Stay in the know and up-to-date on what's happening in the Blackbaud Community.

GDPR For Organizations Outside Of The EU

General Data Protection Regulation (GDPR)

The following information is taken from the webpage that contains more in-depth information.

Data protection laws across Europe are undergoing their first substantial changes in approximately 20 years. The General Data Protection Regulation (GDPR), due to come into law on May 25, 2018 is at the center of the change and has received intense coverage across the non-profit sector and mainstream press. The rationale behind the changes is to bring aging data collection practices up-to-date and incorporate data protection, privacy mandates and best practices.

At Blackbaud, data protection and privacy are a priority. We continue to design new functionality that marry data compliance with fundraising best practice, and our new communication preference management features are designed to provide organizations with the tools they need to ensure their data collection and usage practices meet the requirements of GDPR, as part of your compliance process.

While the GDPR is a European Union (EU) privacy law, organizations outside of the EU can also be subject to the GDPR. We have prepared a FAQ to help answer the often-complex questions surrounding GDPR compliance and developed a comprehensive set of resources to assist you in your GDPR compliance practices, should you determine that your organization needs to comply.

Blackbaud have developed a comprehensive library of resources to support your organization’s GDPR compliance practices which can be found on our two GDPR hubs: Additional materials you can find across these hubs include:
Posted by Jon Nelson on Feb 23, 2018 10:19 AM America/New_York

Leave a Comment

Log in to post a comment.

GDPR also applies to US-based organizations with EU records, correct?
  • Posted Fri 23 Feb 2018 10:22 AM EST
Bianca, the best answer is .. it might.  I am going tp copy & paste this as the answer really depends on your org:    GDPR applies to any organizations processing personal data that are established in the EU, but it also applies to organizations based in non-EU countries if they’re processing data in connection with offering goods or services to EU residents or monitoring the behavior of EU residents. To be subject to GDPR, however, such organizations must actively target EU residents by taking steps like using an EU language or currency or specifically advertising in the EU. Blackbaud cannot determine whether or not your organization must comply with GDPR, but our infographic Could You Be Subject to GDPR? may provide some guidance or be a good starting point for discussions with your organization’s legal counsel.
  • Posted Fri 23 Feb 2018 11:50 AM EST