A client can give informed consent to a referral in one conversation and withdraw consent in the next. If your system can’t keep up, trust breaks fast. This is where many partner networks get exposed. Personal data moves across staff, forms, inboxes, and outside organizations. One missed update can turn a routine handoff into a […]
A Safer Consent Withdrawal Process for Partner Referrals Read More »
A personal phone feels harmless until it becomes a pocket archive of client risk. If your staff text clients from their own devices, speed goes up, but so do risks to client confidentiality, recordkeeping gaps, and leadership blind spots. That tension is common in justice nonprofits. You want fast, humane communication. At the same time,
Client Texting Policy for Justice Nonprofits Using Personal Phones Read More »
A policy exception should be rare. When it shows up every week, it stops being an exception and starts becoming your real operating model. That shift is easy to miss because each exception feels reasonable on its own. Yet over time, side deals, one-off approvals, and silent workarounds create policy drift, unintended non-compliance, weaker oversight,
Policy Exception Management: Stop Exceptions From Running the Business Read More »
The moment you suspect a security breach, the room changes. Phones ring. Someone’s email “did something weird.” A partner asks if they should stop sending referrals. Staff are scared, because clients could be at risk. In justice work, a breach isn’t just an IT problem. It’s a safety problem. As part of the Ransomware Communications
Justice Organization Breach Notification Timeline Checklist (Day 0 to Day 60) Read More »
An audit email comes in while your intake queue is already loud. A funder wants backup for payroll, a procurement note, and the “final” program report version. Someone says, “I think it’s in my email.” Someone else says, “We renamed that folder last year.” This is the part no one budgets time for, the invisible
Nonprofit Grant Audit Readiness Cut Grant Audit Failures Read More »
You probably felt a real sense of relief when the SOC 2 report landed in your inbox. The board stopped asking quite so many questions, sales said deals were moving faster, and your team finally had something “official” to point to. That relief can quietly turn into false confidence. Your SOC 2 certificate won’t stop
A SOC 2 Certificate Won’t Stop The Next Breach Without a Living Defense Read More »
Challenges in information exchange. Shared drives that feel like a maze. People quietly pasting client details into email, chat, and AI tools because they just need to get the work done. That is the daily reality for many justice organizations operating within the justice system. Legal aid nonprofits, clinics, impact hubs, coalitions, and intermediaries in
Information governance for justice organizations: from chaos to clarity Read More »
If you run a justice-focused nonprofit organization, you live with a quiet fear: one spreadsheet, one inbox, one vendor mistake away from exposing a client story that can never be taken back. A privacy impact assessment for legal nonprofits is a simple, structured way to look that risk in the eye before you ship a
Privacy impact assessment for legal nonprofits in 2026 Read More »
You are a CEO, COO, or founder who is spending more on tech and getting less back. Your inbox is full of AI pitches, your team brings slide decks to every planning session, and your board asks, “What is our AI strategy?” while also warning you about risk. You feel the squeeze from every side.
Board checklist for AI projects that manages risk and drive business outcomes Read More »
Generative AI is now sitting in front of your customers. It writes emails, answers chats, sets appointments, and nudges buyers toward the next step. It also has the power to confuse, overpromise, or leak information in a single click. For executive leadership, such as growth-minded CEOs or COOs, that is the tension. AI can cut
AI Safety Best Practices For Executives Using Customer-Facing AI Read More »
