Is your data protected and secure?
There has been an increase in the number of high profile news stories of not for profits who have experienced breaches in data protection from cyber attacks and hackers.
A number of these cases have been investigated and organisations subsequently fined by the Information Commissioner’s Office (ICO) for sums of more than £100,000, for failing to take appropriate technical and organisational steps to protect their supporters’ personal data.
Making sure your supporters are fully protected and you have a high level of information security to protect and defend your data has never been more important.
As technology changes and evolves, not for profits should try to keep pace and ensure their own data and systems are protected. It’s also vital that charities using payments providers and third-party suppliers review and check their information security, to make sure appropriate and comprehensive data safeguarding measures are in place.
And while a data breach can incur a hefty fine, it can have a far more damaging and long-lasting impact on organisational credibility, supporter trust and the ability to secure future income.
At Rapidata, we know that to protect your income and reputation, supporters must feel confident that their data is in safe hands.
That’s why we have significantly invested in our information security and data protection. We have gained certifications in ISO 27001 in Information Management, ISO 9001:2015 Quality Management and ISO 22301 Business Continuity, to safeguard and protect our clients’ data. We also carry out independent penetration testing (PEN) for our online applications and in the lead up to GDPR, had an external audit of our processes to ensure we adhered to all new data protection requirements – which we do!
Take a look at our checklist to help you when reviewing the security of your payment providers and suppliers:
✔ Bacs Approved Bureau
✔ ‘Excellent’ Bacs inspection audit rating across ALL categories
✔ ISO 27001:2013 Certified in Information Management
✔ ISO 9001 Certified in Quality Management
✔ ISO 22301 Certified in Business Continuity
✔ Registered with the Information Commission’s Office (ICO)
✔ Externally audited for GDPR compliance
✔ Site visit recommended to give peace of mind of setup and infrastructure
✔ UK and EU based servers
✔ UK or EU development of payment systems
✔ Bacs Affiliate
Note: The above is a checklist that may not be suitable for all organisations and is for guidance only.