🤝
Cybersecurity for UK Charities
Your donors trust you with their data and their money. We help you honour that trust with affordable, charity-focused cybersecurity that meets Charity Commission and NCSC standards.
Why Charities Are at Risk
Cyber attacks on charities are rising — and the consequences go beyond financial loss.
- ●
30% of charities attacked
Almost one in three UK charities reported a cyber breach or attack in the past 12 months.
- ●
Trustee Liability
Trustees have a legal duty to safeguard charity assets — including digital systems and donor data.
- ●
Donor Trust Damage
A data breach can permanently erode donor confidence and reduce future fundraising income.
- ●
ICO Fines
The ICO can fine charities up to £17.5 million for serious data protection failures under UK GDPR.
Purpose-Built for Charities
No enterprise complexity. No hidden costs. Just the protection your charity actually needs.
Essentials Pack
Everything a small to mid-size charity needs
£29/month
- ✓ Email security & phishing protection
- ✓ Donor data access controls
- ✓ NCSC Small Charity Guide alignment
- ✓ Monthly vulnerability scanning
- ✓ Incident response playbook
- ✓ Trustee risk reporting dashboard
Free Compliance Checker
See where your charity stands today
£0/always free
- ✓ CC20 compliance checklist
- ✓ NCSC alignment score
- ✓ GDPR readiness assessment
- ✓ Prioritised action plan
- ✓ PDF report for trustees
Key Requirements for Charities
The regulatory and best-practice landscape every UK charity must navigate.
CC20 Compliance
Charity Commission guidance on protecting charity assets — including digital systems and data.
NCSC Small Charity Guide
Follow the National Cyber Security Centre framework designed specifically for smaller organisations.
GDPR & UK Data Protection
Lawful processing of donor, beneficiary and volunteer personal data under UK GDPR.
ICO Registration
Ensure your charity is registered with the Information Commissioner's Office and meets ongoing obligations.
Trustee Cyber Training
Board-level awareness training so trustees understand their duty of care for cyber risk.
Volunteer Access Controls
Manage permissions for volunteers and temporary staff who access charity systems and data.
PCI-DSS for Donations
Payment Card Industry standards for charities that process card donations online or in person.
Incident Reporting
Structured process for reporting cyber incidents to the Charity Commission, ICO and Action Fraud.