Are You Secure?

Posted by: Carrie Minnich

Information technology (IT) is usually one of the more challenging areas for nonprofit organizations. Nonprofits often have limited budgets and resources for hardware and software, as well as technology support staff. Many times nonprofits make do with older computers and the help of volunteers to run their IT system. Despite these limitations, it is important for nonprofits to protect their own internal information, as well as external information received from donors, clients and other sources.

There are a few things you can do to make sure your data is protected.

1. Backup. Make sure all data is backed up regularly and a copy of the backup is kept off site.

2. Restrict access. Not everyone within the organization needs to have access to all information. Restrict access so that only those individuals that need the information have access to it. The more people with access, the more chance of security breaches.

3. Keep only what you need. Set limits on the type of information the organization keeps. For example, you do not need to keep donor social security numbers and credit card numbers.

4. Physical security. Require unique computer and software passwords for all users that must be changed occasionally. Consider encrypting files. Make sure your server is kept in a locked area.

5. Online access. Install firewalls and anti-virus protection software to keep computers safe when connected to the Internet. Be sure to keep the anti-virus software updated to avoid new viruses. If you provide a wireless Internet, require users to log-in with a password.

6. Educate. Educate staff and volunteers about the importance of security. Make sure everyone is aware of the organization’s policies and consequences of not following them.