Why Protecting Donor Data Is No Longer Optional
Data is the new currency boosted by artificial intelligence and the pandemic — obviously impacting society in small and significant ways, such as with immense data collection. It's an asset that we all have (our information), and it's precious to governments, corporations and, yes, nonprofits. But not everyone is using data wisely (e.g., safeguarding it), and some are taking advantage of this opportunity.
As a result, data gets compromised and put at risk of being stolen or misused, including by nonprofits who haven't invested in cybersecurity. In short, we've reached a moment where the privacy lights are blinking red, and nonprofits must invest in cybersecurity. Protecting donor data is no longer just something nice to do. It's essential, and donors will move away (as well they should) from nonprofits that don't protect their information by having transparent and clear data policies.
To put this in perspective, think of companies like Facebook and Google. They know your full name, location, interests and more about you (and your donors) than you might think. These large corporations also know everything about what you do online: where you've been online and who you've chatted with (and when). Inevitably, nonprofits are getting on the data bandwagon to better target and predict how and when donors will give.
And while a growing number of tech companies provide fundraisers with much better insights and abilities to raise more money with the use of data, we need to ensure there's a balance. Moreover, nonprofit leaders must know what's involved in obtaining and securing donor data.
Data Is the New Gold
Data is a commodity for all organizations, from small businesses to Fortune 500 companies and nonprofits. About 97 zettabytes of data exist now, and by 2025, it will nearly double, which is astounding. And we're in a time when you have to use data information to grow and sustain your organization to compete and stay afloat. In other words, it's not an option.
However, it’s vital to internalize the message that data is the new gold in the digital era, and it needs to be protected. In other words, cybersecurity is critical. First, the world had the GDPR, which affected U.S.-based companies and nonprofits. Then California created a privacy law, Virginia, and recently Colorado, with other states following.
Protect Your Data From Corporate Invasion
We need to understand where and how it gets collected to protect everyone's data. In other words, nonprofit leaders don't get a pass on the fact they can't understand technology. No one's saying you have to learn how to code, but you do need to understand the implications of the data your organization collects. For instance, your marketing team probably has Google Analytics set up. As a leader, you need to understand what information gets collected because sooner or later, your donors will ask you.
You should understand if and how your web presence collects data, such as the location, operating system, browser type and more from those who visit your site. You should realize that nonprofits, and probably your own, use that information to cater ads and increase conversions on their sites.
For example, suppose a donor visited a New York City education nonprofit’s website last week, and now the same donor visits a nonprofit school in Boston. In this case, the one in Boston will know that visitor is highly interested in education since it’ll recognize the browser the visitor used. Even with the most basic tracking and data collection, the chances are that your organization collects this information by using something called "cookies," which store information on a computer or mobile device when someone browses certain websites.
Stop Corporations From Tracking You and Your Donors
If you want to keep data safe on the internet, it's vital to curb certain behaviors. First and foremost, realize that the information captured on social media and the engagement from your followers gets transmitted to Google and Facebook, for instance, which, in turn, sells all of it.
Second, think about the tools you're using online to engage with donors. For instance, do you want the Facebook Messenger service or chatbots communicating with your donors and collecting their data? It's essential to inform and obtain consent from your donors on how you collect and use their data and make them aware that things aren’t so simple with social platforms, for instance.
Use Services That Don't Collect Unnecessary Data
One way to safeguard nonprofit communication data is by using services that don't collect any information. For instance, instead of using SMS texts to communicate with your donors, how about using encrypted platforms, such as Signal? Be careful with WhatsApp, as Facebook owns that one. Sure, these services may be a bit more of an inconvenience, but they don't collect personal information, which donors will appreciate.
Beware of Free Services and Applications
In the digital age, nearly everything has a price. Platforms like Facebook and Google offer you a "free" service in exchange for information. As the saying goes, if you're not paying for it, then you and the data are the product. It means that when you use these services, they give your nonprofit data to advertisers — for a fee from which you do not benefit — to make money off of your donor data and information. Conversely, nonprofits need the data to reach and better interact with donors in the digital age. Therefore, it's a careful balancing act of not taking data for granted and being mindful of the services you use and why.
Data as a Premium Commodity
Data is undeniably a more sought-after commodity. In fact, it’s now a highly precious and premium commodity. Companies currently spend billions of dollars on data mining and analysis. This happens by using "data brokers" that collect information from public records, surveys, and other databases and then combine them to create detailed reports about people's lives.
However, nonprofits should realize the ethical difficulty they face and work with vendors and providers emphasizing ethics and security. Moreover, nonprofits can't stick their collective heads in the sand, and speak honestly and openly with donors about their data. In sum, we need to take data protection seriously: to protect ourselves and donors from abuse, extortion or identity theft!
Paul D’Alessandro, J.D., CFRE, is a vice president at Innovest. He is also the founder of High Impact Nonprofit Advisors (HNA), and D’Alessandro Inc. (DAI), which is a fundraising and strategic management consulting company. With more than 30 years of experience in the philanthropic sector, he’s the author of “The Future of Fundraising: How Philanthropy’s Future is Here with Donors Dictating the Terms.”
He has worked with hundreds of nonprofits to raise more than $1 billion dollars for his clients in the U.S. and abroad. In addition, as a nonprofit and business expert — who is also a practicing attorney — Paul has worked with high-level global philanthropists, vetting and negotiating their strategic gifts to charitable causes. Paul understands that today’s environment requires innovation and fresh thinking, which is why he launched HNA to train and coach leaders who want to make a difference in the world.