Katrin Verclas, NTEN Executive Director

Happy New Year, NTEN Community!

To start the year off right, our January issue of NTEN Connect focuses on privacy and security - issues that affect every nonprofit and that are only becoming more important as we move more data and information about clients, employees, funds, and services online. 2006 was a fairly quiet year for big security glitches - no Nimda, no Katrina. Of course the press reported widely on the privacy glitches chronicled on sites like the Privacy Right Clearinghouse, where many nonprofit educational institutions litter this hall of shame. But sadly, privacy breaches are almost a matter of course these days. So to help you NOT be listed there, read on to find out how you can improve your security and maintain your constituents's privacy. And the best way to do this is through good people management and creating policies that are a part of organizational culture, not just words on a website.

Good technology is important, but without good people and excellent management it’s not worth its salt. Nonprofits – like the commercial sector – have to consider security and privacy on a number of different fronts. Disasters and business interruption prevention, privacy and accountability issues mandated by Sarbane Oxley and HIPAA, internal data management, and external threats like ID theft, phishing, viruses, and DND attacks are just a few examples. It is enough for a conscientious IT director to grow gray hair. And yet as this field matures and becomes more professionalized, there is increased recognition by management, donors, and clients that these issues are absolutely critical to good operations.

Data and information are the lifeblood of every organization and ought to be treated as such – with great care and attention by senior leadership, good policies, and solid technology to mitigate risks and exposure in every way possible. If you have tools or ideas to share, let us hear from you!