Workplace Health Surveillance: Understanding Your Legal Responsibilities as an Employer

If you run a business in the UK, you’re likely familiar with the term “health and safety” – but did you know that health surveillance is a legal requirement in many workplaces? Whether you operate a bustling manufacturing plant or a small tech company, understanding your obligations around health surveillance is crucial to protect your team and your business. In this guide, we’ll break down what workplace health surveillance really means, when it’s required by law, how it protects you and your employees, and the practical steps to make sure your workplace is fully compliant. If you’re unsure about your next move – don’t stress. With the right approach, balancing legal compliance and employee wellbeing is absolutely achievable.

What Is Health Surveillance and Why Does It Matter?

Health surveillance isn’t just another box to tick on your health and safety checklist. It’s an ongoing process designed to track and protect the health of your staff-especially when their work could expose them to risks that can’t be eliminated or adequately controlled.

• Definition: Health surveillance means regularly monitoring your employees’ health to detect any signs of work-related illness as early as possible. This can include medical checks, tests, or even simple questionnaires, depending on the risks present in your workplace.
• Examples: Hearing exams for staff working in noisy environments, lung function tests where dust or fumes are present, and skin checks for those using hazardous chemicals.

Why is it so important? Early detection of work-related health issues helps you take action before they worsen, protects your employees, and, of course, keeps you on the right side of the law. If you’re unfamiliar with these concepts, brushing up on your responsibilities as a small business owner is a smart first step.

Is Health Surveillance a Legal Requirement?

A common question for business owners is, “Is health surveillance a legal requirement for every workplace?” The answer is: not for every workplace, but it absolutely is a legal obligation wherever your employees are exposed to certain workplace hazards that could cause harm. Key UK laws that govern health surveillance include:

• The Health and Safety at Work etc. Act 1974: Requires employers to ensure, as far as reasonably practicable, the health, safety, and welfare of their employees.
• Control of Substances Hazardous to Health (COSHH) Regulations 2002: Specifically requires health surveillance where employees are exposed to substances hazardous to health.
• The Management of Health and Safety at Work Regulations 1999: Mandates risk assessment and, when identified, putting in place health surveillance measures.
• Other regulations (like the Control of Noise at Work, Control of Vibration at Work, and Control of Lead at Work Regulations) also make health surveillance a legal requirement in specified scenarios.

Essentially, if your risk assessments identify residual risks to employee health – after all reasonable controls have been put in place – you’ll need to implement health surveillance. Not sure if this applies to your business? If you’re in manufacturing, construction, agriculture, cleaning, beauty services, or any environment where noise, chemicals, dust, or hazardous substances are present, you’re likely affected. Even start-ups or office-based companies should assess whether any staff are at risk due to specific tasks or environments.

When Do You Need to Carry Out Health Surveillance?

Health surveillance isn’t required for every hazard-only when all three of the following conditions are met:

1. There is a reasonable likelihood of an identifiable disease or adverse health effect occurring as a result of work (for example, hearing loss, dermatitis, occupational asthma).
2. The work involves a significant risk of exposure to those health hazards (such as noise above legal limits, working with sensitisers, dust, or certain chemicals).
3. Health surveillance is likely to be beneficial in detecting the early onset of work-related ill health, or confirming that control measures are working.

Examples of common triggers for health surveillance include:

• Exposure to hazardous substances requiring assessments under COSHH
• Jobs involving regular exposure to noise above action levels
• Work with human biological agents (e.g. laboratories or healthcare settings)
• Tasks that expose workers to hand-arm vibration or whole-body vibration

Remember, a thorough risk assessment is always your starting point. If you’re unsure, it’s wise to seek guidance from a health and safety or legal expert.

What Does a Health Surveillance Programme Include?

A robust health surveillance programme brings together a few key elements to ensure both compliance and protection for your workforce.

• Risk Assessment: Start here. Identify which roles and work activities carry ongoing health risks, especially those that can’t be completely eliminated.
• Types of Health Checks:
  • Questionnaires for symptoms (e.g. skin or respiratory health)
  • Regular medical exams or lung function tests for those working with airborne hazards
  • Hearing tests for those exposed to excessive noise
  • Skin checks for those handling irritants or sensitisers
  • Other specific medical surveillance as required by regulations
• Competent Occupational Health Advice: Health checks should be overseen by someone with appropriate medical or occupational health qualifications.
• Effective Record Keeping: Employers must keep up-to-date records of health surveillance results. These must be kept confidential and in line with data protection law (we’ll cover this more below).
• Regular Review: Use the data from health surveillance to spot trends, improve workplace controls, and ensure continued protection for your staff.

It’s worth noting: health surveillance is not the same as general health checks (such as routine GP visits), nor is it a replacement for managing hazards properly in the first place. Rather, it’s a safety net to catch issues that slip through the cracks.

What Are Your Legal Duties as an Employer?

If you employ anyone, you have a legal duty to ensure, so far as is reasonably practicable, their health, safety, and welfare at work. When it comes to health surveillance, this means:

• Carrying out effective risk assessments specific to each role or activity
• Implementing health surveillance where there are ongoing health risks that can't be fully controlled
• Consulting employees about health surveillance arrangements and what they entail
• Informing employees of the reasons for health surveillance and encouraging their participation
• Using competent health professionals to carry out medical surveillance, when necessary
• Maintaining accurate, confidential records, and acting on the results to improve health and safety controls

Failing to provide health surveillance when required is not just a tick-box breach – it can leave your business exposed to enforcement action, significant fines, or compensation claims. For more on navigating your obligations as an employer, check out our Small Business Survival Guide.

Employee Rights and Data Protection

Employees have the right to appropriate health surveillance if it's needed to protect their health at work. It’s essential that they:

• Understand why health surveillance is required and what it involves
• Are involved in the process and provided with information about their health results
• Have their medical confidentiality respected at all times

Health surveillance records must be managed in compliance with the UK GDPR and the Data Protection Act 2018. This means you have to:

• Keep records secure and confidential
• Share results only with those who need to know-such as occupational health professionals or for statutory purposes
• Inform employees of their rights regarding access to their medical data

For further reading, take a look at our articles on GDPR compliance and Privacy Policies.

How Do You Set Up a Compliant Health Surveillance Programme?

Setting up an effective health surveillance programme doesn’t have to be overwhelming. Here’s a practical step-by-step approach that works for most employers:

1. Carry Out Risk Assessments: Pinpoint roles, tasks, or areas of your business where there are risks to employee health you can’t fully control.
2. Consult Employees: Talk to your staff about potential risks and the benefits of health surveillance. Transparency encourages participation and trust.
3. Seek Occupational Health Advice: For technical health checks, enlist a qualified occupational health provider who can advise on appropriate surveillance methods.
4. Design a Tailored Programme: The programme should reflect your workplace's actual risks – one size definitely doesn’t fit all.
5. Communicate Clearly: Let employees know what to expect, how the process works, and how their information will remain confidential.
6. Keep Comprehensive Records: Set up systems for maintaining secure, confidential health surveillance records.
7. Monitor and Review: Use the outcomes to check that your risk controls are working, spot emerging problems, and adjust your approach if necessary.

It’s also a good time to make sure your other key legal documents and policies are up to date for overall compliance and risk management.

What Happens If You Don't Comply With Health Surveillance Laws?

Ignoring your health surveillance duties isn’t just risky for your staff-it can have serious consequences for your business, including:

• HSE enforcement action-this could include formal improvement or prohibition notices
• Substantial fines for health and safety breaches
• Civil compensation claims from affected employees
• Higher insurance premiums or even refusal of cover in some cases
• Significant reputational damage if a preventable health issue occurs

Being proactive keeps your people safe and your business on a solid legal foundation. If you’re still unsure about your duties, or you want reassurance you're set up correctly from the start, chatting to a commercial lawyer could save major headaches down the road.

Key Takeaways

• Health surveillance is a legal requirement wherever workplace health risks can’t be fully controlled.
• UK laws like COSHH, the Health and Safety at Work Act, and others set out specific employer duties for monitoring and protecting worker health.
• The right programme starts with risk assessment and involves tailored medical checks, robust record keeping, and clear communication with staff.
• Health surveillance records must be confidential and managed according to GDPR and data protection law.
• Failing to implement health surveillance when required exposes your business to prosecution, fines, compensation claims, and lost trust.
• Seek expert advice if you’re unsure – strong legal and occupational health foundations mean your business is protected from day one.

If you’d like further support understanding your legal responsibilities for health surveillance or ensuring your HR, safety, and employment practices are up to scratch, you can reach us at 08081347754 or team@sprintlaw.co.uk for a free, no-obligations chat.