The Institute of Fundraising and the Fundraising Regulator have today published joint guidance on GDPR intended to “fully equip fundraisers” ahead of 25 May 2018.
The guidance, which has been “reviewed and co-badged” by the Information Commissioner’s Office, has been broken down into six four-page reports intended for easy consumption. The “spotlight series” includes an introduction to GDPR, and area specific reports on fundraising, community fundraising, corporate fundraising, legacies and trust fundraising.
The reports also identify “which personal data is likely to be used in each case” and gives general definitions of lawful processing means such as consent and legitimate interest.
Guidance based on 'questions charities have asked'
The IoF said the guidance has been put together based on “the questions that charities have asked and provides clear and practical answers” and also signposts to “more detailed guidance from key sources” including the ICO.
The guidance is "designed specifically for fundraisers and those in smaller organisations" and focuses on "practical application of the law to real life scenarios," according to the IoF.
The guidance is available for free and is supported by “regulators and membership bodies across the UK”, including: the Charity Commission, NCVO, WCVA, Charity Commission for Northern Ireland and the Scottish Independent Fundraising Panel.
Guides to help 'demystify GDPR'
Daniel Fluskey, head of policy and external affairs at the IoF, said: “We are delighted to have been able to work with the Fundraising Regulator and ICO to produce these new resources. It’s essential that fundraisers get GDPR right. We know that fundraisers have had questions over how the law will apply in practice and hope that these new guidance pieces help to demystify GDPR and enable fundraisers to plan their work to give supporters the best experience of fundraising.”
Gerald Oppenheim, head of policy at the Fundraising Regulator, said: “These ‘bite-size’ documents address questions we have received from fundraisers struggling to ensure their methods are GDPR compliant. We hope the new guidance will help fundraisers to feel confident in their practices in the lead up to May.”
Jo Pedder, head of policy and engagement at the ICO, said: “This is a pivotal time for data protection and privacy. The GDPR is a response to an evolving landscape, building on previous legislation and bringing it in line with our 21st century world.
“All organisations are different and we know that fundraisers are keen to get it right. This new joint Fundraising Regulator and Institute of Fundraising guidance, reviewed and co-badged by the ICO, has been designed to help you to understand what it means for you, so you can be transparent, accountable, and give people back control of their data.”