Skip to main content

🤝

Cybersecurity for UK Charities

Your donors trust you with their data and their money. We help you honour that trust with affordable, charity-focused cybersecurity that meets Charity Commission and NCSC standards.

Why Charities Are at Risk

Cyber attacks on charities are rising — and the consequences go beyond financial loss.

  • 30% of charities attacked

    Almost one in three UK charities reported a cyber breach or attack in the past 12 months.

  • Trustee Liability

    Trustees have a legal duty to safeguard charity assets — including digital systems and donor data.

  • Donor Trust Damage

    A data breach can permanently erode donor confidence and reduce future fundraising income.

  • ICO Fines

    The ICO can fine charities up to £17.5 million for serious data protection failures under UK GDPR.

Purpose-Built for Charities

No enterprise complexity. No hidden costs. Just the protection your charity actually needs.

Essentials Pack

Everything a small to mid-size charity needs

£29/month

  • Email security & phishing protection
  • Donor data access controls
  • NCSC Small Charity Guide alignment
  • Monthly vulnerability scanning
  • Incident response playbook
  • Trustee risk reporting dashboard
Get Started

Free Compliance Checker

See where your charity stands today

£0/always free

  • CC20 compliance checklist
  • NCSC alignment score
  • GDPR readiness assessment
  • Prioritised action plan
  • PDF report for trustees
Run Free Check

Key Requirements for Charities

The regulatory and best-practice landscape every UK charity must navigate.

CC20 Compliance

Charity Commission guidance on protecting charity assets — including digital systems and data.

NCSC Small Charity Guide

Follow the National Cyber Security Centre framework designed specifically for smaller organisations.

GDPR & UK Data Protection

Lawful processing of donor, beneficiary and volunteer personal data under UK GDPR.

ICO Registration

Ensure your charity is registered with the Information Commissioner's Office and meets ongoing obligations.

Trustee Cyber Training

Board-level awareness training so trustees understand their duty of care for cyber risk.

Volunteer Access Controls

Manage permissions for volunteers and temporary staff who access charity systems and data.

PCI-DSS for Donations

Payment Card Industry standards for charities that process card donations online or in person.

Incident Reporting

Structured process for reporting cyber incidents to the Charity Commission, ICO and Action Fraud.