GDPR risks for charities
A number of UK charities have been fined by the ICO in recent years for misusing personal data and engaging in activities which are not compliant with the GDPR. Charities issued with fines include the RSPCA, British Heart Foundation and Cancer Research UK to name just a few.
Key risk areas that charities are commonly found to be non-compliant with GDPR include: