Charities and Not-for-Profit Update
- Wednesday, July 25, 2018
Author: Louise Giles
Charities are constantly having to navigate a changing landscape. The General Data Protection Regulation (GDPR) provides new data handling considerations for our clients and with it new potential risks. Concurrently, subsidiaries are having to take on new Gift Aid reporting requirements. Further, in our role as auditors, we are frequently advising our clients on year-on-year changes to reporting requirements. Below I summarise the topical key points and provide signposts for more depth of detail.
General Data Protection Regulation (GDPR)
The EU’s General Data Protection Regulation (GDPR) came into force on the 25 May 2018 and supersedes the UK Data Protection Act 1998. It expands the rights of individuals to control how their personal information is collected and processed, and places a range of new obligations on organisations to be more accountable for data protection.
The GDPR applies to personal data. This is any information that can directly or indirectly identify a natural person, and can be in any format.
The Information Commissioners Office (ICO) has produced some specific guidance for charities needing advice on implementing GDPR, click here.
Gift Aid payments from subsidiaries
Financial Reporting Standard 102 (FRS102) was updated in December 2017 to ensure there is clarity and consistency in how Gift Aid payments by subsidiaries are reported. The new guidance is effective for periods beginning on or after 1 January 2019 but may be adopted early.