GDPR event: The world’s most valuable resource is no longer oil, but data

By Lisa McDermott

On a dreary January afternoon, I was sat in a room. Well a hall technically. In Shoreditch. With a ‘gathering’ – is that the right word? – of volunteer managers and leaders of volunteers.

Over the next few hours we experienced a rollercoaster of emotions ranging from being gobsmacked, determined, panicked and relieved. Who knew that an AVM event about the General Data Protection Regulation [GDPR] could generate such a response. Not me…

First up to the podium was the RNLI. They started their GDPR journey in 2016 so compared to a lot of other people in the room they are well ahead of the curve. The pioneers, if you will, in the GDPR wilderness.

A clever campaign – Communication Saves Lives – has seen nearly 500,000 supporters opt in by the end of 2017 to continue receiving fundraising communications, and as a result the response rate to a Summer appeal increase from 10.4% to 32.8%. Impressive I nod sagely….

Their multifaceted, one-size doesn’t fit all, engagement which included staff ‘Lunch and Learn’ sessions and tailored volunteer messaging was also a bit special. I too find food is a great persuader….

There was an audible gasp, however, when we learnt that the RNLI had only applied GDPR to their direct marketing. What?? After all that you’ve still got shed loads to do? At this point I think some panic started to set in.

Next up was the Alzheimer’s Society who gave an honest and frank account of living under an E10 enforcement notice after being sanctioned by the Information Commissioner. This forced them to have a long hard look at how the organisation, their staff and volunteers process data but in doing so they are now in a happy place and feeling prepared for GDPR. I’m not sure when I am next going to have a discussion about hamster bedding and composting in the same breath as why GDPR is important.

Our last presenter for the day was Paul Jennings from Bates, Wells and Braithwaite who took us through some of the ‘legalese’ and dealt with some insightful and challenging questions from the crowd on topics like retention policies, roles and responsibilities and privacy notices.

There was also an interesting discussion on whether asking volunteers for consent is the right thing to do and whether gathering data under the legitimate interest banner would be more appropriate. Organisations need to decide for themselves what works best for them. Food – and a biccy – for thought…

So, by the end of the day our heads were spinning with advice, guidance, predictions and questions about what GDPR means for us and our organisations. Will it be “an evolution or a revolution?” For us probably the former as we already have a lot of data safeguards in place due to the nature of our work but for others it might mean coming out on the streets, waving the GDPR flag and shouting ‘viva la revolucion!”

Lisa McDermott is an AVM member, and Volunteering Management and Training Officer (UK) at the Stroke Association.

data data protection

Cookie	Duration	Description
AWSALBCORS	7 days	This cookie is managed by Amazon Web Services and is used for load balancing.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
pmpro_visit	session	The cookie is set by PaidMembership Pro plugin. The cookie is used to manage user memberships.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
S	1 hour	Used by Yahoo to provide ads, content or analytics.

Cookie	Duration	Description
_gat	1 minute	This cookie is installed by Google Universal Analytics to restrain request rate and thus limit the collection of data on high traffic sites.
AWSALB	7 days	AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_TM3E6EK72B	2 years	This cookie is installed by Google Analytics.
_gat_gtag_UA_8248980_1	1 minute	Set by Google to distinguish users.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
vuid	2 years	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.

Cookie	Duration	Description
NID	6 months	NID cookie, set by Google, is used for advertising purposes; to limit the number of times the user sees an ad, to mute unwanted ads, and to measure the effectiveness of ads.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.