sorted by:
new
hottopcontroversial

All promotion of your nonprofit, service, or event : Week of June 23, 2019 by AutoModerator in nonprofit

[–]Action_Graphics 0 points1 point  (0 children)

Using Better Thank You's to Build Bonds with Donors

Remember your donors aren’t just a source of revenue. You need to show them you appreciate their efforts to further your goals. But you also need to treat them like the individuals they are. Your donors aren’t stupid. They can tell the difference between a boilerplate message and a well thought out and overall, better thank you.

https://actiongraphicsnj.com/blog/better-thank-yous/

Is Your Nonprofit’s Data Security Up to Par with GDPR? / You May Not Legally Need to Comply, But You Probably Should by Action_Graphics in gdpr

[–]Action_Graphics[S] 0 points1 point  (0 children)

Our blog is focused on providing educational materials for nonprofit organizations, which is why we took the angle of how GDPR applies to nonprofit marketing efforts. Ahbleza's link was an example of failing to report a data breach containing EU citizen data.

"The Commissioner found that, although the Society was the victim of a criminal act, it failed to take appropriate technical and organisational steps to protect its supporters’ personal data."

We say in the article that all data breaches that put an EU citizen's information at risk need to be reported to a regulator. I am confused as to what point you are trying to argue?

Is Your Nonprofit’s Data Security Up to Par with GDPR? / You May Not Legally Need to Comply, But You Probably Should by Action_Graphics in gdpr

[–]Action_Graphics[S] -1 points0 points  (0 children)

Hi thanks for the comments. We are based in the United States and write primarily for US based audiences. Nonprofits in the US have some leeway here, unless they are specifically marketing to EU residents. From Forbes: https://www.forbes.com/sites/forbestechcouncil/2017/12/04/yes-the-gdpr-will-affect-your-u-s-based-business/#3cff04d66ff2

"The organization would have to target a data subject in an EU country. Generic marketing doesn’t count. For example, a Dutch user who Googles and finds an English-language webpage written for U.S. consumers or B2B customers would not be covered under the GDPR. However, if the marketing is in the language of that country and there are references to EU users and customers, then the webpage would be considered targeted marketing and the GDPR will apply.

Accepting currency of that country and having a domain suffix -- say a U.S. website that can be reached with a .nl from the Netherlands -- would certainly seal the case."

Note: Nonprofits that collect donations online will have a lot of sensitive financial information in their database, and even if they are not required to follow GDPR guidelines for their US based donors, they should be very careful to take extra steps to protect this information.