Time To Get Your Charity Ready For GDPR!

Tereza Litsa
Digital Engagement Manager
30 Aug 2017

A lot has changed in the online world in the last 20 years, as we have gone from experimental MIT researchers with dial-up connections to teenager vloggers with millions of fans on smart phones. There is a lot to be proud of in the ‘beyond-profit’ sector as charities have responded to this e-evolution and have taken advantage of technology to improve service delivery and transform communications and fundraising.

‍Meanwhile, legislation has struggled to keep up with rapid changes and protect the privacy of individuals’ personal information, with laws such as the Data Protection Act (DPA 1998) and the Privacy and Electronic Communications Regulations (PECR 2003) now widely considered to be outdated. To improve consumer privacy and protection, the EU has introduced new regulation – the General Data Protection Regulation (GDPR). Essentially, these new laws that succeed the DPA 1998 are designed to bring standardisation across the EU, and ultimately give back control and ownership of personal information to the individual it relates to.

‍In terms of compliance, this should be what all organisations should adhere to now, as it comes into enforcement on 25 May 2018. The GDPR applies to any “Data Processors” or “Data Controllers” within the EEA or those operating outside the EEA that process data on EEA residents.

‍Many of the core components in the GDPR are made up from the DPA 1998. However, there is now more emphasis now to “walk the walk” rather than just “talking the talk”. The GDPR codifies the concept of “accountability” to ensure that Data Privacy Impact Assessments (DPIA) are carried out where there is a risk to the rights and freedoms of the “Natural Person,” or individual. So, if you say you are compliant with the GDPR, you will now have to prove it!

‍Adam Bryan, Director of Partnerships and Innovation at the Institute of Fundraising (IoF) says,

It’s important that charities start preparing for GDPR now. You will need to continue to contact your supporters in a way that is fair and lawful and also right for your organisation. Work will need to be done to make sure you have the right consent statements and understand how the changes in the law may affect you. We know our members are committed to excellent fundraising and giving their donors a positive experience, which will continue after GDPR is implemented.” During June and July of this year, the IoF is running a series of seminars in cities across the UK to help charities to be GDPR ready.

‍Adam Bryan, Director of Partnerships and Innovation at the Institute of Fundraising

‍At Lightful, we have created a 12-part series on GDPR and how you can ensure that you are confident and compliant on 25 May, 2018.

We will be releasing each guide to our community site. Sign up here to make sure you don’t miss out on all of this:

  1. Introduction – what is GDPR and how will it affect me?
  2. Data Governance – who is responsible for your data?
  3. Our reading list
  4. Data Mapping – do you know where your data lives?
  5. Your database + consent
  6. Marketing + PECR – what you need to know
  7. Using third parties, and the rights of the individual
  8. Helpful training for your staff
  9. Breaches – what to do if it happens
  10. LIVE WEBINAR – Q & A with Lightful’s Data Protection Officer, Andrew Cross.
  11. Lightful Helps – how we can help you
  12. Data Protection quiz – what are your risk areas?

Andrew Cross

Latest articles

What International Women’s Day means to Lightful

The Lightful team shares their reflections and hopes this International Women’s Day (IWD).

Anna Wiseman
07 Mar 2023
How to build trust online as a B Corp

At Lightful, we believe that trust is a key foundation for our economy and society. Building Trust is at the heart of what we do at Lightful. Our three Co-Founders, Carlos Miranda, Vinay Nair, and Johnny Murnane, all arrived at this conclusion through quite different journeys. They had various backgrounds in impact investing, tech and consulting with the charity sector. They would work with incredible nonprofits, but when they engaged with them online, their websites and social media presence didn’t do justice to the power and impact of their organisation. If you visit a website with out of date information, or broken links etc, you are not filled with confidence that the organisation is trustworthy. You wouldn’t buy from a retailer with a website like that - so why would you donate money or promote the cause? It makes it feel a bit unreliable, and so lending your support or funds could be risky. This creates a real problem for nonprofits, limiting their reach and ability to raise unrestricted funds from everyday donors and others. They set up Lightful to tackle this key problem of building trust.

Anna Wiseman
03 Mar 2023

Related posts

Pride month - Learning more about akt

It's Pride Month 🏳️‍🌈 and we're celebrating at #TeamLightful by talking to wonderful people and organisations who work with Pride throughout the year.

Tereza Litsa
Digital Engagement Manager
14 Jun 2021
BRIDGE takeaways – Internal and external communications during coronavirus

Last week we’ve hosted the first digital drop-in session for our new BRIDGE cohort. Participating charities all over the world joined us to discuss their internal and external communications during coronavirus and the challenges they are facing.

Tereza Litsa
Digital Engagement Manager
11 Jun 2020

See other ways Lightful can help

What we do
Who we help

Contact us

Want to learn more?

Email Pumulo and start a conversation

Pumulo Banda
Relationship Manager

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.