PREVIOUS PAGE
NEXT PAGE

Page 22 of 58

10-Point Plan To Protect Your Business From Zoom-Bombs And Other Videoconferencing Privacy Concerns

April 27 - Posted at 3:35 PM Tagged: , , , , , , , , ,

The COVID-19 pandemic has caused many employers now operating remotely to conduct meetings via video conference – which has created a whole new set of various privacy and cybersecurity concerns. While these remote work tools have facilitated a more personal connection and interactive experience, their use is fraught with privacy concerns you may never have before considered. If your organization is weighing its options or unaware of the risks these services may create, this article provides a 10-point plan to protect your personal and confidential information and ensure you remain compliant with various federal and state privacy laws.  

The Risks of Video Conferencing       

Before diving into the blueprint for compliance, it is first helpful to understand the three main risks of video conferencing.

“Zoom-Bombing”

Since the start of the COVID-19 public health emergency, the FBI has noted a substantial increase in the number of businesses and schools reporting instances of video conference “hijackings” (also known as “Zoom-bombings”). During these hijackings — which generally occur where a video conference link is shared over social media or is not password-protected — uninvited participants have disrupted meetings by interjecting inappropriate language or displaying hateful or pornographic images into business meetings.

Aside from unwanted disruptions, uninvited interlopers pose a more serious threat. Those that choose to remain undetected could lead to the unauthorized disclosure of personal or confidential information.

Insufficient Or Non-Existent Encryption

Many video conferencing companies tout their services’ encryption capabilities. However, these claims should be closely scrutinized. By way of example, the video conferencing platform Zoom has indicated that hosts may “enable an end-to-end (E2E) encrypted meeting.” This was reportedly proven to be untrue. The company was supposedly able to access user data and video conferences in transit and it was reported that it could be compelled to provide access or information to the government if such a request was made.

Additionally, the storage of recorded video conferences creates other issues. Thousands of Zoom conference recordings were recently found on an unsecured online storage platform. Prior to Zoom restricting access to their storage location, anyone with an internet connection could access the private and confidential meetings of countless users. Likewise, if your business does not store its recorded conferences in a secure manner, there is a substantial possibility that an unauthorized individual may gain access to their contents.

Inadequate Privacy

Video conferencing raises privacy issues on two fronts. First, according to a recent California class action lawsuit, video conferencing providers may be improperly using their subscriber’s data. Specifically, as alleged in the suit, California’s privacy law and other state statutes may have been violated if users’ personal information was shared with Facebook without the users’ consent.

End-users may also create privacy issues. Among other things, confidential information may be mistakenly divulged if an employee shares their screen while such information is visible. If an end-user participates in a video conference in a public space, everything that is said and displayed during the conference is disclosed to those around them. Moreover, if an end-user records or takes screenshots of images displayed during the meeting, those items may be improperly disseminated.

Legal Consequences Of A Video Conferencing Breach

If you or your video conference provider has inadequate privacy and cybersecurity policies or procedures, your business may inadvertently run afoul of various federal and state laws. Among other laws, the unauthorized disclosure of your employees’ personal and confidential information may violate:

  • The Health Insurance Portability and Accountability Act (HIPPA) (prohibiting the disclosure of sensitive patient health information without a patient’s knowledge or consent);
  • California’s Consumer Privacy Act (CCPA) (regulating the access to, deletion of, and sharing of personal information collected by businesses); and
  • The European Union’s General Data Protection Regulation (GDPR) (a wide-ranging law that governs how companies collect and manage data).

10-Point Plan To Prevent Video Conferencing Disasters

To avoid potential video conferencing related privacy or cybersecurity breaches when using Zoom or similar platforms, your business should consider employing the following practices:

  1. Review your conference provider’s privacy policy and user agreement. Also ensure you have the most recent version of your video conference provider’s software before you launch a new meeting.
  2. Ensure that your conferences are set as private, not public.
  3. Require passwords for all meetings. And while this seems simplistic, do not post passwords (or meeting links) to social media.
  4. If available, create a waiting room that allows the conference host to individually admit participants. Review all meeting attendees before starting the conference and remove uninvited participants who gain access to the meeting. Once all expected attendees have joined, lock the meeting.
  5. Limit who may share their screen.
  6. Disable cameras and/or mute non-presenting conference participants, and consider disabling private chat.
  7. Prevent attendees from changing user names to conceal identities.
  8. Ensure no confidential or personal information is visible before sharing your screen.
  9. Instruct all participants to refrain from recording or screenshotting any information shared during the meeting.
  10. Review (and if necessary, create or revise) your company telework and IT policies to ensure that employees are aware of the steps they must take to keep the personal and confidential information they possess secure.

Conclusion

In the wake of the COVID-19 pandemic, many employers are relying on video conferencing platforms to conduct meetings and providing remote educational instruction. While Zoom and other video conferencing platforms can provide a valuable interactive experience while social distancing, it is important to educate employees on potential privacy and cybersecurity risks. You must require them to adhere to best practices to ensure the security of remote meetings, protect the privacy of participants, and reduce the risk of intervention by unwanted participants.

Recording Available for AAG’s 2020 Education Seminar

April 23 - Posted at 4:20 PM Tagged: , , , , , ,
The recorded presentation of AAG’s 2020 Educational Seminar on April 23, 2020 is now available for viewing.

Guest Speaker and attorney Keith Hammond, with Hammond Law Center, covered the impact of COVID-19 on businesses in relation to the Families First Coronavirus Response Act (FFCRA) as well as the Emergency Leave Act and CARES Act.

This seminar is also approved for 2 Professional Development Credits (PDCs) with SHRM for all attendees.

Please contact our office for the link to view the presentation or the Activity ID for the PDCs.

Notice & Documentation Requirements Under the New Paid Sick and FMLA Leave Law

April 22 - Posted at 2:00 PM Tagged: , , , , , , , , , , ,
Many employers have multiple questions on the requirements for documentation on the new paid leave programs available under the FFCRA, so we have summarized them here for you.
 
Now that you have the ever-changing jist of how the Emergency Paid Sick Leave and Expanded FMLA work, we need to make certain you obtain the correct documentation to ensure you can claim the tax credit.
 

Proper Timing for Requesting Leave

For employees that need to take leave due to school/childcare closures, where the leave is foreseeable, they must provide notice as soon as practical.

When leave is for any other reason, employers can only require notice after the first workday the employee is on leave.   KEEP IN MIND – notice from an employee’s spokesperson, such as a family member, must be accepted if the employee is unable to provide notice personally.
 
What information do you need to collect?
  1. Employees name
  2. Date of leave request
  3. Qualifying reason, and
  4. Oral or written statement that the employee is unable to work due to qualifying reason
Although oral notice is sufficient, you may wish to consider using a leave request form to maximize compliance.
 

What documentation must employee provide to prove need for leave?  

It will depend on the reason for the leave:
  • Employee subject to a federal, state or local quarantine or isolation order related to COVID-19: the name of the governmental entity that issued the Order
  • A health care provider advises an employee to self-quarantine: the name of the health care provider who advised the employee to self-quarantine.
  • Employee caring for an individual subject to a quarantine order or been advised by a health care provider to self-quarantine: either the name of the governmental entity that issued the Order to which the individual being cared for is subject, OR, the name of the health care provider who advised the self-quarantine.
If an employee has requested leave to care for a child whose school is closed or childcare is unavailable:
  • Employee must provide the name of the child, name of the school, place of care or child care provider that has become unavailable (keep in mind this could be family or a friend), and a representation that “no other suitable person will be caring for the child during the period the employee is taking leave

Steps to Reopening Your Workplace

April 21 - Posted at 2:40 PM Tagged: , , ,
Yesterday, the CDC released guidance for assisting employers in making decisions to reopen (or reopen for high risk employees) during the COVID-19 pandemic.

Besides continuing to follow recommendations issued by the state and local health departments, you can consider these 5 steps: 

  1. Preliminary Questions Before Reopening

According to the CDC guidance, you should consider three questions when deciding whether to reopen:

  • Are you in a community no longer requiring significant mitigation?
  • Will you be able to limit non-essential employees to those from the local geographic area?
  • Do you have protective measures for employees at higher risk (e.g. teleworking, tasks that minimize contact)?

CDC states you should only consider reopening if you can answer “yes” to all three questions.

  1. Take Recommended Safety Actions

Once you feel comfortable that your organization can satisfy the three preliminary questions, you should next adopt the CDC’s recommended safety actions. They include:

  • Promoting healthy hygiene practices;
  • Intensifying cleaning, disinfection
  • Practice Social Distancing (e.g., small static groups, no large events);
  • Canceling non-essential travel, and encouraging alternative commuting and telework;
  • Spacing out seating (more than six feet) and staggering gathering times;
  • Restricting use of any shared items (phones, tools, etc) and spaces; and
  • Training all staff in the above safety actions
  1. Implement Safeguards for Ongoing Monitoring Of Employees

Next, before reopening, you should implement safeguards for the ongoing monitoring of employees. They include:

  • Encouraging employees who are sick to stay home;
  • Establishing routine, daily employee health checks;
  • Monitoring absenteeism and having flexible time off policies;
  • Having an action plan if a staff member gets COVID-19; (we’ll have a blast next week to address this)
  • Creating and testing emergency communication channels for employees; and
  • Establishing communication with state and local health authorities.
  1. Prepare Your Physical Workspace For Reopening

The final step before you reopen your doors involves preparing your location for the reentry of workers, customers, guests, and other visitors. The CDC has released guidance for cleaning and disinfecting public spaces, workplaces, businesses, schools, and homes. Review this guidance when implementing cleaning procedures at your facilities after shelter-in-place orders are lifted. 

  1. Maintain Vigilance
Your work is not done once you open your doors and welcome back your workers. The CDC recommends that you maintain routine cleaning and disinfection procedures after reopening to reduce the potential for exposure.

OSHA Provides Recordkeeping Guidance To Employers For COVID-19 Cases

April 15 - Posted at 10:00 AM Tagged: , , , , ,

The Department of Labor’s Occupational Safety and Health Administration issued guidance for enforcing OSHA’s recordkeeping requirements for COVID-19 cases. OSHA recordkeeping requirements mandate covered employers record certain work-related injuries and illnesses on their OSHA 300 log.

When Does Your Recordkeeping Obligation Kick In?

According to the guidance, COVID-19 is a recordable illness, and must be recorded on an employer’s OSHA 300 log if:

  1. The case is a confirmed case of COVID-19 (meaning an individual has at least one respiratory specimen that tests positive for SARS-CoV-2, the virus that causes COVID-19);
  2. The case is work-related (as defined by 29 CFR § 1904.5); and
  3. The case involves one or more of the general recording criteria as outlined by OSHA: if it results in death, days away from work, restricted work or transfer to another job, medical treatment beyond “first aid,” or loss of consciousness (OSHA provides a specific and complete definition of “first aid” in 29 CFR § 1904.7(b)(5)(ii)).

Limited Enforcement Waiver

Recognizing the difficulty in determining whether COVID-19 was contracted while on the job, OSHA will not enforce its recordkeeping requirements that would require employers in areas where there is ongoing community transmission to make work-relatedness determinations for COVID-19 cases, except where:

  1. There is objective evidence that a COVID-19 case may be work-related; and
  2. The evidence was reasonably available to the employers.

This waiver of enforcement does not apply to employers in the healthcare industry, emergency response organizations (e.g., emergency medical, firefighting and law enforcement services), and correctional institutions in areas where there is ongoing community transmission.  These employers must continue to make work-relatedness determinations. 

This new guidance provides employers with one fewer issue to worry about in their response efforts to an employee with a confirmed case of COVID-19. Employers should continue to focus on minimizing the risk of transmission in the workplace.  

IRS Extends the Form 5500 Due Dates for Some Employee Benefit Plans

April 14 - Posted at 8:03 AM Tagged: , , ,

The Internal Revenue Service has broadened the filing and payment relief provided under prior guidance. IRS Notice 2020-23 postpones, among other relief, the due date for employee benefit plans required to make the Form 5500 series filings due on or after April 1, 2020, and before July 15, 2020.  Plans with original due dates or extended due dates falling within this period now have until July 15, 2020, to file their information reports.

Plan Administrators with original (un-extended) filing due dates falling within this announced 2 ½ month period who need additional time to file may request extensions by filing Form 5558 by July 15, 2020.  However, the extended due date will not be later than what it would have been absent this relief.

The chart below highlights the plans with a plan year-end which may benefit from Notice 2020-23 and have until July 15, 2020, to complete the required filing.

Notice 2020-23 invokes the Rev. Proc. 2018-58 section about Postponements for Federally Declared Disasters, which also states, “whatever postponement of the Form 5500 series filing due date is permitted by the IRS under section 7508A will also be permitted by the Department of Labor and PBGC [Pension Benefit Guaranty Corporation] for similarly situated plan administrators and direct filing entities.”

The PBGC acknowledged this IRS notice in its own Disaster Relief Announcement but reminded filers there are certain actions listed on the PBGC’s Exception List that do not automatically qualify for the relief.  The Exception List comprises actions that the PBGC views as creating a high risk of harm to plan participants.  For those actions, the PBGC will consider relief on a case-by-case basis.  For example, the PBGC filing relief may help those defined benefit plan sponsors recently engaging in significant layoffs who now need to file a PBGC Reportable Event due to a single cause active participant reduction.

IRS Notice 2020-23 also applies to the Form 990 series of filings that apply to tax-exempt trusts described in Internal Revenue Code Section 501(c)(9), referred to as VEBA (voluntary employees’ beneficiary association) trusts, among others, due on or after April 1, 2020, and before July 15, 2020.   The due date for these information reports is extended as well to July 15, 2020.

FFCRA Reasons for Leave

April 08 - Posted at 10:00 AM
The DOL has issued several rounds of guidance for FFCRA, more recently the “But For” Test. There have been a lot of questions so we have  outlined it here for you.

There are 6 reasons that employees may take paid leave under the Act. We will only focus on the 5 (listed below) that count, because not even the DOL appears to know how to define or use the 6th.

The most important questions when considering if an employee is eligible for either paid leave under FFCRA are:
  1. Is the employee able to telework?
  2. Do we have work for the employee – either in office or remote?
Employees can only take leave for one of the 5 reason listed, only if the employer has work for the employee. In the event of business closure, furlough, or lay off, employees are not eligible for paid leave, but unemployment benefits may be available.

One example the DOL has used is of a Coffee shop server that contracted COVID-19, but as a non-essential business or due to lack of customers the business shut down. This employee would not be eligible for paid leave even though they meet one of the requirements. The Coffee shop has no work for them, so regardless of their condition, the business is closed.

An employee must be unable to work due to one of the 5 reasons listed. Simply being scared to come to work does not justify need for the leave. The exception to that would be, a high risk individual or someone over 65 years old, that you could work BUT FOR the executive order or CDC guidelines, they are unable to work or telework. High risk is defined in the executive order and by the CDC.

Leave Reason 1 is that the employee is subject to a federal, state or local quarantine or isolation order related to COVID-19. A Quarantine Order by government needs to be directed to a particular person (those high risk or over 65). Leave is paid at 100% normal rate up to 80 hours. 

Reason 2 – is the employee has been advised by a health care provider to self-quarantine related to COVID-19. This doesn’t mean the employee has the virus; the doctor could just be protecting them. You only ask for a statement from the employee and the doctor’s name, at this point, you will not require a doctor’s note and cannot follow up with said doctor. Leave is paid at 100% normal rate up to 80 hours.

Reason 3 – the employee is experiencing COVID-19 symptoms and is seeking a medical diagnosis. The paid leave is limited to time the employees are unable to work because they are taking steps to get diagnosis. If they can telework and are only waiting for results, they aren’t eligible for paid leave. In the event they are unable to telework, they get paid while waiting for results. Leave is paid at 100% normal rate up to 80 hours.

A symptomatic employee not getting tested would not qualify under #3 but may qualify by doctor’s order under # 2

Reason 4 – Employees is caring for an individual (not necessarily family) subject to an order described in #1 or a self quarantine as described in #2. Leave is paid at 2/3 normal rate up to 80 hours.

Reason 5 – Employee is caring for his or her child whose school or place of care is closed (or child care provider is unavailable). DOL has changed/clarified and now, the unavailable child care provider does not need to be someone who is licensed or compensated, they can be family or friends. The employee must certify that no other suitable person is available. An employee wanting to take leave when there is another parent that can watch their children would not be eligible. Leave is paid at 2/3 normal rate up to 80 hours.

Remember, Reason 5 may also qualify your employee for the extra 10 weeks of partially paid leave under the Expanded FMLA. None of the other reasons (1-4) would entitle employees for paid leave under the expanded family medical leave program. (Paid at 2/3 normal rate up to 10 weeks).

Be sure to keep accurate records. You need to ensure the leave you are giving is covered under the law. If not, it may not be available for the tax credit.

FFCRA Documentation and Record Keeping: What Employers Need to Know

April 06 - Posted at 1:31 PM Tagged: , , , , , , , , , ,
The close of March and open of April 2020 brought in both Q2 of 2020 and some updated guidance from the U.S. Department of Labor (DOL) and the U.S. Internal Revenue Service (IRS) on the documentation needed for leaves under the Families First Coronavirus Response Act (FFCRA). The DOL’s Regulations, called a temporary rule, include substantial guidance related to the information an employer should (and in some cases must) obtain from an employee requesting leave. The DOL updated its FFCRA Questions and Answers (DOL Q&As) as well in conjunction with its Regulations.

When read in conjunction with the FAQs published by the IRS on March 31, 2020 (“IRS FAQs”) regarding the employer tax credits associated with paid FFCRA leave, the DOL’s Regulations answer some questions, but leave others unanswered. Somewhat surprisingly, the Regulations do not mention specific documentation for certain types of leave available under FFCRA, such as a copy of the doctor’s order or advice to quarantine or isolate. Any records that are required must be retained by the employer for a period of four years. 

Records Related to Small Employer Exemption

If a small employer decides to deny emergency paid sick leave or expanded family and medical leave to an employee whose child’s school or place of care is closed, or whose childcare provider is unavailable (which is the only type of leave a small employer can deny), the employer must document the basis for the exception. 

Although the employer should not send this documentation to the DOL, it should retain such records for its own files.

Information Supporting Reasons for Leave

The Regulations require that employees requesting leave provide their employers a “signed statement,” in addition to the documentation (and information) noted below, which must contain the following: (1) the employee’s name; (2) the date(s) for which leave is requested; (3) the COVID-19 qualifying reason for leave; and (4) a statement representing that the employee is unable to work or telework because of the COVID-19 qualifying reason. The Regulations also outline what an employee must provide his or her employer for each qualifying reason for leave. The information required for each qualifying reason is summarized below.
 
  • Leave because of a federal, state, or local quarantine or isolation order related to COVID-19. The employee must supply the employer with the name of the government entity that issued the order.
  • Leave because a health care provider advised the employee to quarantine or self-isolate due to concerns related to COVID-19. The employee must supply the employer with the “name of the health care provider who advised” the employee to quarantine or self-isolate due to concerns related to COVID-19. Note that these “concerns” are limited to three COVID-19-related situations:  (1) the employee has COVID-19; (2) the employee may have COVID-19; or (3) the employee is particularly vulnerable to COVID-19. Although the Regulations do not state it is required, employers may want to at least include these situations on their request forms to show that the leave is being requested – and provided – for a covered reason.
  • Leave because the employee is caring for an individual who is subject to an order by a federal, state, or local official to quarantine or self-isolate or who has been advised by a health care provider to quarantine or self-isolate due to concerns related to COVID-19. The “individual” to whom the employee is providing care must be an employee’s immediate family member, a person who regularly resides in the employee’s home, or a similar person with whom the employee has a relationship that creates an expectation that the employee would care for the person if he or she were quarantined or self-isolated. For this type of leave, ‘‘individual’’ does not include persons with whom the employee has no personal relationship. Although not specifically required by the Regulations, this detailed definition implies the need to request information regarding the relationship, and the collection of such information is supported by the IRS FAQs. As with similar leaves for the employee’s own circumstances, the employee must supply the employer with the name of the governmental official or entity that issued the quarantine or isolation order or the name of the health care provider who advised the individual for whom the employee is caring to self-quarantine due to concerns related to COVID-19. If the leave relates to advice from a health care provider, the same limited “concerns” noted above also apply to this form of leave, and employers may want – at a minimum – to include that list on their request forms to show that the leave is being requested for a covered reason.
  • Leave because the employee is caring for his/her son or daughter whose school, place of care or childcare provider has been closed, or the childcare provider of such son or daughter is unavailable, for reasons related to COVID-19. An employee must supply the employer with (1) the name of the son or daughter for whom the employee is caring; (2) the name of the school, place of care or childcare provider that has closed or become unavailable; and, (3) a representation that no other suitable person will be caring for the child during the leave.
    • NOTE: The answer to IRS FAQ No.44 notes that, in order to receive a tax credit for the paid sick leave or expanded family and medical leave for this reason, if the child is older than 14 and the leave is during daylight hours, the employee must provide a statement that special circumstances exist requiring the employee to provide care.
The Regulations do not list any additional information required for the purpose of a leave taken because the employee is experiencing symptoms of COVID-19 and seeking a medical diagnosis.

The Regulations state that employers may not require documentation beyond what is allowed for by the Regulations. In addition to the information specified above, the Regulations state generally, that employers may also request additional information or documentation needed to support a request for tax credits pursuant to the FFCRA. According to the IRS, employers are not required to provide leave if employees requesting leave fail to provide “materials sufficient to support the applicable tax credit.” Taken together, the Regulations and the IRS FAQs suggest that employers can require the information specifically listed under the FCCRA Regulations and any specific information that the IRS requires for a tax credit (such as the information noted above concerning children older than 14). Requiring anything beyond those categories potentially violates the FFCRA.

Notably, if an employee fails to provide the required information or documentation, the employer must provide that employee an opportunity to correct the error and provide the required documentation before denying the request for leave.

What Employers Need to Keep (and for How Long)

An employer is required to retain all documentation provided to support the need for leave for four years, regardless of whether leave was granted or denied. If an employee provided oral statements to support his or her request for paid sick leave or expanded family and medical leave, the employer is required to document and retain such information for four years also. Similarly, if an employer denies an employee’s request for leave pursuant to the small business exemption, the employer must document its authorized officer’s determination that the criteria for that exemption are satisfied and retain such documentation for four years.

The Regulations and the IRS FAQs also explain what documents the employer should create and retain to support its claim for tax credits from the IRS. Employers must maintain the following records for at least four years: 
 
  1. Documentation to show how the employer determined the amount of emergency paid sick leave and expanded family and medical leave paid to employees that are eligible for the credit, including “records of work, telework and qualified sick leave and qualified family leave;”
  2. Documentation to show how the employer determined the amount of qualified health plan expenses that the employer allocated to wages;
  3. Copies of any completed IRS Forms 7200 that the employer submitted to the IRS;
  4. Copies of the completed IRS Forms 941 that the employer submitted to the IRS or, for employers that use third party payers to meet their employment tax obligations, records of information provided to the third party payer regarding the employer’s entitlement to the credit claimed on IRS Form 941; and
  5. Other documents needed to support its request for tax credits pursuant to IRS applicable forms, instructions, and information for the procedures that must be followed to claim a tax credit.
Although the DOL’s Regulations and the IRS’s FAQs appear to be in agreement regarding the documentation needed to support an employer’s claim for tax credits from the IRS, we expect more detail from the IRS on this topic in the near future. We hope the additional detail from the IRS provides more clarity on categories 1, 2, and 5 of the records that need to be retained by employers. A more detailed explanation of how employers may claim tax credits, and what information will be needed, can be found at https://www.irs.gov/forms-pubs/about-form-7200 and https://www.irs.gov/pub/irs-drop/n-20-21.pdf.

We continue to monitor future guidance from the DOL and IRS and other legislation that may affect employers during this challenging time. 

Employer Step By Step Guide to FFCRA Related Tax Credits for Paid Leave

April 03 - Posted at 9:00 AM Tagged: , , , ,
The IRS has provided  an initial guidance document to assist small- and medium-sized companies with the process of defraying the costs of paid sick leave required under the  Families First Coronavirus Response Act (FFCRA). The IRS also provided some guidance regarding what information you should receive from an employee in order to substantiate eligibility for the FFCRA tax credits.  

There is good news and bad news for employers struggling to keep up with the rapidly developing and somewhat-complex procedures. The good news is that you now have much-needed clarity on the “IRS forms and information” that the DOL referenced when it indicated that  certification questions would soon be answered. Fisher Phillips LLP has summarized below the required documentation required in each situation and the recommended written support you should request from your employees. 


The bad news is that the IRS guidance raises several additional questions that will need to be further clarified. For example, the IRS guidance provides that employers should receive a written request from the employee that contains, among other things, a “statement of the COVID-19 related reason the employee is requesting leave and written support for such reason.” But the IRS guidance does not specify what “written support” the employer may ask for. And because the FFCRA does not expressly provide that you may request certification (including doctor’s notes), it is still unclear whether and in what circumstances you may permissibly ask for doctor’s notes or similar information for some of the qualifying types of leave. 

For this reason, we recommend that you indicate on any certification forms you distribute that “ additional documentation may be required ” in the event further clarity is achieved and it becomes apparent that more “written support” is needed.

Documentation For Various Leave Situations

Below is the best information available to date (4/2/2020) that has been used to develop the following employer’s guide for navigating the tax credit process.
In order to qualify for the federal tax credit for providing the emergency paid leave, you will need to obtain a written request for the Emergency Paid Sick Leave or Emergency FMLA leave. In all leave situations, you should ensure you retain the following pieces of documentation:
  • Documentation to show how you determine the amount of qualified sick and family leave wages you paid to each employee, including records of work, telework, and qualified family leave;
  • Documentation to show how you determine the amount of qualified health plan expenses that the employer allocated to wages (see FAQ 31 through 36 on the IRS Guidance entitled “Determining the Amount of Allocable Qualified Health Plan Expenses” for methods to compute this allocation);
  • Copies of any completed Forms 7200 Advance of Employer Credits Due to COVID-19 that you submit to the IRS; and
  • Copies of the completed Forms 941, Employer’s Quarterly Federal Tax Return, that you submit to the IRS. If you use third-party payers to meet your employment tax obligations, you should retain the records of information you provide them regarding your entitlement to the credit claimed on Form 941.
With respect to individual leave situations, you should ensure you retain the following pieces of documentation:

A. Reason For Leave- Quarantine or Isolation Order

Employee is subject to a federal, state, or local quarantine or isolation order related to COVID-19.

Required Documentation:
  • Employee’s name
  • Date(s) the leave is requested
  • A statement of the COVID-19 related reason the employee is requesting leave and “written support” for such reason
  • A statement that the employee is unable to work or telework due to a COVID-19 related reason; and
  • The name of the government entity ordering the quarantine.

“Written Support” That Can Be Requested
It appears that the required “written support” could be met simply by obtaining the required documentation per the IRS guidelines. You could ask an employee for or otherwise locate a copy of the quarantine or isolation order. This may ultimately depend on  the U.S. Department of Labor’s final interpretation regarding whether a state or local shutdown order satisfies this qualifying reason. If so, then you should likely be able to locate the documentation. If not, and USDOL interprets this only to cover an individual quarantine or isolation order, then the employee would have to provide it to you as you would not have access to it.


B. Reason For Leave- Advised by Doctor to Self-Quarantine

Employee has been advised by a health care provider to self-quarantine due to COVID-19 concerns.

Required Documentation:
  • Employee’s name
  • Date(s) the leave is requested
  • A statement of the COVID-19 related reason the employee is requesting leave and “written support” for such reason
  • A statement that the employee is unable to work or telework due to a COVID-19 related reason; and
  • The name of the health care professional advising self-quarantine.

“Written Support” That Can Be Requested
It appears that the required “written support” could be met simply by obtaining the required documentation per the IRS guidelines, which includes a statement from the employee including the name of entity issuing/advising of quarantine. Note that it may be impractical or even contrary to local or state order to request a doctor’s note in such situations. 

C. Reason For Leave- Has Symptoms and Seeking Medical Advice

Employee is experiencing COVID-19 symptoms and seeking medical diagnosis.

Required Documentation:
  • Employee’s name
  • Date(s) the leave is requested
  • A statement of the COVID-19 related reason the employee is requesting leave and “written support” for such reason; and
  • A statement that the employee is unable to work or telework due to a COVID-19 related reason.

“Written Support” That Can Be Requested
You should be able to ask the employee for the name of the health care professional or health care provider that they are seeking a medical diagnosis from as this is required by the IRS guidelines for other emergency leave reasons. Note that it may be impractical or even contrary to local or state order to request a doctor’s note in such situations. 

D. Reason For Leave- Employee Caring for Person Under Quarantine/Isolation Orders

Employee is caring for an individual subject to a federal, state, or local quarantine or isolation order, or advised by a health care provider to self-quarantine due to COVID-19 concerns.

Required Documentation:
  • Employee’s name
  • Name of the person subject to quarantine or advised to self-quarantine
  • Relation of the person subject to quarantine or advised to self-quarantine
  • Date(s) the leave is requested
  • A statement of the COVID-19 related reason the employee is requesting leave and “written support” for such reason
  • A statement that the employee is unable to work or telework due to a COVID-19 related reason; and
  • The name of the government entity ordering the quarantine or the name of the health care professional advising self-quarantine.

“Written Support” That Can Be Requested
It appears that the required “written support” could be met simply by obtaining the required documentation per the IRS guidelines. You could ask an employee for or otherwise locate a copy of the quarantine or isolation order. This may ultimately depend on  the U.S. Department of Labor’s final interpretation regarding whether a state or local shutdown order satisfies this qualifying reason. If so, then you should likely be able to locate the documentation. If not, and USDOL interprets this only to cover an individual quarantine or isolation order, then the employee would have to provide it to you as you would not have access to it.

E. Reason For Leave- Caring for Child if School/Daycare is Closed

Employee is caring for their child if the child’s school or place of care is closed or the child’s care provider is unavailable due to public health emergency.

Required Documentation:
  • Employee’s name
  • Name and age of the child/children
  • Name of the school that has closed or place of care that is unavailable
  • Date(s) the leave is requested
  • A statement of the COVID-19 related reason the employee is requesting leave and “written support” for such reason. The “written support” should include:
    • A statement that the employee is unable to work or telework due to a COVID-19 related reason;
    • Representation that no other person will be providing care for the child during the period for which the employee is receiving family medical leave; and
  • If the child is older than 14 and needs care during daylight hours, a statement that special circumstances exist requiring the employee to provide care.

“Written Support” That Can Be Requested
The USDOL has stated that you can require workers to provide additional documentation in support of EFMLA taken to care for a child or children whose school or place of care is closed, or child care is unavailable, due to COVID-19 related reasons. This could include:
  • Notice of closures or unavailability from a school, place of care, or child care provider;
  • A notice of closure or unavailability posted on a government, school, or day care website;
  • A notice of closure or unavailability published in a newspaper; and
  • A notice of closure or unavailability emailed from an employee or official of the school, place of care, or child care provider.

F. Reason For Leave- Other

Employee is experiencing any other substantially similar condition specified by the Secretary of Health and Human Services in consultation with the Secretary of the Treasury and the Secretary of Labor.

Required Documentation:
  • Employee’s name
  • Date(s) the leave is requested
  • A statement of the COVID-19 related reason the employee is requesting leave and “written support” for such reason; and
  • A statement that the employee is unable to work or telework due to a COVID-19 related reason.

“Written Support” That Can Be Requested
To be determined on a case-by-case basis. 


Maintenance Of Records
You should maintain all records noted above for at least four years after the date the tax becomes due or is paid, whichever is later.

Florida Governor Issues Safer At Home Order – What Do Businesses Need To Know?

April 02 - Posted at 11:01 AM Tagged: , , , , ,

Florida Governor Ron DeSantis issued a Safer At Home Order for the State of Florida yesterday. It goes into effect just after midnight (at 12:01 am) on the morning of Friday, April 3, 2020, and is set to expire on Thursday, April 30, 2020. The Order limits movement and personal interaction outside of the home to only those necessary to obtain or provide essential services, or to conduct essential activities.

The term “essential services” is defined as and encompasses the list detailed by the U.S. Department of Homeland Security in its Guidance on the Essential Critical Infrastructure Workforce. Essential services also include the businesses and activities designated by Florida Executive Order 20-89 and its attachment, which consists of the list propounded by Miami-Dade County Emergency Order 07-20, as amended in multiple orders. Other essential services may be added under the Order and nothing in the Order prohibits individuals from working from home.

Thus, when determining whether your business qualifies as an essential business, you should consult the Department of Homeland Security’s Guidance and Miami-Dade County Emergency Order 07-20 and its amendments. The Order also indicates that a current list of essential services will be maintained on the Florida Department of Health’s website. For purposes of the Order, essential activities also include attending religious services, participating in recreational activities (consistent with social distancing guidelines), taking care of pets, and caring for or otherwise assisting a loved one or friend.

State v. Local Law

Governor DeSantis has taken a gradual approach to social distancing measures related to COVID-19. On March 17th, he ordered all bars and restaurants across the state to discontinue all dine-in service. On March 27th, he ordered all persons who enter the state of Florida after being in New York, New Jersey, and Connecticut to isolate or self-quarantine for two weeks. 

In the meantime, the state’s largest counties, including Miami-Dade, Broward, Palm Beach, Orange, and Hillsborough, issued Stay at Home or Safer at Home orders requiring residents to stay home, with certain exceptions, and ordering all non-essential businesses to close, or cease in-person operations. In some cases, however, these Orders were only limited to those non-essential businesses that could not perform their work in adherence with the Centers for Disease Control guidance regarding social-distancing and other sanitary matters. Miami-Dade’s business closure order went into effect on March 19, while Orange County and Hillsborough followed on March 26 and 27, respectively.

Governor DeSantis’ Order supersedes any order issued by local officials.

 

What Is An Essential Business?

The U.S. Department of Homeland Security Essential Critical Infrastructure Workforce Guidance and Miami-Dade County Emergency Order 07-20 and its amendments include the following as Essential Businesses:

HEALTH CARE OPERATIONS 

  • Research and laboratory services;
  • Hospitals, doctors’ and dentists’ offices, clinics;
  • Walk-in-care/Urgent care health facilities;
  • Veterinary and animal health services;
  • Elder care;
  • Rehabilitation facilities, physical therapists, and therapists;
  • Mental health professionals and psychiatrists;
  • Medical wholesale and distribution;
  • Home health care workers or aides;
  • Nursing homes, or residential health care facilities or congregate care facilities;
  • Medical supplies and equipment providers.

INFRASTRUCTURE, TRANSPORTATION, AND MARINE SERVICES

  • Utilities, including power generation, fuel supply and transmission;
  • Public water and wastewater;
  • Telecommunications and data centers;
  • Airports/Airlines;
  • Taxis;
  • Other private transportation providers providing transportation services via automobile, truck, bus, or train.
  • Transportation infrastructure, such as bus, rail, or for-hire vehicles and garages.
  • Private and municipal marinas;
  • Boat launches;
  • Docking services;
  • Fueling services;
  • Marine supply and other marina services.

MANUFACTURING

  • Food processing, including all foods and beverages;
  • Chemicals;
  • Medical equipment and instruments;
  • Pharmaceuticals;
  • Safety and sanitary products;
  • Telecommunications;
  • Agriculture/Farms;
  • Paper products;
  • Factories;
  • Manufacturing facilities;
  • Bottling plants;
  • Other industrial uses.

RETAIL

  • Grocery stores and supermarkets, including all food and beverage stores;
  • Food banks;
  • Pharmacies;
  • Convenience stores;
  • Farmer’s markets, and farm and produce stands;
  • Gas stations;
  • Restaurants/bars (but only for take-out/delivery);
  • Hardware and building material stores;
  • Other establishments engaged in the retail of food products, pet supply, and such other household consumer products as cleaning and personal care products;
  • Other stores that sell groceries and other non-grocery products, and products necessary to maintaining the safety, sanitations, and essential operations of residents;
  • Businesses that ship or deliver groceries, food, goods, or services directly to residences;
  • Restaurants and other facilities that prepare and serve food, but only for delivery, takeout, or drive-thru services.

SERVICES

  • Trash and waste recycling collection, processing and disposal;
  • Mail and shipping services;
  • Laundromats/dry cleaning;
  • Building cleaning and maintenance;
  • Child care services;
  • Auto repair;
  • Warehouse/distribution and fulfillment;
  • Funeral homes, crematoriums and cemeteries;
  • Storage for essential businesses;
  • Sales of computer or telecommunications devices and the provision of home telecommunications;
  • Legal and accounting services as necessary to assist in compliance with legally mandated activities.

NEWS MEDIA

  • Newspapers;
  • Television;
  • Radio;
  • Other media services.

FINANCIAL INSTITUTIONS

  • Banks and other related financial institutions;
  • Insurance;
  • Payroll;

PROVIDERS OF BASIC NECESSITIES TO ECONOMICALLY DISADVANTAGED POPULATIONS

  • Homeless shelters and congregate care facilities;
  • Food banks;
  • Human services providers whose functions include the direct care of patients;
  • Businesses providing food, shelter, social services, and other necessities of life for economically disadvantaged or otherwise needy individuals.

CONSTRUCTION

  • Skilled trades such as electricians and plumbers;
  • Other related construction firms and professionals for essential infrastructure or for emergency repair and safety purposes;
  • Open construction sites, irrespective of the type of building;
  • Architectural services;
  • Engineering services;
  • Land surveying services.

DEFENSE

  • Defense and security-related operations supporting the U.S. Government or a contractor to the U.S. government.

SERVICES NECESSARY TO MAINTAIN THE SAFETY AND ESSENTIAL OPERATIONS OF RESIDENCES OR OTHER ESSENTIAL BUSINESSES

  • Law enforcement;
  • Fire prevention and response;
  • Emergency management and response;
  • Building cleaners or janitors;
  • Local governments.

PET CARE

  • Pet supply stores;
  • Veterinarians;
  • Pet boarding facilities;
  • Animal shelters or animal care or management.

AGRICULTURE

  • Food cultivation, including farming, livestock, and fishing.

AUTOMOBILE AND VEHICLE-RELATED OPERATIONS

  • Gas stations;
  • Auto-supply stores;
  • Auto-repair facilities;
  • New and used automobile dealerships;
    • However, for each of the above, social distancing as advised by the CDC must be practiced.

HARDWARE STORES AND TRADESMEN

  • Hardware stores;
  • Contractors;
  • Appliance repair personnel;
  • Exterminators;
  • Fumigators;
  • Landscaping businesses;
  • Pool care services;
  • Service providers who provide services that are necessary to maintaining the safety, sanitation, and essential operation of residences and other structures.

EDUCATION

  • Private colleges, trade schools, and technical colleges;
    • However, the above are only deemed essential as needed to facilitate online or distance learning;
  • University, college, or technical college residence halls may also remain open to the extent needed to accommodate students who cannot return to their homes.

LOGISTICS

  • Warehouses;
  • Trucking;
  • Consolidators;

SENIOR CARE

  • Home-based care for seniors or adults;
  • Assisted living facilities;
  • Nursing homes;
  • Adult day care centers;
  • Senior residential facilities.

CHILDCARE

  • Home-based care for children;
  • Childcare facilities providing services that enable employees exempted to work as permitted, subject to group size and spacing restrictions.

OTHER OPERATIONS DEEMED ESSENTIAL

  • Businesses providing mailing and shipping services, including post office boxes;
  • Laundromats, dry cleaners, and laundry service providers;
  • Businesses that supply office products needed for people to work from home;
  • Businesses that supply other essential businesses with the support or supplies necessary to operate, and which do not interact with the general public;
  • Businesses operating at any airport, seaport, or other government facility, including parks and government offices;
  • Office space and administrative support necessary to perform exempted essential activities;
  • Businesses providing propane or natural gas;
  • Mortuaries, funeral homes, and cemeteries;
  • Firearm and ammunition supply stores;
  • Businesses providing services to any local, state, or Federal government, including municipalities, pursuant to a contract with such government;
  • Any business that is interacting with customers solely through electronic or telephonic means, and delivering products via mailing, shipping, or delivery services.

What Does This Mean For Employers?

Employers with operations in Florida should review the CISA guidance and Miami-Dade County Emergency Order 07-20, and its amendments, to determine if they are deemed non-essential and must close beginning on April 3, 2020 at 12:01 am. 

Employers should also be prepared to address concerns from older employees and employees with underlying significant health conditions regarding whether or not they must come in to work. Employers should also carefully assess the availability of telework for these employees, as the availability of telework has significant implications for whether they are entitled to paid leave.

We will continue to monitor the rapidly developing COVID-19 situation and provide updates as appropriate.

© 2026 Administrators Advisory Group, Inc. All Rights Reserved