The General Data Protection Regulation (GDPR) comes into effect on Friday 25 May 2018, and is an extension of the current Data Protection legislation.
It will affect how organisations hold and process personal data (this can be things like contact details, or personal information including bank account or credit card information). There is plenty of information, aimed at the charitable sector, to help your organisation comply with the GDPR. Here are a few of the resources:
- “How to prepare for GDPR and data protection reform” is a 12-point plan from NCVO’s Knowhow Non Profit site is available here.
- “Five steps to good GDPR compliance” from Charity Digital News in partnership with Access provides guidance with a particular focus on how CRM systems need to comply. This is available here.
- “GDPR: The essentials for fundraising organisations” is guidance from the Institute of Fundraising that supports organisations who receive donations directly from individuals. This is available here.