Encrypt Constituent Notes and Action Notes
With the recent Security Breach, it has become apparent that the constituent and action notes need to be encrypted. Notes are our fundraiser's way to recall past conversations with donors. It is possible a donor shares private information during those conversations which could be a Privacy, HIPAA or FERPA issue if a security breach occurs. Additionally, these notes are the institution's memory since fundraisers eventually move on. It is vital that this area of the database is seen as needing additional security. By encrypting these fields, I believe it will help most of Blackbaud's clients and provide a level of trust as organizations work through this breach.
-
Nicole Kennedy
- Aug 31 2020
Related ideas
This should be done immediately. It is the two most common areas of capturing conversations with donors and if you are considered part of a healthcare covered entity, your entries are considered PHI and if breached, HIPAA reporting requirements are triggered. Encrypting these and several other fields is a no-brainer and should be done as quickly as possible to make Blackbaud a trusted database.