General Data Protection Regulation – how will it affect NGOs

By February 19, 2018Grant management

We took it into our own hands to ensure that you understand how GDPR will be affecting your NGO and help you become aware of how the changes may affect your organisation.

Are you aware of how GDPR will affect your organisation? Let this article be your starting guide to understanding how exactly it will affect you. If you require more understanding on this topic, we also have a webinar coming up, completely FREE of charge to help you better understand what GDPR is and how it will affect your organisation.


What exactly is GDPR?

According to the good old Wikipedia, The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU).


What does this mean for your NGO?

The General Data Protection Regulation (GDPR) – this is designed to enable individuals to better control their personal data.

Keep in mind that all the changes apply across the board for NGOs whether it be for campaigning, marketing, managing, volunteers, and recording information about service users to anything that involves processing an individual’s data.

  • Be aware of everything going on within your organisation in order to identify where to apply the changes. As mentioned above, this change does apply across your organisation.
  • Review with how your organisation request for consent, with this, you will need to explain clearly why you collect that specific data and how you intend to use the data. For example, if you intend to share this with a 3rd party, you will need to make this clear.
  • Opt-in versus Opt out, although organisations don’t need consent for all forms of direct marketing, charities can send direct marketing by posts or make calls to numbers not registered with the telephone preference service, provided they can satisfy the legitimate interest condition.
  • Provide user access to personal data is one other big change within the GDPR and this means that people can make a subject access request at any time to check the data you hold and what you do with it.
  • Manage the data you already hold as GDPR is also bringing in a ‘right to be forgotten’ where people can request the removal of personal data, either if they no longer want the charity to have it or if it is no longer used for the purpose it was collected.
  • Watch out for data breaches, as you can be fined by the Information Commissioner’s Office (ICO) due to the changes within GDPR as the breaches of data protection has been increased.
  • Be prepared, this is just an evolution, not a revolution – it is only put in place so that data can be used fairly and lawfully. Take this as an opportunity to put in place a new strategy and how you can use data in the future. Join our webinar to prepare your organisation for this evolution!

Curious to find out more about The General Data Protection Regulation (GDPR)?

Sign up for our webinar, it is FREE of charge!

Source: DataIQ and The Guardian


Making impactful projects easier since 2011.
Optimy is the most customer-centric software
for sponsorship and grant management.
Collect, select and manage all your projects
in one single tool.