What is GDPR?
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect in the European Union (EU) in May 2018. GDPR applies to all organisations that process personal data of EU citizens, regardless of where the organisation is located. This includes non-profit organisations and charities that conduct fundraising activities and research individuals for fundraising purposes.
Data minimisation and prospect research
One of the key principles of the GDPR is the concept of “data minimisation”, which requires that you only collect and process the minimum amount of personal data necessary to achieve your specific purpose. This principle applies to wealth screening, prospect research and all fundraising activities and organisations should only collect and process personal data that is necessary for their fundraising efforts.
GDPR compliant research
When it comes to fundraising activities, you need to be transparent about how you collect and use personal data. For prospect research, you will generally be relying on legitimate interest. This means informing individuals about the specific purposes for which their personal data will be used i.e., research, and providing them with the option to opt out of data processing is a critical part of your compliance process.
It’s also important to note that you must provide individuals with the right to access and rectify their personal data. This means that individuals have the right to request a copy of the personal data an organisation holds about them and to request that any inaccurate data be corrected. Organisations must also take appropriate measures to protect the personal data they collect and process and to report any data breaches to the relevant authorities within 72 hours. So if you have some research-based information on an individual, keep in mind that they may request a copy of that information at any time. Knowing this may help you keep data minimisation at the heart of your processes.
Also keep in mind that if you have donors or supporters outside of the UK/EU, you will need to comply with any relevant laws in those territories as well as the UK law.
We can help
Adhering to GDPR and data protection guidelines is essential for organisations that wealth screen or research individuals for fundraising purposes.
At Prospecting for Gold, we have over 20 years of experience helping organisations meet their fundraising goals with GDPR-compliant research techniques.
Our team provides research, wealth screening, consultancy, regulatory compliance and training support to charities of all sizes, making fundraising more effective and successful.
Get in touch to learn more about the people who support your cause, get detailed insight into your best prospects and identify new ones, whether they be wealthy individuals, grant makers or institutional funders.