May 25, 2018: the day when the European General Data Protection Regulation (GDPR) will come into force. This will have implications for RaiseNow customer.
Contract to process data
With the new GDPR, contracts need to state clearly the person or organization responsible for collecting and processing data, and any external, third-party processor of this collected data. In our case, the organization retains ownership of the data and RaiseNow is a processor of that data. In order to regulate this relationship officially, it requires a contract that requests data processing.
Right to erasure (‘right to be forgotten’)
In the GDPR context, the so-called “right to be forgotten” plays an important role. In short, each individual has the right to request that each organization deletes their personal data record. RaiseNow will enable you to do this so that the anonymization of collected donor data – for example via a donation form – can be carried out.
Data Protection Officer
As part of the GDPR, we will appoint an external Data Protection Officer who will be available as a contact person for you, and can be contacted at any time via email@example.com.
Guidelines for Data Protection
All of our products are also subject to GDPR laws, and therefore will be adapted accordingly over the next weeks. These will include donation forms, CRM connectors, peer-to-peer platforms and SMS donations, amongst others.