Data Protection & GDPR for Charities
Data protection is an area of increasing concern for our charity clients. Personal data is fundamental to the work of many charities. As well as being critical to fundraising campaigns, it is essential for communications with service users, members and other stakeholders.
The new GDPR will require every charity to take action of some sort, but in many ways it is not a new issue and a common-sense approach can be applied. Fundamentally, every individual whose personal data you hold must understand what you are using it for, and your use of the data must be reasonable. The GDPR is not overly prescriptive and if you are involved in running a charity you can, in the light of the GDPR, the ICO’s guidance and your charity’s circumstances, make your own decisions about what data you collect and why, who you share it with and how you protect it.
There is a lot to consider, and GDPR will bring compliance challenges on top of the already increasingly tough stance on data protection being taken by the ICO, the Charity Commission and the Fundraising Regulator. We can support you by examining how the GDPR will affect your charity and help you to gear up for the GDPR in relation to any potential areas of vulnerability.