m-hance GDPR statement


m-hance NFP 365, built on the Microsoft Dynamics 365 platform, now has additional standard functionality to address the upcoming requirements of GDPR.

Over the past 6 months, we have worked with clients and partners to ensure there is sufficient core functionality included in NFP 365 to provide a solid foundation for our clients, so each solution can be quickly and easily extended, with our guidance, for each client’s compliance journey.

Whilst there is rich functionality out the box, this GDPR foundation must, of course, remain flexible to change as the new requirements are further interpreted by the ICO and case law.

We also recognise that each charity may need subtly different approaches to GDPR based on their where and how data is currently stored, current data quality and completeness of consents and permissions. We work closely with them to ensure that each new solution supports individual compliance.

In addition to the functionality offered as core within Dynamics 365, such as security, user roles, field level security and audits, the NFP 365 solution will provide:

New forms and fields clearly defining how individuals who have opted in and out of different messaging and services, so they can be automatically excluded or included in communications applicable to their consent activity type

GDPR specific business processes and workflows to ensure the right information is captures against an individual record or is routed to the appropriate person or team

Specific processes that ensure that sensitive data can only be viewed and updated by appropriate persons or job functions

Case management with pre-built SLA’s to meet the time frames set within GDPR, managing information requests, requests for permission changes and complaints

Reports providing all activity and donation history to be sent to those individuals who request it

Inbuilt detailed auditing evidencing what data has been created or updated, when, and by what process or individual user

Over the past six months we have worked closely with Microsoft and other partners to share our combined knowledge and interpretation of GDPR, specifically in the special context of the charity sector. Microsoft and m-hance have held several joint seminars with attendees from the charity sector and from this we have gained valuable insight into the challenges faced by charities and the key capabilities a new solution requires to aid current and future compliance.

On-going solution implementations with key clients have provided us further insight into how organisations are interpreting the new regulations. This has led m-hance to introduce dedicated GDPR workshops during the discovery phase of all new projects.

m-hance is committed to continually update the NFP 365 solution to respond to current and future legislative and structural changes affecting the charity sector.

For further information about NFP 365 contact Tory Cassie on 07854 686 489