The Employment Allowance benefits eligible employers by reducing their National Insurance liability. The current allowance is £5,000. An employer can claim less than the maximum if this covers their total Class 1 NIC bill.

The allowance is only available to employers that have employer NIC liabilities of under £100,000 in the previous tax year.

Connected employers or those with multiple PAYE schemes will have their contributions aggregated to assess eligibility for the allowance. The Employment Allowance can be used against employer Class 1 NICs liability. It cannot be used against Class 1A or Class 1B NICs liabilities. The allowance can only be claimed once across all employer’s PAYE schemes or connected companies. De minimis state aid rules may also apply in restricting the use of the allowance.

Employment Allowance claims need to be re-submitted each tax year. There are currently a number of excluded categories where employers cannot claim the employment allowance. This includes limited companies with a single director and no other employees as well as employees whose earnings are within IR35 ‘off-payroll working rules’.

The Information Commissioner’s Office has a simple guide that explains what you need to do in the 72 hours following a data breach.

The seven step approach advocated is set out below:

It’s understandable if you’re concerned about what happens next. But we’re here to help you understand what happened and to prevent it happening again.

By law, you've got to report a personal data breach to the ICO without undue delay (if it meets the threshold for reporting) and within 72 hours.

Pull the facts together as quickly as possible.

Your priority is to establish what has happened to the personal data affected. If you can recover the data, do so immediately. Also, you should do whatever you can to protect those who will be most impacted.

You should now assess what you feel the risk of harm is to those affected, whether that’s your customers, members or service users.

If possible, you should give specific and clear advice to people on the steps they can take to protect themselves, and what you’re willing to do to help them. If you don’t think there’s a high risk to the people involved, you don’t have to let them know about the incident.

If the breach is reportable, you can report it online.

The ICO have a help line you could call, 0303 123 1113, or view online advice at https://ico.org.uk/for-organisations/advice-for-small-organisations/72-hours-how-to-respond-to-a-personal-data-breach/.