The intake queue is exploding. A partner needs a same-day handoff. A funder report is due, and the numbers don’t reconcile. In that pressure, privacy turns into a cleanup job. A rushed form. A shared spreadsheet. A “temporary” folder that becomes permanent. For justice nonprofits serving people at real risk, that’s not just an IT […]
The intake queue is growing, the monthly close is late again, and a vendor ticket is stuck in “we’re looking into it.” You don’t have time for another vendor meeting that ends with polite promises and no change. A vendor scorecard gives you a calm, repeatable way to see what’s working, what’s failing, and what
The intake queue is climbing, a filing deadline is hours away, and the tool you depend on won’t load. In legal aid and justice-support work, Software as a Service (SaaS) failures happen. The bigger risk is what comes next: silence, mixed messages, and workarounds that scatter client data. A SaaS outage communication plan for nonprofits
Your intake queue is growing, staff are tired, and a funder wants a clean answer: “How are you using AI, and how do you keep it safe?” Meanwhile, a well-meaning team member has already turned on an AI feature in a tool that touches client data. That’s where ISO/IEC 42001 helps. Published in December 2023,
ISO 42001 Checklist for Nonprofits (Starter Governance and Oversight) Read More »
Your team didn’t choose legal services because you love filing systems. You chose it to help people through high-stakes moments. But the intake queue grows, staff copy and paste notes across tools, and every year brings a new report, audit, or public records question. Meanwhile, old client data sits everywhere, quietly piling up. Keeping everything
Your intake queue is exploding. A grant report is due. A partner needs a file today. Then someone gets phished, or you notice a login from a remote work location no one recognizes, and suddenly MFA becomes urgent. This is where “big bang MFA” goes wrong. Staff get blocked mid-task, workarounds appear, and IT becomes
It’s 8:05 a.m. on a Monday. Your self-help intake form won’t load, your scheduling portal throws errors, and the “download the packet” links on your website point to blank pages. Staff try the usual fixes. Someone messages a vendor. Someone else restarts a browser and hopes. By 10:30, the phone line is jammed. Community partners
The intake queue is climbing. A funder report is due. A vendor is pushing a “must-sign-this-week” renewal. Someone asks about AI tools. Another person asks, quietly, “Are we safe if there’s a data breach involving client personal information?” In moments like that, leaders don’t need more opinions. They need a decision they can explain, defend,
The intake queue is growing. A partner sends a file the wrong way. A funder asks for numbers by Friday, and nobody trusts the spreadsheet. Meanwhile, everyone knows a security incident would land harder here than in most workplaces, because you hold sensitive client data tied to safety, immigration status, housing, family stability, and legal
Your intake queue is exploding, a partner asks if you were breached, and someone on staff can’t access the case system. In that moment, the biggest risk usually isn’t “hackers.” It’s confusion: unclear roles, slow decisions, and nobody sure what to say to clients, courts, or funders. A quarterly readiness exercise plan is a simple,
Quarterly Readiness Exercise Plan (12-Month Simulation Calendar + Topic Picker) Read More »
