant transport of sensitive hardware. Additionally, companies should take technical and organisational measures to ensure data security (eg, use of VPN, two-factor authentication with mobile phones, encryption of USB sticks, provision of a LAN network, requirements for secure storage of access data).

Last updated on 21/09/2021

Flag / Icon

Belgium

  • at Van Olmen & Wynant

Employees who process data at home could create a data leak when they lose the data or improperly dispose of it after it is no longer useful for the company. It is also more difficult to protect digital data in a non-professional setting and a private network might be more vulnerable to breaches.

Article 9.3 of CBA No. 149 states that company data used and processed by teleworkers for professional purposes must be protected. Employers should inform teleworkers of the company's rules on data protection and, in particular, the restrictions and penalties for the misuse of IT equipment and tools. Considering this, it is strongly recommended for companies to draft and implement an IT policy.

Also, employees’ personal data could be at risk since teleworking often means a direct insight into the personal life of the employee, using remote-monitoring devices. Such devices or software could register data that is not purely linked to their work and might possibly breach several GDPR principles, such as data minimisation.

Last updated on 21/09/2021

Flag / Icon

Brazil

  • at Pinheiro Neto
  • at Pinheiro Neto Advogados

In a remote-working environment, employees are more likely to use their personal devices and Wi-Fi and might share their workspace with family members or roommates. In addition, employees are more prone to mix personal and work-related data. These may lead not only to potential issues involving one’s privacy but also cyber threats and data leakage. Therefore, employers are strongly advised to implement strict policies on remote working, use of personal devices and data storage, as well as to provide the appropriate training.  

Last updated on 21/09/2021

Flag / Icon

France

  • at Proskauer Rose
  • at Proskauer Rose
  • at Proskauer Rose

Employers must ensure the protection of their company’s data but also of employees’ data.

According to article L. 1222-10 of the French labour code, the employer must inform the teleworking employee of the company's rules regarding data protection and any restrictions on the use of computer equipment or tools. Once informed, the employee must respect these rules.

The collective national agreement of 26 November 2020, provides more details in article 3.1.4. It is the employer's responsibility to take necessary measures to protect the personal data of a teleworking employee and the data of anyone else the employee processes during their activity, in compliance with the GDPR of 27 April 2016 and the rulings of the National Commission for Technology and Civil Liberties (the CNIL).

The CNIL said in its 12 November 2020 Q&A on teleworking that employers are responsible for the security of their company's personal data, including when they are stored on terminals over which they do not have physical or legal control (eg, employee's personal computer) but whose use they have authorised to access the company's IT resources.

The National Agreement of 26 November 2020 recommends three practices:

  • the establishment of minimum instructions to be respected in teleworking, and the communication of this document to all employees;
  • providing employees with a list of communication and collaborative work tools appropriate for teleworking, which guarantee the confidentiality of discussions and shared data; and
  • the possibility of setting up protocols that guarantee confidentiality and authentication of the recipient server for all communications.
Last updated on 21/09/2021

Flag / Icon

Germany

  • at CMS Hasche Sigle

As in other countries in Europe, the provisions of the EU General Data Protection Regulation (GDPR) and its German implementation in the shape of the German Federal Data Protection Act (BDSG) must be observed. Against this background, special measures must be taken to protect personal data in connection with remote work. This especially concerns third-party access to systems when computers and other portable devices are used in the home or on the go. To this end, employers often issue guidelines of standards with which employees must comply.

Also, remote working poses many data protection risks in terms of IT security and confidentiality. For example, cybercrime exploits the vulnerabilities inherent to remote working to infiltrate IT systems and steal confidential data, for instance through phishing attacks. At the same time, the confidentiality of a phone call, for example, is harder to protect while working in a co-working space, on a train or at home than in a typical workspace. Therefore, remote working may require different security measures and employers should inform their employees accordingly. In this regard, the European Union Agency for Cybersecurity last year published cybersecurity tips for remote working, both for employees (connecting to the internet via secure wi-fi networks, fully updating antivirus software and using a secure connection) and for employers (providing initial and regular feedback to employees on how to react if problems arise and restricting access to sensitive systems, etc.).

Last updated on 21/09/2021

Flag / Icon

Greece

  • at Kyriakides Georgopoulos Law Firm
  • at Kyriakides Georgopoulos Law Firm
  • at Kyriakides Georgopoulos Law Firm

Although necessitated by the circumstances, the transition of employees from corporate networks to largely unmonitored and vulnerable private networks outside the reach of perimeter-based security tools finds most employers unprepared and, thus, exposed to greater cyber threats and personal data breaches compared to on-site work. Employers are urged to take into consideration the increased risks a remote working environment poses to their data, systems, and networks and to invest heavily in IT security, while employees are encouraged to carefully follow all IT security guidelines, stay alert to security incidents, and be vigilant with phishing attacks. Within this framework, the Hellenic Data Protection Authority (HDPA) issued “Guidelines for implementing safety measures in the context of teleworking” on 15 April 2020, including appropriate safety measures concerning network access, the use of email or messaging applications, the use of terminal or storage media and how teleconferencing takes place to mitigate data protection risks associated with remote working.

On the other hand, many of these measures may result in more extensive collection and processing (recording, use, disclosure, etc) of employees’ personal data, including monitoring procedures. The key issue for most employers amid these circumstances is to find the right balance between protecting their IT systems and data, on the one hand, and safeguarding the data protection and privacy rights of their employees while working from home on the other.

Last updated on 14/07/2022

Flag / Icon

Hong Kong

  • at Lewis Silkin
  • at Lewis Silkin
  • at Lewis Silkin

As a result of the covid-19 pandemic, many companies in Hong Kong encouraged their staff to work remotely. This meant taking documents home from the office and using video conferencing, cloud computing and intranet platforms, where those software solutions were available, and also using personal devices to work more. As a result, confidentiality and security of data became more at risk.

Due to space constraints in Hong Kong, it is not practicable to expect employees to work or conduct confidential discussions in an isolated area away from others. Often employees are sharing workspace with family members and may also share a laptop or PC with them. If working from home is not an option for an employee, he or she may be working from cafes or public spaces. As a result, non-employees may overhear confidential discussions or see confidential documents. If these conversations and documents contain personal data (of employees, customers, clients, suppliers or other third parties), then the potential leakage of this data may constitute a breach of the Personal Data (Privacy) Ordinance (PDPO). There may also be contractual confidentiality breaches.

A typical home network is unlikely to have the same stringent security protections in place that an office network does. Attackers have seen an opportunity to steal user credentials from personal devices, which are now being used for work and likely do not have the same security protections as corporate devices. Using unsecured networks and devices may lead to data leakage or theft, which would be in breach of the PDPO.

If personal data is being processed by new third parties as a result of having to implement remote-working arrangements, an employer will need to notify its employees of this. This can be done by issuing employees with a revised or new Personal Information Collection Statement (PICS) setting out the change. The PDPO specifies that a data user, when collecting personal data directly from a data subject, must take all reasonably practicable steps to ensure that the data subject is informed of the intended use of their data and who will be handling such data. A PICS is therefore used to comply with these notification requirements and is a statement regarding a data user’s privacy policies and practices in relation to the personal data it handles. 

Last updated on 11/10/2021

Flag / Icon

India

  • at Nishith Desai
  • at Nishith Desai

An individual’s sensitive personal data or information (SPDI), which includes information on passwords; financial information such as a bank account, credit card or debit card or other payment instrument details; physical, physiological and mental health conditions; sexual orientation; medical records and history; or biometric information or other details related to such information provided to a body corporate for the provision of services or such information received for processing under a lawful contract or otherwise and its storage are protected under Indian data privacy rules. There are certain mandatory obligations for collectors of such SPDI in electronic forms, including obtaining the consent of the data provider, formulating, publishing, and complying with a privacy policy for treatment of such data and adopting certain standards of security practices. However, these obligations are not specific to remote-working arrangements; they govern the terms of the data being collected by the employer.

With employees working remotely, employers are facing a challenge with protecting the security of client data and other confidential information, which may be duplicated or disclosed to third parties by employees working remotely on unsecured personal devices.

Last updated on 08/07/2022

Flag / Icon
Ireland

Ireland

  • at Littler

The Data Protection Commissioner has issued guidance on the protection of personal data when working remotely (see here).

The key risks identified relate to protecting and preventing access to laptops, USBs, phones, tablets and other devices; emails; using unsecured networks to transmit data or to access company networks; and ensuring the security and confidentiality of hard-copy documents.

Employers should update data protection policies to take account of remote working and should also consider any data protection issues that may arise from an employee moving to work outside of Ireland.

Last updated on 21/09/2021

Flag / Icon

Italy

  • at Toffoletto De Luca Tamajo

Data security requirements applicable to all employees working at the company premises continue to apply to employees working remotely. In addition, the National Protocol on Smart Working specifies that the employer should promote the adoption of a policy also concerning data breach management and the implementation of proper security measures.

The main risks are linked to the transmission of company data outside the company premises, in places not necessarily identified.

Last updated on 14/07/2022

Flag / Icon

Mexico

  • at Marván, González Graf y González Larrazolo
  • at Marván, González Graf y González Larrazolo
  • at Marván, González Graf y González Larrazolo

Security controls

The common risks associated with remote working derive from the absence of security controls over equipment, software, and data, and not having any policies for remote-working schemes, leading to:

  • employees storing sensitive information in their local machines, without the control of employers over such tools;
  • compromised security controls; and
  • Wi-Fi networks and routers in homes are more easily compromised, increasing the risk of exposure.

Companies have the right to install security controls for the equipment and tools to be used by teleworkers to avoid any leaks of information and limit their use, because this hardware is the property of the employer. The common practice in Mexico is to implement a security data policy and a work tools policy.

Additionally, even though there are no specific legal provisions concerning the plausible risks associated with data protection in remote-working schemes, the Federal Law for the Protection of Personal Data in Possession of Private Individuals or Entities, the Federal Law for the Protection of Industrial Property, and their regulations and guidelines, establish provisions for the protection of rights concerning personal data, confidential information, and trade secrets, which also apply to remote-working schemes; therefore, all employees working remotely must comply with these laws and regulations. To prevent and avoid the disclosure of this information, the prevailing practice is to enter into agreements with employees establishing specific obligations in connection to confidentiality and data privacy. Such obligations usually refer to the policies and processes established by employers to ensure information security, and the corresponding penalties in the event of any breach.

Last updated on 21/09/2021

Flag / Icon

Netherlands

  • at Rutgers & Posch
  • at Rutgers & Posch

Employees who process data at home could create a data leak if they lose the data or improperly dispose of it after it is no longer useful for the company or their work. It is also more difficult to protect digital data in a non-professional setting and a private network might be more vulnerable to breaches. If a data breach does occur, the employee should, in principle, report this to the Dutch Data Protection Authority within 72 hours.

Employers are advised to update data protection policies to take into account remote working, and should also consider any data protection issues that may arise from an employee moving to work outside of The Netherlands.

Last updated on 08/03/2022

Flag / Icon

Poland

  • at Bird & Bird
  • at Bird & Bird

Telework or remote work should be organised in a way that ensures the protection of confidential information and other legally protected secrets, including trade secrets or personal data, as well as information whose disclosure could harm the employer.

Certain risks are present when employees perform work remotely:

  • they may use their own private equipment;
  • they may use company equipment for private purposes;
  • they may use an unsecured internet connection, including without a VPN (Virtual private network) connection; and
  • they may work from various unregulated locations, including coworking areas. 

Therefore, it is recommended that employers develop instructions regarding data protection and information safety (usually as part of their teleworking policy, which must be introduced with the participation of the employees' representatives) and ensure that these are introduced and applied effectively in the day-to-day work of remote workers.

Last updated on 21/03/2022

Flag / Icon

Portugal

  • at Cuatrecasas
  • at Cuatrecasas

Until the pandemic, teleworking was used rather infrequently, and most Portuguese employers were not prepared – namely in terms of technology and data storage – to suddenly have their workforce almost entirely and permanently working from home or remotely.

For those reasons, teleworking mainly raised – and continues to raise – concerns regarding the employer’s capacity to ensure that information is protected and that it stays confidential despite being remotely accessed and processed. Remote working enhances security vulnerabilities, which can lead to data breaches.

We would also like to highlight the use of technological solutions that, on one hand, allow employers to exercise their powers of management and control over work performance, but that, on the other, do not violate the general rule prohibiting the use of remote surveillance to control employees' professional performances, or that do not cause excessive restrictions on employees’ private lives.

Last updated on 13/07/2022

Flag / Icon

Qatar

  • at Clyde & Co
  • at Clyde & Co

Data loss, cyber security, privacy and maintaining confidentiality are the key data risks associated with working remotely.  Taking precautions against importing viruses, compromising system security, and maintaining confidentiality while working remotely are key considerations for employers. Internal policies and procedures should be put in place to ensure employees are aware of their obligations, and operating through virtual private networks could minimise potential risks. 

Last updated on 08/11/2021

Flag / Icon

Saudi Arabia

  • at Clyde & Co
  • at Clyde & Co

Data loss, cyber security, privacy and maintaining confidentiality are the key data risks associated with working remotely in most jurisdictions. These risks are heightened in Saudi Arabia as there are no specific data protection laws in place. Taking precautions against importing viruses, compromising system security, and maintaining confidentiality while working remotely are key considerations for employers. Internal policies and procedures should be put in place to ensure employees are aware of their obligations, and operating through virtual private networks could minimise potential risks.

Last updated on 29/11/2021

Flag / Icon

Spain

  • at Cuatrecasas
  • at Cuatrecasas

Apart from the general personal data protection issues to be considered, there are two significant risks.

First, under article 17 of Law 10/2021, any digital program or software to monitor remote workers must grant employees privacy and protection of personal data according to the Organic Law on Personal Data Protection and Digital Rights Guarantees. In particular:

  • an employer’s access to the digital technology provided to the remote worker must be limited to checking compliance with labour obligations and to guaranteeing the integrity of the devices;
  • employers must establish the terms of use of the digital devices, and the workers’ representatives must participate in drafting them;
  • employers must inform remote workers about the terms of use of the digital devices; and
  • regardless of the terms of use, an employer’s access to the digital means must be necessary for the employer to achieve a legal purpose, appropriate for such legal purpose and proportional to achieve such legal purpose. Based on this, the employer should implement the least invasive way of monitoring remote workers’ activity to achieve the legal purpose the employer is pursuing.

Any measure to monitor employees’ activity should meet these requirements; otherwise, an employer’s decision arising from such monitoring could be deemed unfair, and there could be a breach of the employee’s privacy, which could lead to a damages claim and an administrative fine.

Second, employers must comply with the principles of personal data processing under article 5 of the GDPR, especially purpose limitation and data minimisation, which means that the personal data the employer can process should be only what is the minimum necessary data for the performance of the labour contract or compliance with their legal obligations. Therefore, employers are not entitled to, for instance, force remote workers to turn on their cameras during working hours.

Third, despite remote working, employers must comply with health and safety obligations, which could lead to the employer or its health and safety services provider visiting an employee’s home to evaluate its risks. In that case, employers should issue a report justifying the visit and provide it to the remote worker and the health and safety workers’ representatives in advance. Additionally, to access any remote worker’s home, the employer must first obtain their consent.

If they do not give their consent, measures on health and safety should be based only on the information provided by the remote workers.

Last updated on 21/09/2021

Flag / Icon

Sweden

  • at DLA Piper
  • at DLA Piper
  • at DLA Piper

Pursuant to the GDPR, personal data should, inter alia, be processed in a manner that ensures appropriate security and confidentiality for the processing of that data, including by preventing unauthorised access to or use of personal data. For natural reasons, there may be additional challenges associated with this obligation when employees are working remotely, including an increased risk of personal data breaches when employees are working from home. The Swedish Authority for Privacy Protection mentions in its Privacy Protection Report of 2020 the increase in employees working from home as a result of the covid-19 pandemic, and the increased use of cloud service providers. The Authority highlights that data in cloud services is often transferred to countries outside the EU/EEA, and especially to the US. As a result of the Schrems II ruling in 2020, the use of, eg, cloud service providers that transfer data to  such jurisdictions (eg, in connection with IT maintenance) is problematic and may need to be addressed in relation to remote working.   

In light of the above, it is important as an employer to consider what measures are necessary in terms of IT security when working from home (eg, instructions to employees).

Last updated on 21/09/2021

Flag / Icon

Switzerland

  • at Lenz & Staehelin

Employers are required to respect the general Swiss data protection principles and rules. In particular, the Swiss Code of Obligations (SCO) states that the Federal Act on Data Protection (FADP) applies to the handling of employer personal data. The term "personal data" is defined as any information relating to an identified or identifiable person (individuals and companies).

Employers must ensure the security of the data they process. They must take appropriate organisational and technical measures to protect personal data against unauthorised processing or access, such as accidental or unauthorised destruction, loss, technical errors, falsification, theft, unlawful use, alteration, copying or any other undue processing. Moreover, employers also must control access and operations undertaken by employees.

One particularity of remote working is that employees' workstation and business data are located off sites. Meaning that third parties potentially could access this data.

To prevent data protection breaches, employers must institute appropriate technical and organisational measures and raise employee's awareness of data protection risks. These measures may include securing information systems, setting up authorisations and limiting access to concerned employees, and using a VPN. In addition, employees also should be made aware of the risks and procedures through in-house training and user manuals for the IT and security systems.

Last updated on 30/09/2021

Flag / Icon

Turkey

  • at Gün + Partners
  • at Gün + Partners
  • at Gün + Partners

The key data protection risks associated with remote working are data security and the processing of additional personal data while working remotely.

Under article 12 of the Personal Data Protection Law numbered 6698 (the DPL), data controllers must take all administrative and technical measures necessary to prevent unlawful processing of personal data, to prevent unlawful access to personal data and to ensure the security of personal data.

The Regulation also stipulates that the employer must inform remote workers about workplace rules and applicable legislation concerning the protection and transfer of data related to the workplace and their assignments (which may include personal data). The Regulation also emphasises that employers must take all necessary measures for the security of data. Per the Regulation, in the remote-working agreement, the employer must determine the definition and scope of data that needs to be protected.

There is no guidance from the Turkish Data Protection Authority (DPA) concerning measures to be taken specifically for remote working. Its general Guideline for Personal Data Security (Data Security Guideline) and the principal decision of the Turkish Data Protection Board concerning measures required to be taken by data controllers for processing sensitive personal data (Board Resolution for Sensitive Personal Data Security) should be considered by employers. The measures listed in the Data Security Guideline and the Board Resolution for Sensitive Personal Data Security are not exhaustive. Employers must consider all necessary measures for cyber security. International guidelines and IT sector developments should also be considered.

Employers who have failed to take appropriate measures to protect the unlawful processing of or access to personal data may be required to pay an administrative fine amounting to between 40,179 Turkish lira and 2,678,859[1] Turkish lira. Furthermore, additional technical measures taken for remote-working opportunities must also be communicated to the Data Controllers’ Registry if the employer is required to register data-processing activities (eg, employers located in Turkey that have more than 50 employees or have a balance sheet of more than 25 million lira fall under this obligation). Otherwise, although it may not be an imminent risk, an administrative sanction amounting to between 53,572 lira and 2,678,859 lira may be applied against the employer.

Lastly, if having remote-working employees requires an employer to process additional employee data, then the employer must inform their employees accordingly by providing an appropriate privacy notice under the DPL. Otherwise, they may be fined between 13,391 lira and 267,886 lira. The employer should determine what legal ground should be applied to the data processing due to remote working. If the applicable legal ground is consent but consent is not obtained lawfully from employees, then the employer may face an administrative fine of between 40,179 lira and 2,678,859 lira for unlawful processing. 


[1] All administrative fine amounts mentioned in this questionnaire will be updated for each year based on a re-evaluation determined annually.

Last updated on 09/02/2022

Flag / Icon

UAE

  • at Clyde & Co
  • at Clyde & Co

Data loss, cyber security, privacy and maintaining confidentiality are the key data risks associated with working remotely in most jurisdictions. Taking precautions against importing viruses, compromising system security and maintaining confidentiality while working remotely are key considerations for employers. Internal policies and procedures should be put in place to ensure employees are aware of their obligations, and operating through virtual private networks could minimise potential risks. 

Last updated on 15/03/2022

Flag / Icon

United Kingdom

  • at Littler

The key data protection risk associated with home working is data security.

In response to this, the UK’s data protection regulator – the Information Commissioner’s Office (ICO) – has issued guidance on the protection of personal data when working from home, using bring-your-own-device (BYOD) and working remotely (see: here).

The specific issues addressed include implementing appropriate workplace policies, IT security (including cloud-based storage security), the risk of theft and confidentiality.

Employers should update data protection policies to take account of remote working, in light of the ICO’s recommendations, and should also consider any data protection issues that may arise from an employee moving to work outside of the UK.

Last updated on 21/09/2021

Flag / Icon

United States

  • at Littler
  • at Littler
  • at Littler

Data privacy rules vary from state to state. Remote work, in particular, raises issues where employers have less control over the working environment and employees are potentially accessing sensitive information in their home that they share with others.  Employers should ensure that employees working remotely can demonstrate that their location provides sufficient privacy, security, and safety to secure the confidentiality of the employee’s work, company information and materials.  Additionally, health-related data must be protected and employers should be required to protect trade secrets and other confidential data. Employers must also maintain reasonable security measures to protect sensitive personally identifying information. 

Up-to-date information on the USA’s response to the pandemic, including State-level news and developments, can be found at Littler’s covid hub here.

Last updated on 21/09/2021

05. What potential issues and risks arise for employers in the context of cross-border remote-working arrangements?

05. What potential issues and risks arise for employers in the context of cross-border remote-working arrangements?

Flag / Icon

Argentina

  • at MBB Balado Bevilacqua
  • at MBB Balado Bevilacqua
  • at MBB Balado Bevilacqua

The potential issue that employers may have regarding cross-border remote-working arrangements is that Argentine labour law is mandatory and it establishes minimum rights that may not be waived, even by agreement of the parties. Therefore, if a multinational company wants to impose its home office framework in all jurisdictions where it has offices, it will face considerable legal exposure if it does not follow Argentine remote work regulations.

In this regard, for cross-border provision of services, the regulation that applies will be the one in force in the jurisdiction where the services are being rendered or the applicable law where the employer is based, depending on which is more favourable to employees.

Also, when hiring foreign nationals who do not reside in Argentina, the home office framework establishes that prior authorisation must be requested from the Ministry of Labour (ML). Moreover, considering the particular situation of each activity, applicable CBAs must establish a maximum limit for these types of hires (this last aspect is pending regulation).

Last updated on 13/07/2022

Flag / Icon

Australia

  • at People + Culture Strategies

For many international employers and their workforces, the experience of remote working during the covid-19 pandemic has been positive and will likely become part of the “new normal” in the employment landscape. However, employers are now presented with the challenge of reconciling this with their obligations under laws that regulate employment and the practicalities of managing a remote workforce, and tax issues.

Working hours is a key regulatory issue for employers as remote working can make it difficult for employers to monitor and control when an employee is working, when and if they are taking breaks, and if they are working overtime. In respect of monitoring employee performance and conduct, many employers have legitimate concerns about employees working remotely being less productive and not taking their employment obligations and responsibilities seriously.

We are aware of employers introducing software for employees to record their working time and adopting measures to ensure they have some level of “visibility” over employees who work remotely. For international employers, it is difficult to do this in real-time, although there is now technology available to bridge time differences including software that automatically monitors employee activity, including by periodically taking screenshots of employees’ work computers, tracking keystrokes, mouse movements and logging websites that employees have visited. We have seen several “hours of work clauses” and “availability” provisions in employment agreements that introduce a requirement for an employee to be available and responsive to the employer at times that are outside of the employee’s normal daylight working hours in their country of residence.

However, most Australian-based organisations with international employers are not rolling out monitoring systems with universal effect as regulatory frameworks can differ significantly between jurisdictions and a “one size fits all” approach could be problematic as a monitoring system that is permissible in one country may infringe privacy protections in another (for example, whereas Australia and New Zealand have a more relaxed “principles-based” framework to promote and protect the privacy of individuals, other countries’ constitutions explicitly protect workers’ privacy as an inviolable right).

Last updated on 21/09/2021

Flag / Icon

Austria

  • at Littler
  • at Littler
  • at Littler

Labour Law:

The essential issue regarding labour law is the question of which labour law should apply. Often, employers will want to apply a uniform labour law to all employees. However, this becomes impossible if in cross-border remote-working arrangements the labour law of the state of residence provides certain overriding mandatory rules and minimum standards (eg, in wage dumping and working time). Additionally, it may prove difficult for employers to keep track of the ever-changing legal landscape in various jurisdictions. Allowing for cross-border remote-working arrangements will oftentimes lead either to higher staffing requirements in the in-house legal department or increased recourse to local external partners. Both are associated with costs. There is also the question of work permits, depending on the applicable local law. 

Social Security Law:
 

While temporary covid-related work at home in other EU or EEA countries (and Switzerland) should not lead to any change in social security responsibilities, the corresponding provision in Austria was limited until 31 December 2021 and restricted to pandemic-related work at home. According to the information provided by the Austrian social insurance institution, covid-related work at home should not have any social insurance and tax law implications. Apart from an exceptional situation such as this, for workers who are working in more than one member state, working or earning more than 25% of the working time or remuneration in the country of residence leads to a change of the applicable social security regulations there. This is naturally associated with (sometimes) considerable administrative effort. The corresponding declarations must be made, and the payment of contributions must be ensured.

From the employer’s point of view, especially regarding accident insurance protection, it is important to note that the exact location of the remote workplace must be specified individually.

While insurance coverage in the home office is expressly clarified, the details concerning remote work in general are still controversial. These uncertainties are exacerbated in cross-border situations.

Tax Law:

If remote work is carried out across borders, this can have (potentially negative) effects on taxation. First, it must be considered that a domestic employer may employ workers who carry out their work both domestically and, for example, in a home office abroad. This may result in the establishment of a foreign permanent establishment through that home office. This would lead to a limited tax liability for the domestic employer abroad. A limited tax liability may also be accompanied by the obligation to deduct income tax via PAYE (pay as you earn). Since national legislation must be considered, this can lead to a considerable administrative effort.

In general, employees should not stay abroad for more than 183 days per year as otherwise they will be taxed in the country in which they are active. Finally, it must be considered whether there are taxation agreements between the countries and how these are structured.

Last updated on 31/01/2022

Flag / Icon

Belgium

  • at Van Olmen & Wynant

There are many issues at stake, as the foreign states could apply their public order labour law provisions, require a work visa, apply their social security scheme (and contributions) and their income tax obligations. This usually depends on whether these states are part of the EU or EEA (or if they have bilateral treaties with Belgium) and the duration of the cross-border work; if it lasts long enough to lose its temporary nature, the full scope of the foreign legal system may become applicable.

For foreign nationals coming to Belgium, Belgium will apply almost all of its labour law provisions immediately to the remote worker, except for rules concerning the conclusion and termination of employment contracts, including non-compete clauses laid down in the Employment Contracts Act. After 12 months, rules concerning the general obligations of employers and employees, the liability of employers for the actions of their employees and the suspension of employment contracts will also apply.

Last updated on 21/09/2021

Flag / Icon

Brazil

  • at Pinheiro Neto
  • at Pinheiro Neto Advogados

Although cross-border remote-working arrangements have become increasingly popular – especially during the pandemic –, up to now there is no specific rule in the Brazilian migratory or labour legislation governing that scenario. From a labour perspective, there is no clarity as to whether employees transferred to work abroad on a remote-working model would still be covered by Brazilian legislation and thus entitled to Brazilian rights and benefits, or by that of the country where they have been transferred to. From a tax and social security perspectives, it is necessary to identify if the workers are deemed as tax residents in Brazil in order to determine the correct taxation on compensation amounts paid in Brazil / by a Brazilian source or paid abroad. There are also potential mechanisms to avoid double taxation on income in International Treaties. Furthermore, there are international agreements specifically for social security purposes, which, under certain situations, prevent Brazilian companies from having to collect social security charges.

Last updated on 21/09/2021

Flag / Icon

France

  • at Proskauer Rose
  • at Proskauer Rose
  • at Proskauer Rose

Cross-border remote working can accentuate some of the problems caused by teleworking or create new ones.

Among the existing problems, the loss of social ties is accentuated if the teleworker decides to work from another country. Indeed, the employee abroad will never physically see his colleagues, which will create a distance between the employee working from abroad and other employees.

Similarly, employers must ensure the protection of the health and safety of workers (article L. 4121-1 labour code). This is a difficult obligation to meet in teleworking, especially because employers do not have access to remote employees’ workplaces. It is even more difficult if the employee works from another country because the sanitary, electrical and other standards are different and potentially less protective than French rules.

As for social security law, in principle, the employee depends on the social security system of the country where they work. The employee can only continue to benefit from the French social security system if they are in a secondment situation. Moreover, this is only a temporary solution because the secondment implies a temporary mission. The employer will therefore have to register the employee with the social security system of the country where they are working, which will cause problems in terms of social contributions.

Another question that may arise is whether an employer should accept a work stoppage prescribed by a foreign doctor.

Finally, another problem that may arise is the employee's right to disconnect. Indeed, the employer and the employee must agree on a time slot during which the employee can not be contacted to respect his private life as much as possible.[4] It can be difficult to establish a time slot that suits both the employee and the employer in case of major time zone discrepancies.


[4] National agreement of November 26, 2020

Last updated on 21/09/2021

Flag / Icon

Germany

  • at CMS Hasche Sigle

There can be potential issues and risks concerning the taxation of salaries, social security coverage (eg, Regulation (EC) No 883/2004) and the applicable labour law for employers in the context of cross-border remote-working agreements (eg, article 8 Rome I Regulation).

For employees who live in a different country than where the employer is based, special regulations in double-tax treaties for cross-border commuters might normally apply.

However, due to the pandemic many cross-border commuters stay at home and work remotely. As such, they no longer meet the conditions to be considered cross-border commuters and the double-tax treaties cease to apply. To avoid a change in the previous tax treatment because of temporary remote working, bilateral agreements have been reached, for example with Austria, Switzerland, France, Belgium, and Luxembourg. Pandemic-related home working days are deemed to be performed in the country of employment. The agreements are extended until June 30, 2022.

Last updated on 14/04/2022

Flag / Icon

Greece

  • at Kyriakides Georgopoulos Law Firm
  • at Kyriakides Georgopoulos Law Firm
  • at Kyriakides Georgopoulos Law Firm

From a Greek employment law perspective, if employees are permanently working remotely in Greece, the application of certain provisions of Greek labour legislation that constitute mandatory law (ie, the payment of severance in case of termination, overtime payment, annual leave entitlements) may apply, if more favourable for the employee.

From a Greek social security law perspective, in general, employees will be insured and therefore pay social security contributions to the Social Security Fund of the country where they provide their work. However, there is no specific legal provision regarding payment of social security contributions for remote working (ie, in cases where an employee is working physically from a country where the company has no legal entity). According to the guidelines of the Ministry of Labour, in case of such remote working arrangements, an employee would be insured and therefore pay social security contributions to the Social Security Fund of the country where the company has its legal entity and from which the employee is paid through its payroll system.

From a Greek tax law perspective, as well as under the double-tax treaties signed by Greece, if an individual is in a dependent employment relationship with a non-Greek employer and provides his or her services remotely from Greece permanently (ie, for more than six months) while using as a fixed place his or her home, there might be a permanent establishment (PE) risk in Greece for the non-Greek employer, to the extent the services rendered from Greece constitute the core business of the foreign company and are not limited to auxiliary or preparatory activities.

Also, if a non-Greek company signs an independent services agreement with an individual (contractor) and the contractor is authorised to conclude binding contracts on behalf of the non-Greek employer in Greece with Greek clients, a dependent agent PE risk for the non-Greek company may also arise.

Furthermore, irrespective of the PE risk, based on domestic law if an individual provides employment services from Greece (to a Greek or non-Greek employer), his or her employment income is considered Greek sourced. Thus, it should trigger local tax reporting and tax compliance liabilities for the non-Greek employer, who should be registered with the Greek tax authorities to withhold  Greek personal income tax and special solidarity contribution (if any) corresponding to the employment income of the employee every month. It is noted that such a tax registration, reporting, or compliance liability does not apply for the non-Greek company in case of an independent services agreement with a contractor.

Lastly, from the individual’s point of view, if he or she works from Greece for more than 183 days per year, it might create a tax residence issue under the domestic tax rules, in which case he or she should be subject to regular Greek taxation and should be taxed in Greece for his or her worldwide income according to the relevant domestic income tax rules. 

Last updated on 14/07/2022

Flag / Icon

Hong Kong

  • at Lewis Silkin
  • at Lewis Silkin
  • at Lewis Silkin

Salaries tax

In Hong Kong, employees are responsible for paying tax on their employment income; this is called salaries tax. Whether and how much salaries tax is payable by employees temporarily working abroad will depend on whether their employment is considered “Hong Kong employment” or “non-Hong Kong employment”. The Inland Revenue Department will consider various factors when determining if employment is Hong Kong or non-Hong Kong, such as where the employment contract is negotiated, concluded and enforceable; where the central management and control of the employer is; and where the employee’s remuneration is paid.

Employees with Hong Kong employment will generally remain subject to salaries tax in Hong Kong if they temporarily work outside of Hong Kong for part of the tax year (beginning of April to end of March the following year). If the employee works outside of Hong Kong for the full tax year, then they will not be subject to salaries tax in Hong Kong. Employees with non-Hong Kong employment who work outside of Hong Kong temporarily will generally not be subject to salaries tax in Hong Kong.

Social security

Hong Kong does not have a comprehensive social security system similar to other countries, but most employers and employees in the city are required to make contributions to a mandatory provident fund (MPF), which is a regulated privately managed retirement fund.

Where mandatory contributions are being made to the MPF, the fact that an employee is working temporarily abroad will not affect the contributing obligations of the employer or the employee.

Employment law

Employers would need to be cautious as to whether local employment laws (in the overseas country) would apply to the employee when working remotely from that country. These may include minimum wage restrictions, paid annual holidays, maternity or paternity entitlements and rights on termination.

Employers in Hong Kong also have a statutory and common law duty in respect of the health and safety of their employees. This includes ensuring that the employee has a safe workplace. If an employee suffers a personal injury by accident that “arises out of and in the course of employment”, the employer may be liable to compensate the employee even if the injury was sustained while the employee was working from abroad.

Last updated on 11/10/2021

Flag / Icon

India

  • at Nishith Desai
  • at Nishith Desai

Some high-level considerations to be kept in mind by employers in a cross-border remote-working arrangement can be summarised as follows:

Labour law considerations

While a permanent remote-working model from India is not legally tenable for a foreign employer, it must be borne in mind that India has labour laws at national and state levels. Accordingly, and depending on the employee's primary place of work in a remote working arrangement, the employer must consider the state labour laws and compliance.

Please also note that in cases where an employee is working remotely from India, the employee may be able to claim protection under Indian health and safety laws. We are yet to come across such cases in India involving cross-border employees.

Where an employee employed in India is moving to a foreign country to work remotely, the Indian employer will need to comply with applicable Indian labour laws concerning benefits, consultation, flexible work issues, worker health and safety obligations, and taxes.

The Employees’ Compensation Act, 1923 (EC Act), which applies to commercial establishments in some jurisdictions and certain categories of employees otherwise, and provides for compensation payable by employers to employees related to any “injury caused to an employee by accident arising out of and in the course of his employment”, has extraterritorial application outside India for employees of Indian companies travelling or working overseas for their employer. However, application of the EC Act to remote working scenarios is currently unclear.

Social Security

Where an employee in India moves out of India to work remotely, subject to the terms of any social security agreement between the concerned foreign country and India, such employee may be treated as an “international worker” under the Employees’ Provident Funds and Miscellaneous Provisions Act, 1952 (EPF Act). Similarly, where foreign nationals are employed with an Indian entity of a foreign employer, subject to any social security agreement between the concerned foreign country and India, such foreign national may be treated as an “international worker” under the EPF Act and be subject to compliance requirements thereto.

Tax considerations

The presence of an employee in India employed with a foreign entity may lead to tax or permanent establishment issues for the concerned foreign entity in India, depending upon the nature of activities carried on by such employee in India. The provisions of any double taxation avoidance agreement between India and the concerned foreign country will also need to be considered in this respect. Similarly, for employees in India moving outside India to work remotely, the employee’s tax residency status will depend on the applicable tax laws in India, the concerned foreign country and other applicable considerations such as foreign exchange control regulations based on which taxes will need to be withheld or paid. Individuals may also be subject to taxation depending on their length of stay in any country.

Last updated on 08/07/2022

Flag / Icon
Ireland

Ireland

  • at Littler

Employees working remotely outside Ireland may create expensive tax liabilities for themselves and their employers. It’s important to be aware of these before any long-term decisions are made.

The foreign country in which the employee is working may seek to tax some or all of that employee’s income from the employment. This is based either on the fact that a substantial number of days have been worked in that other country or in some cases on the basis that the employee has become a tax resident there under local law. Further, social security liability may accrue (which is generally assessed separately from income tax).

The main concerns for employers will be whether there is an obligation to operate local payroll withholding and whether local social security rules add significantly to the wage bill. The rules vary widely between countries and, unfortunately, there is no “one size fits all” approach to managing this issue across multiple jurisdictions.

Employers will also need to consider two corporate tax risks. First, an employee working abroad may in some circumstances constitute a permanent establishment of the employer in that other country, exposing part of its profit to corporate taxes there. Second, if an Irish company has directors based abroad, there is a risk of the company also acquiring corporate residence in another country.

Last updated on 21/09/2021

Flag / Icon

Italy

  • at Toffoletto De Luca Tamajo

As a rule, it is not prohibited to work remotely abroad.

However, this could give rise to the following issues:

1) Applicable law: although the employment contract is governed by Italian law (or the law chosen by the parties), the mandatory rules of the place in which the work is carried out could apply, including those on working hours, safety at work, etc.
2) Social security contributions: the general rule is that contributions are paid in the country where the work is carried out. At times, bilateral agreements between countries or within the European Union make exceptions to this general rule if specific requirements are met, providing that in the case of short periods of work abroad, the contributions continue to be paid in the country of origin and not in the country where the work is carried out.
3) Accident at work insurance: Insurance problems could arise in connection with this specific method of working and the employer should verify concretely what kind of coverage exists.
4) Taxation: depending on the period spent working abroad, there is a possible risk of being subject to multiple taxes from different jurisdictions.

Last updated on 14/07/2022

Flag / Icon

Mexico

  • at Marván, González Graf y González Larrazolo
  • at Marván, González Graf y González Larrazolo
  • at Marván, González Graf y González Larrazolo

If employees are hired under Mexican law, they will be entitled to the same mandatory benefits and social security as any other employee in Mexico; therefore, they must be registered with the Mexican Social Security Institute (IMSS) and must comply with employment tax obligations, which include payroll taxes and income tax on their salaries.

Last updated on 21/09/2021

Flag / Icon

Netherlands

  • at Rutgers & Posch
  • at Rutgers & Posch

There can be potential issues and risks concerning the taxation of salaries, social security coverage, the applicable labour law for employers in the context of cross-border remote-working agreements (e.g, article 8 Rome I Regulation) and issues related to the applicable court in case of litigation (e.g., EEX or Brussel I Regulation).

Last updated on 08/03/2022

Flag / Icon

Poland

  • at Bird & Bird
  • at Bird & Bird

Cross-border remote-working arrangements may expose employers to tax and social risks, especially if employees lose their tax and social security status in Poland by residing and working abroad for a long period of time. In such cases, those employees automatically come under the taxation and social security system of that other country, and the employer must calculate, deduct and pay public dues and fulfil other obligations as required by local law.

Apart from that, cross-border remote-working arrangements may result in risks related to:

  • immigration compliance, including legalisation of the employee’s residence and work rights;
  • employment compliance, including meeting the minimum requirements laid down in local labour law (eg, as to minimum wage, working time (rest periods and local bank holidays) and OHS requirements); and
  • corporate tax and social security consequences, including the creation of a permanent establishment of the employer aboard.

Therefore, it is strongly recommended that employers introduce a hard obligation in their remote-working policies that limits remote work to the territory of Poland only, with any exception requiring the prior explicit consent of the employer.    

Last updated on 21/03/2022

Flag / Icon

Portugal

  • at Cuatrecasas
  • at Cuatrecasas

The analysis of potential issues associated with cross-border remote working depend on whether employees are working in Portugal or abroad and if there are one or multiple employers involved and where they are located.

However, cross-border remote-working arrangements mainly raise issues regarding the definition of applicable law. The correct definition of the applicable law allows for compliance with labour and social security obligations that otherwise, if breached, pose significant risks to employers.

Even if there is an agreement through which the parties choose the applicable law, a set of mandatory provisions of Portuguese labour law would still apply if the work is mainly performed in Portugal, namely in key areas such as termination, health and safety obligations, and insurance for workplace accidents. Failure to correctly identify the applicable law may have serious consequences, for instance, employers may be entirely and solely responsible for all liabilities deriving from a work accident.

Furthermore, if in a given case the Portuguese labour law applies to the cross-border remote-working agreement, employers have to bear in mind that there are some difficulties regarding the definition of workplace and work time in connection with remote working, which can raise challenges when implementing these schemes.

Besides the above, cross-border remote working may also raise questions regarding work permits.

Last updated on 13/07/2022

Flag / Icon

Qatar

  • at Clyde & Co
  • at Clyde & Co

While there is no explicit prohibition on working abroad, the key areas of concern and risk are as follows:

  • Application of local labour law – employers will need to consider whether the application of the labour law in the host jurisdiction can be excluded.
  • Public policy matters – it is possible that public policy rules in the host jurisdiction may apply to the employment relationship.
  • Health insurance requirements – it is possible that the minimum health insurance requirements in the host jurisdiction may exceed the minimum requirements in Qatar. 
  • Social security and tax – depending on the jurisdiction, an employee may incur liability for personal income tax and social security in the host jurisdiction.
Last updated on 08/11/2021

Flag / Icon

Saudi Arabia

  • at Clyde & Co
  • at Clyde & Co

While there is no explicit prohibition on working abroad, the key areas of concern and risk are as follows:

  • Application of local labour law – employers will need to consider whether the application of the labour law in the host jurisdiction can be excluded.
  • Public policy matters – public policy rules in the host jurisdiction may apply to the employment relationship.
  • Health insurance requirements – minimum health insurance requirements in the host jurisdiction may exceed the minimum requirements in the KSA.
  • Social security and tax – depending on the jurisdiction, an employee may incur liability for personal income tax and social security in the host jurisdiction.
Last updated on 29/11/2021

Flag / Icon

Spain

  • at Cuatrecasas
  • at Cuatrecasas

Labour law

Under article 8 of Regulation (EC) 593/2008 on the law applicable to contractual obligations, employment contracts should be governed by the law chosen by the parties, but this choice cannot deprive employees of any inalienable protections under the law of the country from which they habitually carry out their work. This, in practice, means that remote-working contracts, regardless of their content, are governed by the law of the country from which the remote workers mostly work.

Social security law

Under article 11 of Regulation (EC) 883/2004 on coordinating social security systems (Regulation 883/2004), remote workers will be subject to the social security regulations of the country where they provide their services.

However, under article 12 of Regulation 883/2004, if remote workers are posted by their current employer to another EU member state to perform work on that employer’s behalf, they should continue to be subject to the legislation of their member state of origin, provided that the anticipated duration of such work does not exceed 24 months, and that they are not sent to replace another posted person.

If the remote workers come from a country outside the EU, the bilateral agreement on social security between Spain and that third country, if any, should apply.

Breaching this obligation may result in the Spanish social security authorities claiming any unpaid contributions from the employer (around 30% of the monthly salary, capped at €4,070 per month) for the past four years, plus a 20% surcharge and interest. Additionally, the employer may face administrative fines ranging from €6,250 to €10,000 per employee (as of 1 October 2021, from €3,750 to €12,000 per employee) for failure to register, and ranging from 50% to 150% of unpaid social security contributions, plus a 20% surcharge and interest, for the past four years for defaulting on social security contributions.

Tax law

Remote workers could trigger a Spanish permanent establishment for the foreign employer, if one or more of them can (legally or de facto) enter into legally binding contracts on behalf of the employer (ie, if the employee becomes a dependent agent). A permanent establishment would trigger Spanish corporate income tax liability for the employer on the annual profits attributable to that permanent establishment.

Additionally, depending on the remote worker’s country of tax residence, the tax withholdings the company must make may significantly differ, so workers could receive a net amount higher or lower than they expected. But if the company makes lower tax withholdings than legally required, it may face administrative fines and could be obliged to pay any pending tax withholdings.

Last updated on 21/09/2021

Flag / Icon

Sweden

  • at DLA Piper
  • at DLA Piper
  • at DLA Piper

Labour law

Pursuant to the Rome I regulation, the employment relationship will, as a main rule, be governed by the law of the country in which the employee habitually carries out his or her work. If the employee does not habitually carry out the work in one country, the contract is governed by the law of the country of the place of business of the employer. However, if it appears from the circumstances as a whole that the work is more closely connected with another country, the law of that other country shall apply. Notwithstanding the above, it is possible for the employer and employee to agree on which country’s legislation should apply, provided another law does not deprive the employee of the protections that would have been guaranteed by statutory law under the applicable legislation, as per the Rome 1 regulation.

In light of this, cross-border remote-working arrangements may open up questions on applicable legislation. It is advisable to check if there are any such issues before allowing such arrangements. In addition, there may also be tax consequences for both the employer and employee. Furthermore,  a cross-border remote-working arrangement might also mean risk from an insurance perspective. Therefore, employers should ensure their insurance covers employees working remotely from another country.

Social security and tax law

Employers who have employees working remotely from another country should be cautious about the tax effects such an arrangement may trigger. An employee working remotely (eg, from home) in Sweden may trigger a taxable permanent establishment in Sweden, which has the effect that a part of the company’s income would have to be taxed in Sweden. If a permanent establishment is triggered, the company would have to register with the Swedish Tax Agency for corporate income tax purposes. It should also be noted that the Tax Agency can look back up to six calendar years for a reassessment of a permanent establishment. It is thereby possible for a foreign company to carry out activities in Sweden for a long time without being taxed in Sweden and having a full reassessment decision from the Tax Agency for previous years.

Furthermore, the company may also have to register for payroll purposes in Sweden, if the employee’s income would be subject to Swedish income tax and Swedish social security contributions. Income tax and social security contributions are to be reported and paid monthly. However, if the employer does not have a permanent establishment in Sweden, and provided that certain criteria are met, the employee may self-report and pay the social security contributions (but not the tax). Even if such an arrangement can be applied, the employer must still register with the Swedish Tax Agency for filing a statement of earnings and tax deductions and to report and pay income tax on the salary paid to the employee.

If a Swedish company has employees working remotely in another country, the employer may become liable to pay income social security fees and taxes abroad on any income that would be attributable to the work undertaken in that country, and may also have to comply with the registration and reporting requirements of that country.

In international cross-border working situations, taxation is not only regulated under domestic law but also double taxation treaties. As these rules reflect the special situation between two states and are the result of negotiations between them, it follows that these rules vary from one double taxation treaty to another. Regarding social security, domestic law, EU community regulations and international social security conventions must be taken into account when assessing which country the employee belongs to and what social security contributions are to be paid in that country. Normally, an A1 certificate would have to be obtained for social security purposes; such certificate states which country’s social security insurance system that the employee belongs to.

It is recommended to seek guidance from an independent tax counsel regarding international cross-border work situations to assess the tax consequences in each case.

Last updated on 24/01/2022

Flag / Icon

Switzerland

  • at Lenz & Staehelin

Remote working has labour, social security and tax law repercussions for employees whose contractual place of work is Switzerland, but are resident in and work remotely from an EU border country. Issues related to remote working from outside the EU are not discussed.

First, regarding labour law, remote working creates a second place where employees carry out their activity. In the event of a dispute, the Convention on jurisdiction and the recognition and enforcement of judgments in civil and commercial matters provides that employees may initiate proceedings in the state where their employer has their residence or seat, or in the state where they habitually carry out that work. According to EU case law, an employee's residence can be considered their habitual place of work if they carry out 60% or more of their professional activity there. This criterion only can be excluded if it is shown that based on qualitative criteria, another place is the centre of employees' activities. Swiss case law is less specific than EU case law and only refers to the place where the centre of the activity is located.

Furthermore, remote working also can have repercussions on the law applicable to the contract. European Regulation 593/2008 on the law applicable to contractual obligations (Rome I) indicates that the contract is governed by the law chosen by the parties. However, if a case is brought before a court in the EU, this legislation provides that the choice of the parties cannot override the mandatory employee protection rules applicable in the state where the employee habitually work. Therefore, there is a risk that the law applicable to the contract (eg, Swiss law) could be replaced by the law of the state in which an employee lives.

Second, concerning social security law, employees are usually subject to the social security system of the place where the activity is carried out.  Thus, if employees carry out the entirety of their activity in Switzerland, they are subject to Swiss social security. Conversely, if they perform their entire activity in the EU, they are subject to the social security system of that state. According to European Regulation 883/2004 on the coordination of social security systems, if the activity is carried out in multiple states (eg, partly at the employer's Swiss offices and partly in their state of residence), employees are subject to the social security system of the state in which they reside if they carry out a substantial part (25% or more) of their activity there. Otherwise, employees are subject to the Swiss social security system.

Third, remote working also can have an impact on tax law. In general, taxation in Switzerland is based on residence. However, a person who has neither their residence nor a habitual abode in Switzerland nevertheless may be taxed based on an economic connection with Switzerland, such as the exercise of a gainful activity. Thus, employees who carry out their entire professional activity at home by working from home (outside Switzerland) would have to pay taxes in that state, as a condition for carrying out gainful activity in Switzerland is a physical presence in Switzerland. Employees who carry out part of their work abroad are taxed proportionally in Switzerland and the other states.

The covid-19 pandemic led to some derogations from the above principles. 

In terms of labour law, the widespread remote working connected to the covid-19 crisis is considered to be temporary and thus does not provide a basis for an employee’s state of residence to be considered their usual place of work. Consequently, employees who carry out a substantial part, or even all, of their professional activity by working from home due to covid-19 are not deemed to be habitually working from home within the meaning of the EU regulation, provided that this situation remains temporary.

In terms of social security law, the applicable system is not affected by covid-19-related restrictions. Switzerland has agreed with neighbouring countries that an increase in the time spent by employees of a Swiss company in their state of residence due to the increase in remote working shall have no impact on social security. A flexible application of social security rules has been agreed upon with Germany, Italy, Austria and Liechtenstein and is effective until 30 June 2022. For France, this is effective until at least 31 March 2022. For other states, in principle, this also will apply until 30 June 2022.

In terms of tax law, Switzerland also has agreed with certain neighbouring countries that an increase in the time spent by employees of a Swiss company in the territory of their state of residency due to the increase in remote working shall have no tax impact. The agreement with France was signed on 13 May 2020, and the agreement with Germany was signed on 11 June 2020. These agreements remain in force until at least 31 March 2022. The agreement with Italy, dated from June 2020, is still in force and is tacitly extended on a month-to-month basis provided that neither country terminates it.

Last updated on 20/01/2022

Flag / Icon

Turkey

  • at Gün + Partners
  • at Gün + Partners
  • at Gün + Partners

Theoretically, cross-border remote-working arrangements are possible from an employment law perspective as the law does not provide a clear rule or restriction on this. However, in practice, the Social Security Institution does not consider days worked overseas as workdays subject to social security premiums. Therefore, such arrangements may not be possible.

Employers located in Turkey must consider their data privacy obligations where employees are working in the context of cross-border remote-working arrangements, because the relevant obligations are mostly applicable on a residency basis due to the principle of territoriality. On the other hand, under Turkish legislation, employers must ensure the security of data shared with the relevant employees.

In addition, employers should bear in mind that any data shared with such employees would be an overseas transfer of data. As a result, if the transferred data contains personal data, consent must be obtained for such transfer of data abroad from the data subject, covering the purpose of processing this data unless the employers have permission from the DPA for the relevant international transfer. International transfers of personal data are restricted in Turkey. Unlike GDPR, the DPL does not protect international transfers in the European Economic Area (EEA) as Turkey is not in the EEA and standard contractual clauses do not apply to the transfer of personal data from Turkey to overseas.

Depending on the sector in which employers are engaged, there may be further data-residency and data-localisation requirements. Therefore, before any cross-border remote-working arrangements, employers must evaluate whether they are subject to such requirements and how they should approach the data to be processed by the relevant employees for their duties and assignments on a case-by-case basis.

Last updated on 21/09/2021

Flag / Icon

UAE

  • at Clyde & Co
  • at Clyde & Co

While there is no explicit prohibition on working abroad, the key areas of concern and risk are as follows:

  • Application of local labour law – employers will need to consider whether the application of the labour law in the host jurisdiction can be excluded.
  • Public policy matters – it is possible that public policy rules in the host jurisdiction may apply to the employment relationship.
  • Health insurance requirements – it is possible that the minimum health insurance requirements in the host jurisdiction may exceed the minimum requirements in the UAE. 
  • Social security and tax – depending on the jurisdiction, an employee may incur liability for personal income tax and social security in the host jurisdiction.
Last updated on 08/11/2021

Flag / Icon

United Kingdom

  • at Littler

Employees working remotely outside the UK may create expensive tax liabilities for themselves and their employers. It’s important to be aware of these before any long-term decisions are made.

The foreign country in which the employee is working may seek to tax some or all of that employee’s income from the employment. This is based either on the fact that a substantial number of days have been worked in that other country or in some cases on the basis that the employee has become a tax resident there under local law. Further, social security liability may accrue (which is generally assessed separately from income tax).

The main concerns for the employer will be whether there is an obligation to operate local payroll withholding and whether local social security rules add significantly to the wage bill. The rules vary widely between countries and, unfortunately, there is no “one size fits all” approach to managing this issue across multiple jurisdictions.

Employers will also need to consider the possibility that a UK employee working abroad may inadvertently create a “permanent establishment” of the UK employer in the other country, which in turn can expose part of the profits of the UK employer to corporate taxes in that other country. What constitutes a “permanent establishment” for corporate tax purposes in another country depends on the specific tax laws of that other country.

In practice, at a high level, most countries adopt a standard definition of a “permanent establishment”, which is derived from the OECD’s Model Tax Convention (being: (1) a fixed place of business in a country; or (2) a dependent agent, such as an employee, who acts on behalf of an employer and has, and habitually exercises, authority to conclude contracts in the name of the employer entity). This always needs to be checked on a case-by-case basis for the relevant countries involved. More information on the OECD convention can be found here.

Last updated on 25/11/2021

Flag / Icon

United States

  • at Littler
  • at Littler
  • at Littler

Employees who cross state borders trigger a host of risks for their employer. The obligations of the jurisdiction where the work is performed will generally prevail (depending upon duration).  For example, state law, and even municipal law, control employers’ leave obligations (such as time off to vote, paid family leave, or paid sick leave).  With paid sick leave, this can become very complicated, as each law has different tracking, recordkeeping and accrual requirements. In addition, state withholdings and income tax, as well as insurance (workers compensation), must be considered.  Local ordinances often also control wage-and-hour issues such as how and when an employee must be paid, pay-statement requirements, whether an exemption applies or overtime must be paid, and other nuanced areas such as required employer policies, or notices relating to wages or unemployment insurance.

Up-to-date information on the USA’s response to the pandemic, including State-level news and developments, can be found at Littler’s covid hub here.

Last updated on 21/09/2021

06. Do employers have any scope to reduce the salaries and/or benefits of employees who work remotely?

06. Do employers have any scope to reduce the salaries and/or benefits of employees who work remotely?

Flag / Icon

Argentina

  • at MBB Balado Bevilacqua
  • at MBB Balado Bevilacqua
  • at MBB Balado Bevilacqua

The home office framework establishes that teleworking employees have the same rights and duties as those working at an employer’s main offices (including union rights), and their salary must not be less than what they would receive if they worked at an employer’s offices. Therefore, once employees are assigned to remote working, their compensation cannot be reduced due to this change.

In general terms, employers have the right to redesign or reassign job responsibilities. Such a right is known as an employer’s right to modify labour conditions (Ius Variandi). In this sense, local laws allow unilateral amendments to terms and conditions of the employment contract provided they do not adversely affect essential labour conditions and do not cause any moral or material damage to the employee and the changes are reasonable.

As a result, if an employer unilaterally decides to reduce the salaries or benefits of remote workers, and the change is considered to be unreasonable, resulting in material or moral damage to the employee involved, he or she can file an injunction to restore the original conditions of employment. If the employer refuses to do so, the employee may claim constructive dismissal and file for severance compensation and any applicable fines.

Last updated on 13/07/2022

Flag / Icon

Australia

  • at People + Culture Strategies

An employee’s salary and contractual benefits are entitlements that are contractual and employers cannot unilaterally vary such entitlements. Similarly, an employee’s remuneration may reflect the minimum rate of pay provided for in an industrial instrument such as a Modern Award and employers will not be able to reduce the remuneration or benefits without running the risk of undermining the minimum entitlements provided in the instrument.

Employers can consult with staff about a proposal to restructure their hours and pay, but generally, no such changes can be implemented without employees being given an opportunity to consider the proposed changes and agreeing to those changes.

The minimum wage order provides that an employee cannot be paid less than the national minimum wage.

Last updated on 21/09/2021

Flag / Icon

Austria

  • at Littler
  • at Littler
  • at Littler

Employers cannot unilaterally reduce employees' salaries because of remote work. A salary reduction is only possible either by mutual agreement or through a dismissal, with the option of re-employment on altered conditions.

Regarding benefits, we believe that a distinction must be made according to whether they were granted with working on office premises in mind and whether the employer has reserved a right to revoke them. In the latter case, employers may reduce or revoke benefits unilaterally. In addition, it can also be argued that, for example, meal vouchers for the company canteen are no longer issued and are not reimbursed. Such and other “social benefits by the company” can be limited to use at the company’s workplace.

Last updated on 21/09/2021

Flag / Icon

Belgium

  • at Van Olmen & Wynant

In general, this would be considered a unilateral modification of the employment contract, which can be seen as an irregular termination of the employment contract by the employer, who will have to pay in lieu of notice if an employee claims this. However, the employer will no longer have to pay any agreed commuting expenses (but if the employer pays for a public transport subscription, this would just continue).

Last updated on 21/09/2021

Flag / Icon

Brazil

  • at Pinheiro Neto
  • at Pinheiro Neto Advogados

Employers cannot reduce the salaries or benefits of employees solely because they work remotely. Note that the federal government has introduced certain measures to help companies survive through the pandemic and avoid layoffs (eg, reducing employees’ working hours and salaries, suspending employment contracts temporarily, remote working (with fewer requirements than those set forth by the CLT), and delaying the collection of certain labour charges). These alternatives apply to all employees regardless of their work arrangement (ie, remote workers or not). Therefore, it may be the case that employees were shifted to a remote model and have had their working hours and salaries reduced. Other than that, salary reductions would depend on prior negotiation with the applicable union.

Last updated on 21/09/2021

Flag / Icon

France

  • at Proskauer Rose
  • at Proskauer Rose
  • at Proskauer Rose

Teleworkers have the same rights as employees who work from a company's premises (article L. 1222-9 III of the Labor Code).

Employers cannot modify employees’ remuneration without obtaining agreement.[5] This rule also applies to teleworkers.

In some countries such as the United States, employers can adjust the remuneration of teleworking employees to the cost of living in the employee's place of residence. This practice is not prohibited in France but the employer must be careful in doing so as it could constitute discrimination based on the place of residence, which is prohibited by the labour code[6]if it is not justified by objective elements. 

However, employers can withdraw a few benefits from teleworking employees. Indeed, even if the Ministry of Labor says in a Q&A that the telecommuting employee must receive lunch vouchers like other employees, some jurisdictions believe that the employer can stop paying these vouchers to teleworkers because they are not in a comparable situation to employees who work from a company's premises.[7]

As for transportation costs, the employer must cover half of the cost of the transportation pass used to travel to the office and to return home from the office (article L. 3261-2 of the labour code). If the employee does not have to travel to work during the month, the employer does not have to pay transportation costs.


[5] Cass. Soc, 18 oct. 2006, n°05-41.644

[6] Article L. 1132-1 Labour code

[7]TJ Nanterre, 10 mars 2021, n° 20/09616

 

Last updated on 21/09/2021

Flag / Icon

Germany

  • at CMS Hasche Sigle

The employer is required to pay remuneration based on an employment contract or collective bargaining agreement. Normally, there are no clauses in that contract that provide for a reduction in salary if the employee works remotely. However, special allowances for the reimbursement of expenses that become obsolete due to working from home (such as meal allowances or reimbursement of travel expenses) may no longer apply in individual cases.

Last updated on 21/09/2021

Flag / Icon

Greece

  • at Kyriakides Georgopoulos Law Firm
  • at Kyriakides Georgopoulos Law Firm
  • at Kyriakides Georgopoulos Law Firm

Equal treatment between employees working remotely and those working at the company’s premises are guaranteed. Any reduction of salaries may be implemented only following the employee’s consent (ie, by signing an amendment of the employment agreement).

Last updated on 14/07/2022

Flag / Icon

Hong Kong

  • at Lewis Silkin
  • at Lewis Silkin
  • at Lewis Silkin

Unless the employee has a clear policy or a contractual provision that permits it to reduce salaries or benefits in this situation, it is unlikely that the employer could lawfully make such reductions without the employee’s consent. Where an employee has elected to work remotely and there is such a policy or contractual provision in place, the reduction in salary or benefits is unlikely to be challenged by the employee. Where an employee has been forced to work remotely by their employer (due to covid-19 or otherwise), such a reduction may be challenged as the remote working has not occurred at the employee’s request.

Generally, if an employer changes an employee’s salary or benefits unilaterally, an employee could bring potential claims against it for unlawful deduction from wages, unreasonable variation of employment terms or constructive dismissal.

Last updated on 11/10/2021

Flag / Icon

India

  • at Nishith Desai
  • at Nishith Desai

“Wages including the period and mode of payment”, “contribution paid, or payable, by the employer to any provident fund or pension fund or for the benefit of the workmen under any law for the time being in force”, “compensatory and other allowances”, “hours of work and rest intervals”, “leave with wages and holidays” and “withdrawal of any customary concession or privilege or change in usage” are some of the protected conditions of service under the Indian labour law. For changing any such service conditions to the detriment of the workers, the employer is required to provide 21 days’ prior notice and inform the labour authorities in a prescribed format.

Additionally, the payment of salary and benefits is largely a matter of contract between the parties, beyond the minimum requirements under the labour laws in terms of wages, bonus, social security, insurance, overtime, etc. Hence, the terms of the individual employment contract and policies also need to be considered while reducing wages or removing benefits. These are generally sensitive matters and could also lead to HR issues for the employer, especially if the employees are unionised.

Last updated on 08/07/2022

Flag / Icon
Ireland

Ireland

  • at Littler

Any unilateral reduction of salary or benefits by an employer without the consent of an employee can be challenged by way of a breach of contract claim, an unlawful deduction of wages claim, or a claim of constructive dismissal on the part of an employee. However, such a reduction could be agreed upon between the parties as part of an agreement, for example, to permit the employee to work remotely permanently.

Last updated on 21/09/2021

Flag / Icon

Italy

  • at Toffoletto De Luca Tamajo

Under Smart Working regulations, employees who work remotely are entitled to receive an overall economic treatment equal to that paid to employees working at the company’s premises. Therefore, generally speaking, employers cannot reduce salaries/benefits of employees working remotely. Nonetheless, recent Italian case law considered it possible for employers to revoke meal tickets from remote workers (except in the case of specific contractual obligations), as it is not part of the normal salary of the employee.

Last updated on 14/07/2022

Flag / Icon

Mexico

  • at Marván, González Graf y González Larrazolo
  • at Marván, González Graf y González Larrazolo
  • at Marván, González Graf y González Larrazolo

No, any reductions to employees’ salaries or benefits are considered a unilateral modification to employment conditions, and therefore are grounds for justified rescission of the employment contract with total responsibility attributed to the employer. If this were to happen, severance will have to be paid as if it were an unjustified dismissal.

Last updated on 21/09/2021

Flag / Icon

Netherlands

  • at Rutgers & Posch
  • at Rutgers & Posch

In principle, this is not the case unless the individual employee provides his consent therewith. However, special allowances for the reimbursement of expenses that become obsolete due to working from home (e.g, travel expenses) may no longer apply in individual cases.

Last updated on 08/03/2022

Flag / Icon

Poland

  • at Bird & Bird
  • at Bird & Bird

No. Any such action could be considered as discrimination or other unequal treatment. Remote workers must be remunerated based on the same rules as all other staff, including in terms of their access to other benefits. 

Likewise, within the principles adopted for all staff, remote workers may visit their employer’s office or premises, communicate with other employees, use the employer’s rooms, facilities and company social facilities, and may benefit from social activities organised by the employer.

Last updated on 21/03/2022

Flag / Icon

Portugal

  • at Cuatrecasas
  • at Cuatrecasas

Teleworking employees have the same rights and obligations as any other employees, which implies that no reduction in salaries or benefits is admissible, in principle. Under Portuguese labour law, employers cannot reduce basic remuneration unless there is a demotion, which must be, in any case, expressly authorised by both the employee and the Authority for Working Conditions (ACT).

Reducing or cancelling any other payments to remote workers would be deemed discriminatory, and therefore illegal, except for situations where valid grounds could justify it.

Moreover, concerning reducing or suppressing benefits, the fact that benefits have been granted regularly over the years may lead to their qualification as acquired rights of the employees and part of employees’ remuneration, which would mean restrictions on the termination, reduction or alteration of such payments.

During the beginning of the covid-19 pandemic, there was debate over whether employees were still entitled to a meal allowance if they were teleworking, since the cause for payment would cease to exist (ie, employees would no longer be forced to spend money on out-of-home meals). However, the government clarified that, under the special compulsory teleworking regime (whenever the nature of the functions being performed was compatible with it), employees retain the right to a meal allowance, based on the principle of equal rights for on-site employees and teleworkers. It is now fairly and widely accepted that such meal allowances cannot be withdrawn based on the circumstances of teleworking employees.

Last updated on 13/07/2022

Flag / Icon

Qatar

  • at Clyde & Co
  • at Clyde & Co

Any reduction in contractual salary or benefits cannot be unilaterally imposed and will need to be mutually agreed upon with the employee.  There may be scope to unilaterally amend non-contractual benefits depending on how they have been structured.

Last updated on 08/11/2021

Flag / Icon

Saudi Arabia

  • at Clyde & Co
  • at Clyde & Co

Any reduction in contractual salary or benefits cannot be unilaterally imposed and will need to be mutually agreed with the employee. There may be scope to unilaterally amend non-contractual benefits depending on how they have been structured.

Last updated on 29/11/2021

Flag / Icon

Spain

  • at Cuatrecasas
  • at Cuatrecasas

Article 4 of the Law on Remote Working provides equal rights for remote and on-site workers, so they receive equal pay and are entitled to the same schedule, breaks and work-life balance, and they are expressly included in equality plans and harassment prevention protocols.

Last updated on 21/09/2021

Flag / Icon

Sweden

  • at DLA Piper
  • at DLA Piper
  • at DLA Piper

The employer is not entitled to unilaterally reduce the employee’s salary or other employment benefits unless provided for in the individual employment agreement or a collective bargaining agreement. Hence, such a measure would require an agreement between the employer and the employee. If the employer implements unilateral salary deductions, the employer may be held liable to pay damages for a breach of contract. Moreover, there is a risk that the employee can claim that the deductions imply an unlawful termination of employment, which could make the employer liable to pay both compensation for losses sustained (capped at 32 months’ salary) as well as general damages.

Last updated on 24/01/2022

Flag / Icon

Switzerland

  • at Lenz & Staehelin

The payment of salary constitutes one of the employers' main obligations under an employment contract. This obligation exists even in the case of remote working and, therefore, it is not possible to reduce salary due to remote working.

Regarding benefits, a distinction must be made between different types. For example, it could be considered that employers who provide a car or a transport pass to employees could waive this benefit or reduce it proportionally if employees carry out all, or part, of their professional activity from home. However, if employees are paid meal allowances, it may be more difficult to justify removing this benefit, although the situation is less clear in situations in which employers provides employees with free meals.

Last updated on 30/09/2021

Flag / Icon

Turkey

  • at Gün + Partners
  • at Gün + Partners
  • at Gün + Partners

As per article 14 of the TLA, remote workers cannot be treated differently from a comparable worker solely due to the nature of their employment contract. Employers cannot reduce the salaries or benefits of employees who work remotely merely on grounds of remote working. However, if there is other justification, such treatment may be acceptable.

Last updated on 21/09/2021

Flag / Icon

UAE

  • at Clyde & Co
  • at Clyde & Co

Any reduction in contractual salary or benefits cannot be unilaterally imposed and will need to be mutually agreed upon with the employee. There may be scope to unilaterally amend non-contractual benefits depending on how they have been structured.

Last updated on 08/11/2021

Flag / Icon

United Kingdom

  • at Littler

No, unless they implement the reductions formally with the agreement of the employee or (if relevant) the union.

Any unilateral reduction of salary or benefits by an employer without the consent of an employee can be challenged by way of a breach of contract claim, an unlawful deduction of wages claim, or a claim of constructive dismissal on the part of an employee.

However, it is possible that such a reduction could be agreed between the parties as part of an agreement, for example, to permit the employee to work remotely on a permanent basis.

Last updated on 21/09/2021

Flag / Icon

United States

  • at Littler
  • at Littler
  • at Littler

Most jurisdictions in the US have at-will employment, so that with appropriate advance notice, salaries and benefits of at-will employees can be reduced without issue (ie, assuming no contract and the pay does not fall below the threshold for minimum wage or to maintain any particular exemption).  However, as with any workplace policy, the law mandates that selection for wage reduction be without regard to protected status such as race, age or disability. Thus, there may be an exposure to risk of claims to the extent that those who work remotely are seeking an accommodation or there is a potential for disparate impact.  Thus, employers should ensure that there is no "disparate impact" on any protected status that is required to work remotely.

Up-to-date information on the USA’s response to the pandemic, including State-level news and developments, can be found at Littler’s covid hub here.

Last updated on 21/09/2021