SlideShare une entreprise Scribd logo

Alejandra Brown: Introduction to privacy and overview of privacy and data residency rules that apply to BC nonprofits.

Télécharger en tant que PPTX, PDF
NetSquared Vancouver
NetSquared Vancouver

You have a lot of data! How can you keep your member and client information secure? What legal rules does you nonprofit need to follow when it comes to data hosting? What tools and apps won't get your in trouble? We have four experts who will answer all your questions. * Alejandra Brown: Introduction to privacy and overview of privacy and data residency rules that apply to BC nonprofits. * Mack Hardy: Five practical things you can do to secure your online self. Policies, 2FA, password managers, and more. * Damien Norris: A suite of curated tools that organizations can use to locally/securely replace the US owned cloud services in their lives. * Kris Constable: IDVPN: a VPN for complying with justistional regulations.

Données & analyses
1  sur  17
Privacy Management Kirke Management Consulting 2019-10-21© 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
Privacy and Data Breaches © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
Something in Common? © 2019 Kirke Management Consulting. All Rights Reserved - Private and Confidential • Large and well-known organizations • Strong reputations… … until they didn’t • Breaches could have been avoided
2018 Breach Examples © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential Jul - Oct2019 Jan - JunJul - Dec2018 Jan - Jun Marriott Starwoods 500MM records 2020 Ontario Cannabis Store notifies of a breach through Canada Post 4.5K records Air Canada through mobile app 1.7MM records BMO and Simplii 90K records Under Armour MyFitnessPal 150MM records Facebook – Cambridge Analytica 87MM records Facebook exposed sensitive data 29MM records Facebook exposed sensitive data 100MM+ records Desjardin’s employee exposes data of 2.9MM individuals Capital One records exposed in US and Canada
NFP Privacy Breaches https://www.vancourier.com/alleged-hiv-aids-privacy-breach-could-become-class-action-suit-1.23811118 https://www.oipc.ab.ca/media/993856/P2019_ND_014_008114.pdf © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential Emergency backpack with first aid supplies and children’s information was left at a playground King Edward Child Care Society Edmonton AB - Sep 2017 Human error caused donation history to display on their new online donation system The information breached included name, email address and donation amount JDRF – Mar 2018 • Excel file with employee info sent through email, unprotected BC HIV/AIDS NFP privacy breach could become a class action lawsuit - 2019 • Tax forms were made accessible through search engines Legal Aid Society of Orange County – Jan 2017
© 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
It is a Hyper-connected World © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
Global Privacy Regulations © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential Canada • Federal • PIPEDA (private sector) • CASL – Anti-Spam Legislation • Provincial (BC, AB, QC) • PIPA (private sector) • FIPPA (public sector) USA • HIPAA • CCPA • COPPA • CalOPPA EU • GDPR (2018) • E-Privacy Regulation (TBD)
Privacy vs Security • Privacy focuses on governance around use, disclosure and retention of Personal Information • Security is concerned with measures to restrict access and protect Personal Information during collection, storage, and transmission © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential
Importance of Privacy for NFP © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential NFPs interact with different stakeholders - Donors/ funding contributors - Volunteers - Employees - Clients NFPs may require managing very sensitive information: - Examples – immigration status, health status, financial position and contributions When data is managed there is always data loss risk - Losing data may prove damaging to the affected individual MOST IMPORTANTLY - NFPs reputation and brand identity are paramount to main objective (fund raising) - Public shown to be less forgiving of NFPs when it comes to trust
© 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential Human Error • Collection of donations and credit card info • Storage, transfer and disclosure of employee, donor, volunteer or client info • Storage of PI on digital assets (e.g. laptop, smartphones, USB sticks) or any other unsecured environment • Disclosure of PI to third parties and/or too broadly within the organization • Lack of awareness of privacy obligations, what constitutes a breach & what to do if one takes place Common Areas of Vulnerability
Effective Privacy Program  Understand regulations that apply to organization  Have a designated CPO  Have clear and simple policies around Privacy, including a Privacy Notice on the official website  Keep Privacy principles in mind for new campaigns, processes or initiatives – especially for Digital Marketing  Ensure 3rd party contracts have clear Privacy provisions  Educate employees and relevant stakeholders on the their obligations – provide regular training  Ensure that questions, gaps, complaints are easily funneled to the CPO  Have an Incident Management Protocol in place  Review Privacy practices periodically  Ensure cybersecurity coverage is included as part of insurance  Ensure PI is identified and protected – include IT security measures © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential
Privacy Notice and Principles © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential Privacy Notice Identify what PI you collect, use and share Describe what protection you us on PI Share where you store PI and who has access to it Provide a contact for anyone with questions or concerns Privacy Principles Request consent where necessary Limit use of PI Share only on a "need-to-know" basis Create awareness in the organization – keep privacy top of mind Be accountable, respond quickly to issues and take responsibility
Where Do We Go From Here? Determine what is your level of Privacy maturity Assess your risk and current gaps Adopt “quick-wins” Appoint a CPO Create or review privacy policy Train employees, volunteers on privacy practices and their obligations Identify IT security areas of risk Include appropriate disclaimers in your e-Newsletter sign up form Establish an incident response procedure Bring in experts when required © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential
Resources • Privacy tools - https://kirke-consulting.com/tools/ • Privacy checklist for NFPs - http://www.charitycentral.ca/wp- content/uploads/privacy-en.pdf • Privacy concerns for NFPs - https://www.techsoupcanada.ca/en/community/blog/privacy-and- data-concerns-for-nonprofits © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
Thanks! Ale Brown – abrown@kirke-consulting.com © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
About Kirke © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential Strategy. Transformation. Results. We are a strategy consulting firm that enables business growth and minimizes corporate risk. We believe that safeguarding personal information has become paramount in a rapidly expanding digital world, therefore we help organizations gain relevant data insights to build tighter relationships with their customers, all within a strong privacy management framework. This results in increased brand recognition, improved reputation in the industry and trust within their customer-base. http://www.kirke-consulting.com/ contact@kirke-consulting.com

Recommandé

TechSoup Connect Western Canada: Data To Action: Making Your Data Visible and...
TechSoup Connect Western Canada: Data To Action: Making Your Data Visible and...TechSoup Connect Western Canada: Data To Action: Making Your Data Visible and...
TechSoup Connect Western Canada: Data To Action: Making Your Data Visible and...
NetSquared Vancouver
 
How to Make Your Donors’ Dollars Go Even Further
How to Make Your Donors’ Dollars Go Even FurtherHow to Make Your Donors’ Dollars Go Even Further
How to Make Your Donors’ Dollars Go Even Further
NetSquared Vancouver
 
Show, Don’t Tell: How Your Data Can Reveal Your Impact Story
Show, Don’t Tell: How Your Data Can Reveal Your Impact StoryShow, Don’t Tell: How Your Data Can Reveal Your Impact Story
Show, Don’t Tell: How Your Data Can Reveal Your Impact Story
NetSquared Vancouver
 
Most Digital Transformations Fail – Make Yours Succeed - with Kevin Christop...
Most Digital Transformations Fail – Make Yours Succeed - with Kevin Christop...Most Digital Transformations Fail – Make Yours Succeed - with Kevin Christop...
Most Digital Transformations Fail – Make Yours Succeed - with Kevin Christop...
NetSquared Vancouver
 
What is a New Member Worth? A Guide to Acquisition Costs + Member Lifetime Value
What is a New Member Worth? A Guide to Acquisition Costs + Member Lifetime ValueWhat is a New Member Worth? A Guide to Acquisition Costs + Member Lifetime Value
What is a New Member Worth? A Guide to Acquisition Costs + Member Lifetime Value
NetSquared Vancouver
 
Digital Marketing Diagnostics Part 1
Digital Marketing Diagnostics Part 1Digital Marketing Diagnostics Part 1
Digital Marketing Diagnostics Part 1
NetSquared Vancouver
 
Digital Marketing Diagnostics pt. 2.pdf
Digital Marketing Diagnostics pt. 2.pdfDigital Marketing Diagnostics pt. 2.pdf
Digital Marketing Diagnostics pt. 2.pdf
NetSquared Vancouver
 
Improve Your Event Marketing Strategies by Leveraging What Already Works
Improve Your Event Marketing Strategies by Leveraging What Already WorksImprove Your Event Marketing Strategies by Leveraging What Already Works
Improve Your Event Marketing Strategies by Leveraging What Already Works
NetSquared Vancouver
 

Recommandé

TechSoup Connect Western Canada: Data To Action: Making Your Data Visible and...
TechSoup Connect Western Canada: Data To Action: Making Your Data Visible and...TechSoup Connect Western Canada: Data To Action: Making Your Data Visible and...
TechSoup Connect Western Canada: Data To Action: Making Your Data Visible and...
NetSquared Vancouver
 
How to Make Your Donors’ Dollars Go Even Further
How to Make Your Donors’ Dollars Go Even FurtherHow to Make Your Donors’ Dollars Go Even Further
How to Make Your Donors’ Dollars Go Even Further
NetSquared Vancouver
 
Show, Don’t Tell: How Your Data Can Reveal Your Impact Story
Show, Don’t Tell: How Your Data Can Reveal Your Impact StoryShow, Don’t Tell: How Your Data Can Reveal Your Impact Story
Show, Don’t Tell: How Your Data Can Reveal Your Impact Story
NetSquared Vancouver
 
Most Digital Transformations Fail – Make Yours Succeed - with Kevin Christop...
Most Digital Transformations Fail – Make Yours Succeed - with Kevin Christop...Most Digital Transformations Fail – Make Yours Succeed - with Kevin Christop...
Most Digital Transformations Fail – Make Yours Succeed - with Kevin Christop...
NetSquared Vancouver
 
What is a New Member Worth? A Guide to Acquisition Costs + Member Lifetime Value
What is a New Member Worth? A Guide to Acquisition Costs + Member Lifetime ValueWhat is a New Member Worth? A Guide to Acquisition Costs + Member Lifetime Value
What is a New Member Worth? A Guide to Acquisition Costs + Member Lifetime Value
NetSquared Vancouver
 
Digital Marketing Diagnostics Part 1
Digital Marketing Diagnostics Part 1Digital Marketing Diagnostics Part 1
Digital Marketing Diagnostics Part 1
NetSquared Vancouver
 
Digital Marketing Diagnostics pt. 2.pdf
Digital Marketing Diagnostics pt. 2.pdfDigital Marketing Diagnostics pt. 2.pdf
Digital Marketing Diagnostics pt. 2.pdf
NetSquared Vancouver
 
Improve Your Event Marketing Strategies by Leveraging What Already Works
Improve Your Event Marketing Strategies by Leveraging What Already WorksImprove Your Event Marketing Strategies by Leveraging What Already Works
Improve Your Event Marketing Strategies by Leveraging What Already Works
NetSquared Vancouver
 
Jai Djwa — User Experience FTW
Jai Djwa — User Experience FTWJai Djwa — User Experience FTW
Jai Djwa — User Experience FTW
NetSquared Vancouver
 
Sara Hoshooley — Building donor relationships in 2022
Sara Hoshooley — Building donor relationships in 2022Sara Hoshooley — Building donor relationships in 2022
Sara Hoshooley — Building donor relationships in 2022
NetSquared Vancouver
 
Shelina Dilgir — Learning the latest trends in individual giving and donor st...
Shelina Dilgir — Learning the latest trends in individual giving and donor st...Shelina Dilgir — Learning the latest trends in individual giving and donor st...
Shelina Dilgir — Learning the latest trends in individual giving and donor st...
NetSquared Vancouver
 
Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...
Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...
Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...
NetSquared Vancouver
 
Meaningful Work: Building Resilience and Capacity through Skilled Volunteering
Meaningful Work: Building Resilience and Capacity through Skilled VolunteeringMeaningful Work: Building Resilience and Capacity through Skilled Volunteering
Meaningful Work: Building Resilience and Capacity through Skilled Volunteering
NetSquared Vancouver
 
Demo Event: Four Innovative Apps for Food Pantries and Food Banks
Demo Event: Four Innovative Apps for Food Pantries and Food BanksDemo Event: Four Innovative Apps for Food Pantries and Food Banks
Demo Event: Four Innovative Apps for Food Pantries and Food Banks
NetSquared Vancouver
 
Motivating Group Leaders
Motivating Group LeadersMotivating Group Leaders
Motivating Group Leaders
NetSquared Vancouver
 
Measuring the Impact of Your Nonprofit
Measuring the Impact of Your NonprofitMeasuring the Impact of Your Nonprofit
Measuring the Impact of Your Nonprofit
NetSquared Vancouver
 
Measuring the Impact of Your Nonprofit
Measuring the Impact of Your NonprofitMeasuring the Impact of Your Nonprofit
Measuring the Impact of Your Nonprofit
NetSquared Vancouver
 
How Nonprofits Can Create 10x the Content Without More Work
How Nonprofits Can Create 10x the Content Without More WorkHow Nonprofits Can Create 10x the Content Without More Work
How Nonprofits Can Create 10x the Content Without More Work
NetSquared Vancouver
 
Leah Chang — E-tapestry lingo bingo worksheet
Leah Chang — E-tapestry lingo bingo worksheetLeah Chang — E-tapestry lingo bingo worksheet
Leah Chang — E-tapestry lingo bingo worksheet
NetSquared Vancouver
 
Leah Chang — CRM naming poll sample
Leah Chang — CRM naming poll sampleLeah Chang — CRM naming poll sample
Leah Chang — CRM naming poll sample
NetSquared Vancouver
 
Leah Chang — CRM roles and responsibilities worksheet
Leah Chang — CRM roles and responsibilities worksheetLeah Chang — CRM roles and responsibilities worksheet
Leah Chang — CRM roles and responsibilities worksheet
NetSquared Vancouver
 
Leah Chang — CRM video worksheet
Leah Chang — CRM video worksheetLeah Chang — CRM video worksheet
Leah Chang — CRM video worksheet
NetSquared Vancouver
 
Leah Chang — What is a CRM training slides
Leah Chang — What is a CRM training slidesLeah Chang — What is a CRM training slides
Leah Chang — What is a CRM training slides
NetSquared Vancouver
 
#VanGives — #GivingTuesday for Vancouver Nonprofits
#VanGives — #GivingTuesday for Vancouver Nonprofits#VanGives — #GivingTuesday for Vancouver Nonprofits
#VanGives — #GivingTuesday for Vancouver Nonprofits
NetSquared Vancouver
 
Mack Hardy: Five practical things you can do to secure your online self. Poli...
Mack Hardy: Five practical things you can do to secure your online self. Poli...Mack Hardy: Five practical things you can do to secure your online self. Poli...
Mack Hardy: Five practical things you can do to secure your online self. Poli...
NetSquared Vancouver
 
Damien Norris: A suite of curated tools that organizations can use to locally...
Damien Norris: A suite of curated tools that organizations can use to locally...Damien Norris: A suite of curated tools that organizations can use to locally...
Damien Norris: A suite of curated tools that organizations can use to locally...
NetSquared Vancouver
 
Gordon Casey of Brave.coop
Gordon Casey of Brave.coopGordon Casey of Brave.coop
Gordon Casey of Brave.coop
NetSquared Vancouver
 
Learning Management Systems for Nonprofits – Net2van July 9 2019
Learning Management Systems for Nonprofits – Net2van July 9 2019Learning Management Systems for Nonprofits – Net2van July 9 2019
Learning Management Systems for Nonprofits – Net2van July 9 2019
NetSquared Vancouver
 
Delhi 99530 vip 56974 Genuine Escort Service Call Girls in Kishangarh
Delhi 99530 vip 56974 Genuine Escort Service Call Girls in KishangarhDelhi 99530 vip 56974 Genuine Escort Service Call Girls in Kishangarh
Delhi 99530 vip 56974 Genuine Escort Service Call Girls in Kishangarh
9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
BigBuy dropshipping via API with DroFx.pptx
BigBuy dropshipping via API with DroFx.pptxBigBuy dropshipping via API with DroFx.pptx
BigBuy dropshipping via API with DroFx.pptx
olyaivanovalion
 

Contenu connexe

Plus de NetSquared Vancouver

Jai Djwa — User Experience FTW
Jai Djwa — User Experience FTWJai Djwa — User Experience FTW
Jai Djwa — User Experience FTW
NetSquared Vancouver
 
Sara Hoshooley — Building donor relationships in 2022
Sara Hoshooley — Building donor relationships in 2022Sara Hoshooley — Building donor relationships in 2022
Sara Hoshooley — Building donor relationships in 2022
NetSquared Vancouver
 
Shelina Dilgir — Learning the latest trends in individual giving and donor st...
Shelina Dilgir — Learning the latest trends in individual giving and donor st...Shelina Dilgir — Learning the latest trends in individual giving and donor st...
Shelina Dilgir — Learning the latest trends in individual giving and donor st...
NetSquared Vancouver
 
Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...
Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...
Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...
NetSquared Vancouver
 
Demo Event: Four Innovative Apps for Food Pantries and Food Banks
Demo Event: Four Innovative Apps for Food Pantries and Food BanksDemo Event: Four Innovative Apps for Food Pantries and Food Banks
Demo Event: Four Innovative Apps for Food Pantries and Food Banks
NetSquared Vancouver
 
Measuring the Impact of Your Nonprofit
Measuring the Impact of Your NonprofitMeasuring the Impact of Your Nonprofit
Measuring the Impact of Your Nonprofit
NetSquared Vancouver
 
Measuring the Impact of Your Nonprofit
Measuring the Impact of Your NonprofitMeasuring the Impact of Your Nonprofit
Measuring the Impact of Your Nonprofit
NetSquared Vancouver
 
How Nonprofits Can Create 10x the Content Without More Work
How Nonprofits Can Create 10x the Content Without More WorkHow Nonprofits Can Create 10x the Content Without More Work
How Nonprofits Can Create 10x the Content Without More Work
NetSquared Vancouver
 
Mack Hardy: Five practical things you can do to secure your online self. Poli...
Mack Hardy: Five practical things you can do to secure your online self. Poli...Mack Hardy: Five practical things you can do to secure your online self. Poli...
Mack Hardy: Five practical things you can do to secure your online self. Poli...
NetSquared Vancouver
 
Damien Norris: A suite of curated tools that organizations can use to locally...
Damien Norris: A suite of curated tools that organizations can use to locally...Damien Norris: A suite of curated tools that organizations can use to locally...
Damien Norris: A suite of curated tools that organizations can use to locally...
NetSquared Vancouver
 
Gordon Casey of Brave.coop
Gordon Casey of Brave.coopGordon Casey of Brave.coop
Gordon Casey of Brave.coop
NetSquared Vancouver
 
Learning Management Systems for Nonprofits – Net2van July 9 2019
Learning Management Systems for Nonprofits – Net2van July 9 2019Learning Management Systems for Nonprofits – Net2van July 9 2019
Learning Management Systems for Nonprofits – Net2van July 9 2019
NetSquared Vancouver
 

Plus de NetSquared Vancouver (20)

Jai Djwa — User Experience FTW
Jai Djwa — User Experience FTWJai Djwa — User Experience FTW
Jai Djwa — User Experience FTW
 
Sara Hoshooley — Building donor relationships in 2022
Sara Hoshooley — Building donor relationships in 2022Sara Hoshooley — Building donor relationships in 2022
Sara Hoshooley — Building donor relationships in 2022
 
Shelina Dilgir — Learning the latest trends in individual giving and donor st...
Shelina Dilgir — Learning the latest trends in individual giving and donor st...Shelina Dilgir — Learning the latest trends in individual giving and donor st...
Shelina Dilgir — Learning the latest trends in individual giving and donor st...
 
Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...
Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...
Kevin Christopher-George - Quantifying Your Desired Outcomes from Investments...
 
Meaningful Work: Building Resilience and Capacity through Skilled Volunteering
Meaningful Work: Building Resilience and Capacity through Skilled VolunteeringMeaningful Work: Building Resilience and Capacity through Skilled Volunteering
Meaningful Work: Building Resilience and Capacity through Skilled Volunteering
 
Demo Event: Four Innovative Apps for Food Pantries and Food Banks
Demo Event: Four Innovative Apps for Food Pantries and Food BanksDemo Event: Four Innovative Apps for Food Pantries and Food Banks
Demo Event: Four Innovative Apps for Food Pantries and Food Banks
 
Motivating Group Leaders
Motivating Group LeadersMotivating Group Leaders
Motivating Group Leaders
 
Measuring the Impact of Your Nonprofit
Measuring the Impact of Your NonprofitMeasuring the Impact of Your Nonprofit
Measuring the Impact of Your Nonprofit
 
Measuring the Impact of Your Nonprofit
Measuring the Impact of Your NonprofitMeasuring the Impact of Your Nonprofit
Measuring the Impact of Your Nonprofit
 
How Nonprofits Can Create 10x the Content Without More Work
How Nonprofits Can Create 10x the Content Without More WorkHow Nonprofits Can Create 10x the Content Without More Work
How Nonprofits Can Create 10x the Content Without More Work
 
Leah Chang — E-tapestry lingo bingo worksheet
Leah Chang — E-tapestry lingo bingo worksheetLeah Chang — E-tapestry lingo bingo worksheet
Leah Chang — E-tapestry lingo bingo worksheet
 
Leah Chang — CRM naming poll sample
Leah Chang — CRM naming poll sampleLeah Chang — CRM naming poll sample
Leah Chang — CRM naming poll sample
 
Leah Chang — CRM roles and responsibilities worksheet
Leah Chang — CRM roles and responsibilities worksheetLeah Chang — CRM roles and responsibilities worksheet
Leah Chang — CRM roles and responsibilities worksheet
 
Leah Chang — CRM video worksheet
Leah Chang — CRM video worksheetLeah Chang — CRM video worksheet
Leah Chang — CRM video worksheet
 
Leah Chang — What is a CRM training slides
Leah Chang — What is a CRM training slidesLeah Chang — What is a CRM training slides
Leah Chang — What is a CRM training slides
 
#VanGives — #GivingTuesday for Vancouver Nonprofits
#VanGives — #GivingTuesday for Vancouver Nonprofits#VanGives — #GivingTuesday for Vancouver Nonprofits
#VanGives — #GivingTuesday for Vancouver Nonprofits
 
Mack Hardy: Five practical things you can do to secure your online self. Poli...
Mack Hardy: Five practical things you can do to secure your online self. Poli...Mack Hardy: Five practical things you can do to secure your online self. Poli...
Mack Hardy: Five practical things you can do to secure your online self. Poli...
 
Damien Norris: A suite of curated tools that organizations can use to locally...
Damien Norris: A suite of curated tools that organizations can use to locally...Damien Norris: A suite of curated tools that organizations can use to locally...
Damien Norris: A suite of curated tools that organizations can use to locally...
 
Gordon Casey of Brave.coop
Gordon Casey of Brave.coopGordon Casey of Brave.coop
Gordon Casey of Brave.coop
 
Learning Management Systems for Nonprofits – Net2van July 9 2019
Learning Management Systems for Nonprofits – Net2van July 9 2019Learning Management Systems for Nonprofits – Net2van July 9 2019
Learning Management Systems for Nonprofits – Net2van July 9 2019
 

Dernier

Delhi 99530 vip 56974 Genuine Escort Service Call Girls in Kishangarh
Delhi 99530 vip 56974 Genuine Escort Service Call Girls in KishangarhDelhi 99530 vip 56974 Genuine Escort Service Call Girls in Kishangarh
Delhi 99530 vip 56974 Genuine Escort Service Call Girls in Kishangarh
9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
Log Analysis using OSSEC sasoasasasas.pptx
Log Analysis using OSSEC sasoasasasas.pptxLog Analysis using OSSEC sasoasasasas.pptx
Log Analysis using OSSEC sasoasasasas.pptx
JohnnyPlasten
 
VIP Model Call Girls Hinjewadi ( Pune ) Call ON 8005736733 Starting From 5K t...
VIP Model Call Girls Hinjewadi ( Pune ) Call ON 8005736733 Starting From 5K t...VIP Model Call Girls Hinjewadi ( Pune ) Call ON 8005736733 Starting From 5K t...
VIP Model Call Girls Hinjewadi ( Pune ) Call ON 8005736733 Starting From 5K t...
SUHANI PANDEY
 
Vip Model Call Girls (Delhi) Karol Bagh 9711199171✔️Body to body massage wit...
Vip Model Call Girls (Delhi) Karol Bagh 9711199171✔️Body to body massage wit...Vip Model Call Girls (Delhi) Karol Bagh 9711199171✔️Body to body massage wit...
Vip Model Call Girls (Delhi) Karol Bagh 9711199171✔️Body to body massage wit...
shivangimorya083
 
FESE Capital Markets Fact Sheet 2024 Q1.pdf
FESE Capital Markets Fact Sheet 2024 Q1.pdfFESE Capital Markets Fact Sheet 2024 Q1.pdf
FESE Capital Markets Fact Sheet 2024 Q1.pdf
MarinCaroMartnezBerg
 
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
amitlee9823
 
Call Girls Indiranagar Just Call 👗 7737669865 👗 Top Class Call Girl Service B...
Call Girls Indiranagar Just Call 👗 7737669865 👗 Top Class Call Girl Service B...Call Girls Indiranagar Just Call 👗 7737669865 👗 Top Class Call Girl Service B...
Call Girls Indiranagar Just Call 👗 7737669865 👗 Top Class Call Girl Service B...
amitlee9823
 
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Delhi Call girls
 
Delhi Call Girls Punjabi Bagh 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Punjabi Bagh 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip CallDelhi Call Girls Punjabi Bagh 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Punjabi Bagh 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
shivangimorya083
 
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts ServiceCall Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
Generative AI on Enterprise Cloud with NiFi and Milvus
Generative AI on Enterprise Cloud with NiFi and MilvusGenerative AI on Enterprise Cloud with NiFi and Milvus
Generative AI on Enterprise Cloud with NiFi and Milvus
Timothy Spann
 
Delhi Call Girls CP 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls CP 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip CallDelhi Call Girls CP 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls CP 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
shivangimorya083
 

Dernier (20)

Delhi 99530 vip 56974 Genuine Escort Service Call Girls in Kishangarh
Delhi 99530 vip 56974 Genuine Escort Service Call Girls in KishangarhDelhi 99530 vip 56974 Genuine Escort Service Call Girls in Kishangarh
Delhi 99530 vip 56974 Genuine Escort Service Call Girls in Kishangarh
 
BigBuy dropshipping via API with DroFx.pptx
BigBuy dropshipping via API with DroFx.pptxBigBuy dropshipping via API with DroFx.pptx
BigBuy dropshipping via API with DroFx.pptx
 
Log Analysis using OSSEC sasoasasasas.pptx
Log Analysis using OSSEC sasoasasasas.pptxLog Analysis using OSSEC sasoasasasas.pptx
Log Analysis using OSSEC sasoasasasas.pptx
 
VIP Model Call Girls Hinjewadi ( Pune ) Call ON 8005736733 Starting From 5K t...
VIP Model Call Girls Hinjewadi ( Pune ) Call ON 8005736733 Starting From 5K t...VIP Model Call Girls Hinjewadi ( Pune ) Call ON 8005736733 Starting From 5K t...
VIP Model Call Girls Hinjewadi ( Pune ) Call ON 8005736733 Starting From 5K t...
 
Ravak dropshipping via API with DroFx.pptx
Ravak dropshipping via API with DroFx.pptxRavak dropshipping via API with DroFx.pptx
Ravak dropshipping via API with DroFx.pptx
 
Vip Model Call Girls (Delhi) Karol Bagh 9711199171✔️Body to body massage wit...
Vip Model Call Girls (Delhi) Karol Bagh 9711199171✔️Body to body massage wit...Vip Model Call Girls (Delhi) Karol Bagh 9711199171✔️Body to body massage wit...
Vip Model Call Girls (Delhi) Karol Bagh 9711199171✔️Body to body massage wit...
 
FESE Capital Markets Fact Sheet 2024 Q1.pdf
FESE Capital Markets Fact Sheet 2024 Q1.pdfFESE Capital Markets Fact Sheet 2024 Q1.pdf
FESE Capital Markets Fact Sheet 2024 Q1.pdf
 
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
 
Accredited-Transport-Cooperatives-Jan-2021-Web.pdf
Accredited-Transport-Cooperatives-Jan-2021-Web.pdfAccredited-Transport-Cooperatives-Jan-2021-Web.pdf
Accredited-Transport-Cooperatives-Jan-2021-Web.pdf
 
Call Girls Indiranagar Just Call 👗 7737669865 👗 Top Class Call Girl Service B...
Call Girls Indiranagar Just Call 👗 7737669865 👗 Top Class Call Girl Service B...Call Girls Indiranagar Just Call 👗 7737669865 👗 Top Class Call Girl Service B...
Call Girls Indiranagar Just Call 👗 7737669865 👗 Top Class Call Girl Service B...
 
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
 
Delhi Call Girls Punjabi Bagh 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Punjabi Bagh 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip CallDelhi Call Girls Punjabi Bagh 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Punjabi Bagh 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
 
Discover Why Less is More in B2B Research
Discover Why Less is More in B2B ResearchDiscover Why Less is More in B2B Research
Discover Why Less is More in B2B Research
 
Introduction-to-Machine-Learning (1).pptx
Introduction-to-Machine-Learning (1).pptxIntroduction-to-Machine-Learning (1).pptx
Introduction-to-Machine-Learning (1).pptx
 
Halmar dropshipping via API with DroFx
Halmar dropshipping via API with DroFxHalmar dropshipping via API with DroFx
Halmar dropshipping via API with DroFx
 
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts ServiceCall Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
 
Generative AI on Enterprise Cloud with NiFi and Milvus
Generative AI on Enterprise Cloud with NiFi and MilvusGenerative AI on Enterprise Cloud with NiFi and Milvus
Generative AI on Enterprise Cloud with NiFi and Milvus
 
Sampling (random) method and Non random.ppt
Sampling (random) method and Non random.pptSampling (random) method and Non random.ppt
Sampling (random) method and Non random.ppt
 
Delhi Call Girls CP 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls CP 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip CallDelhi Call Girls CP 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls CP 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
 
VidaXL dropshipping via API with DroFx.pptx
VidaXL dropshipping via API with DroFx.pptxVidaXL dropshipping via API with DroFx.pptx
VidaXL dropshipping via API with DroFx.pptx
 

Alejandra Brown: Introduction to privacy and overview of privacy and data residency rules that apply to BC nonprofits.

  • 1. Privacy Management Kirke Management Consulting 2019-10-21© 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
  • 2. Privacy and Data Breaches © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
  • 3. Something in Common? © 2019 Kirke Management Consulting. All Rights Reserved - Private and Confidential • Large and well-known organizations • Strong reputations… … until they didn’t • Breaches could have been avoided
  • 4. 2018 Breach Examples © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential Jul - Oct2019 Jan - JunJul - Dec2018 Jan - Jun Marriott Starwoods 500MM records 2020 Ontario Cannabis Store notifies of a breach through Canada Post 4.5K records Air Canada through mobile app 1.7MM records BMO and Simplii 90K records Under Armour MyFitnessPal 150MM records Facebook – Cambridge Analytica 87MM records Facebook exposed sensitive data 29MM records Facebook exposed sensitive data 100MM+ records Desjardin’s employee exposes data of 2.9MM individuals Capital One records exposed in US and Canada
  • 5. NFP Privacy Breaches https://www.vancourier.com/alleged-hiv-aids-privacy-breach-could-become-class-action-suit-1.23811118 https://www.oipc.ab.ca/media/993856/P2019_ND_014_008114.pdf © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential Emergency backpack with first aid supplies and children’s information was left at a playground King Edward Child Care Society Edmonton AB - Sep 2017 Human error caused donation history to display on their new online donation system The information breached included name, email address and donation amount JDRF – Mar 2018 • Excel file with employee info sent through email, unprotected BC HIV/AIDS NFP privacy breach could become a class action lawsuit - 2019 • Tax forms were made accessible through search engines Legal Aid Society of Orange County – Jan 2017
  • 6. © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
  • 7. It is a Hyper-connected World © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
  • 8. Global Privacy Regulations © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential Canada • Federal • PIPEDA (private sector) • CASL – Anti-Spam Legislation • Provincial (BC, AB, QC) • PIPA (private sector) • FIPPA (public sector) USA • HIPAA • CCPA • COPPA • CalOPPA EU • GDPR (2018) • E-Privacy Regulation (TBD)
  • 9. Privacy vs Security • Privacy focuses on governance around use, disclosure and retention of Personal Information • Security is concerned with measures to restrict access and protect Personal Information during collection, storage, and transmission © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential
  • 10. Importance of Privacy for NFP © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential NFPs interact with different stakeholders - Donors/ funding contributors - Volunteers - Employees - Clients NFPs may require managing very sensitive information: - Examples – immigration status, health status, financial position and contributions When data is managed there is always data loss risk - Losing data may prove damaging to the affected individual MOST IMPORTANTLY - NFPs reputation and brand identity are paramount to main objective (fund raising) - Public shown to be less forgiving of NFPs when it comes to trust
  • 11. © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential Human Error • Collection of donations and credit card info • Storage, transfer and disclosure of employee, donor, volunteer or client info • Storage of PI on digital assets (e.g. laptop, smartphones, USB sticks) or any other unsecured environment • Disclosure of PI to third parties and/or too broadly within the organization • Lack of awareness of privacy obligations, what constitutes a breach & what to do if one takes place Common Areas of Vulnerability
  • 12. Effective Privacy Program  Understand regulations that apply to organization  Have a designated CPO  Have clear and simple policies around Privacy, including a Privacy Notice on the official website  Keep Privacy principles in mind for new campaigns, processes or initiatives – especially for Digital Marketing  Ensure 3rd party contracts have clear Privacy provisions  Educate employees and relevant stakeholders on the their obligations – provide regular training  Ensure that questions, gaps, complaints are easily funneled to the CPO  Have an Incident Management Protocol in place  Review Privacy practices periodically  Ensure cybersecurity coverage is included as part of insurance  Ensure PI is identified and protected – include IT security measures © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential
  • 13. Privacy Notice and Principles © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential Privacy Notice Identify what PI you collect, use and share Describe what protection you us on PI Share where you store PI and who has access to it Provide a contact for anyone with questions or concerns Privacy Principles Request consent where necessary Limit use of PI Share only on a "need-to-know" basis Create awareness in the organization – keep privacy top of mind Be accountable, respond quickly to issues and take responsibility
  • 14. Where Do We Go From Here? Determine what is your level of Privacy maturity Assess your risk and current gaps Adopt “quick-wins” Appoint a CPO Create or review privacy policy Train employees, volunteers on privacy practices and their obligations Identify IT security areas of risk Include appropriate disclaimers in your e-Newsletter sign up form Establish an incident response procedure Bring in experts when required © 2017 Kirke Management Consulting. All Rights Reserved - Private and Confidential
  • 15. Resources • Privacy tools - https://kirke-consulting.com/tools/ • Privacy checklist for NFPs - http://www.charitycentral.ca/wp- content/uploads/privacy-en.pdf • Privacy concerns for NFPs - https://www.techsoupcanada.ca/en/community/blog/privacy-and- data-concerns-for-nonprofits © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
  • 16. Thanks! Ale Brown – abrown@kirke-consulting.com © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential
  • 17. About Kirke © 2018 Kirke Management Consulting. All Rights Reserved - Private and Confidential Strategy. Transformation. Results. We are a strategy consulting firm that enables business growth and minimizes corporate risk. We believe that safeguarding personal information has become paramount in a rapidly expanding digital world, therefore we help organizations gain relevant data insights to build tighter relationships with their customers, all within a strong privacy management framework. This results in increased brand recognition, improved reputation in the industry and trust within their customer-base. http://www.kirke-consulting.com/ contact@kirke-consulting.com

Notes de l'éditeur

  1. Privacy – all areas of the organization are responsible for this Security – responsibility falls mostly on IT
  2. When disclosing data, make sure a) you are letting individuals know that you share the data (even if it is internally) and obtain their consent; b) you have the appropriate 3rd party agreements in place – if they have a breach, you ultimately have responsibility too; c) ensure internally the data is not propagated beyond the original group you share it with (be the central point of contact) – the more disseminated, the higher the risk
  3. Don’t forget CASL for Digital Marketing
  4. We will share a privacy questionnaire that shows where the risks lie Incident response