GDPR guidance for charities
The Fundraising Regulator and Institute of Fundraising have got together and produced a briefing on GDPR which can be found on their website.
Following the implementation of GDPR in May, hopefully things have settled down and all charities should be monitoring for any breaches that need reporting and updating the relevant registers to ensure compliance.
Between November and December 2016, The British and Foreign Bible Society were the victims of a cyber-attack which led to the exposure of personal information on 417,000 of the society’s supporters. Following an investigation the Information Commissioner’s Office (ICO) recently fined the Society £100,000 for failing to take “appropriate technical and organisational steps” to protect its supporters’ personal data.
We recommend you look at recent fines issued by the ICO to see what you as a charity can learn to make sure you are processing data in the correct way.
The ICO has now set up a dedicated page for Charities and a help line. To find out more or to read through their FAQ’s visit the ICO website or call 0303 123 1113.