If you are asking yourself what legal requirements you need to comply with when building a new charity website then this post should help. We’re not lawyers but we do build a lot of websites so we’ve done the hard work of gathering the information you need to know. Of course, the responsibility for all legal compliance is on you so please don’t just assume we’re right. But do let us know if you think we’ve missed something.
Collecting data about people
The hardest legal requirements to get your head round relate to the collection of information about users of your website. The way you manage this data is governed primarily by the Data Protection Act 1998 (DPA). This is set to change in 2018 when the new EU Data Protection Directive (known as ‘GDPR’) will be adopted into UK law. This new legislation will firm up the existing requirements and, most notably, require organisations to obtain and record active consent before processing data for marketing purposes. For more on this read our post on how to get your charity ready for GDPR 2018.
In order to comply with the current legal obligations and avoid costly mistakes, you must make sure the information you store is kept secure, accurate and up to date. You need to record how you will do this in a Data Protection Policy and we have created a free data protection template for small charities to help you get started.
The data protection legislation covers all of your activities but in relation to the website, there are four specific things to consider, as follows.
Registration with the ICO
If your organisation processes data as defined by the DPA then you need to maintain a registration with the Information Commissioner's Office (ICO). This applies to most organisations but you can comply very quickly on the ICO website.
Cookie compliance notification
Cookies are simple text files that are stored on your computer by almost all websites that you visit so they can track information about you. This can include which pages you click on or whether you visited the website in the previous few days.
It's important to be on top of this but it's a major subject so we recommend reading our post on how to keep your website secure.
Showing organisational information
You need to publish a certain amount of information about your organisation on your website.
What information should be shown?
Where should this information be shown?
There are no specific rules about where this information should be displayed. We recommend showing it in the footer of your website so that it appears on every page but some organisations choose to show it only on the 'about us' or 'contact us' pages.
Websites for those in a registered profession (such as solicitors or doctors) must also show the following information for each individual professional who is listed on the site:
E-commerce and distance selling
There are a number of additional requirements for the provision of information when concluding contracts online. To ensure these are all covered, eCommerce sites should display a page of ‘terms and conditions’ available to all users. These should be laid out clearly and written in plain English. To safeguard your interests, these should be reviewed by a lawyer.
E-commerce providers should make themselves aware of the Distance Selling Regulations. Among other things, these regulations require e-commerce websites to provide the following information:
The top 1,000 fundraising charities receive over half of all fundraising income. This represents a huge opportunity for smaller charities to increase their fundraising. But what are the dos and don'ts of fundraising? If you are intending to do more fundraising this section should give you some guidance on how to do it responsibly.
Regulations on charity fundraising in the UK are voluntary. This means that the charity sector relies on a ‘self-regulatory’ framework to ensure best practice in fundraising. The thinking behind this is that it is in charities’ best interests to maintain a good reputation for the whole sector. It also saves money and bureaucracy if the sector can effectively police itself.
Self-regulatory fundraising framework
The self-regulatory framework relies on a number of key actors and resources.
Codes of Fundraising Practice have been produced to provide broad best practice guidance in various key areas. These are maintained by the Fundraising Regulator which also handles any complaints and works proactively with charities to improve the reputation of the sector and promote responsible fundraising practices.
Quick fundraising checklist
If you have clear answers to the following there is a good chance you are at least on the right track.
If you have any doubts about legal requirements, you should really speak to a lawyer. However, if you have any general questions about setting out information clearly on your website and creating a smooth user experience then get in touch.
Download the checklist
We've created a free checklist to accompany this guide. Enter your email and we'll send it to you.