The session will focus on:    

1. Fundraising and Social Media – GDPR, risk and review

Many charities are looking to start or expand their use of social media to fundraise. Can existing email addresses and cookie data be used for Custom and Lookalike Audience targeting...?

2. Working from home – 5 top tips

Accessing data remotely, sharing information with colleagues, taking calls at home, using your own devices – all were pushed to the forefront as Covid restrictions started. What have we learnt over the last six months?

3. Handling supplier breaches – what to do, who to tell

The major personal data breach by Blackbaud has highlighted the importance of having a process in place for handling breaches by suppliers. The public announcement of a breach by easyJet gives some indication of the thought process behind breach reporting in the time of Covid. When should breaches be reported to the ICO? And to the individuals affected?

4. Health questionnaires and employee

Employers have to ensure safe working environments, but asking about health conditions means processing special category personal data. How can employers meet both their health and safety and data protection obligations?  

5. Q&A

About the speaker

Gary Shipsey – Director of Data Protection Services  

Gary is co-founder and Director of Protecture and is approaching 15 years of practical experience turning information law into practice through a variety of information management roles in local government and the Audit Commission.  

The Fundraising Regulator sought Gary’s expertise to co-author its “Personal Information and Fundraising: Consent, Purpose and Transparency” guidance and he regularly speaks and advises on all things GDPR, data protection and privacy-related.  

Qualification and roles held:  BCS Practitioner Certification in the Data Protection Act, Information Risk Management and Freedom of Information Act. Chair of the Third Sector Group of the Information and Records Management Society (IRMS).