Storing Donor Data in Microsoft Office 365

Verizon released a report stating that 58% of all attacks are targeted at smaller organizations. Why are cybercriminals interested in the small guys? Because they’re usually seen as less tech-savvy – having smaller budgets and fewer resources to dedicate to staying safe against attacks. This is a particularly important reminder for non-profit organizations as they store a massive amount of sensitive data, such as:

  • Donor information
  • Health information
  • Social insurance numbers
  • Employee and volunteer records
  • And much more

If cybercriminals can manage to get their hands on donor information, they’re able to commit identity theft, fraud, and in many cases, hold that donor information hostage in exchange for a ransom fee. Those running non-profit organizations of any kind need to start considering what kind of data they’re holding and where it’s stored.

Where is your donor information and other sensitive data stored?

Do you have physical copies, such as paper records held in filing cabinets?

What about digital copies stored on computers, mobile devices, and within applications?

60% of non-profit organizations say they do not have or know of an organizational policy that identifies how they handle cybersecurity risks, data privacy, and equipment usage.

This is a scary statistic, especially when you consider how many non-profit organizations leverage Microsoft Office 365 and other mobile applications and/or devices to keep track of donor information and other sensitive data. Microsoft Office 365, in particular, is a fairly safe but it’s important to take the right measures to ensure:

  1. You’re in control with notifications of triggered alerts for any unusual activities, which means you can view what is being accessed and block or suspend any accounts that exhibit suspicious activity. Microsoft’s cloud app security can be used to configure this capability – allowing you to combat threats across ALL of your cloud services.
  2. Multi-factor authentication is setup to require all users to utilize two methods – confirming they’re the account owner and authorized to access any data stored in the system. This is an extra layer of security that must be setup properly to ensure your data is secure.

Fortunately, Microsoft Office 365 encrypts your data and emails in storage and in transit. This

means your data is essentially unreadable to anyone who doesn’t have the decryption key.

There are several protocols used, including transport layer security/secure sockets layer,

internet protocol security, and advanced encryption standard. Microsoft Office 365 also offers

built-in mobile device management to secure all mobile devices for the purpose of:

  • Creating mobile device security policies
  • Remotely wiping a device
  • Viewing detailed device reports

We highly recommend Microsoft Office 365 for non-profit organizations looking to safely communicate with one another and store sensitive data, however, it’s vital to have IT consulting in Portland to ensure optimal security.

Learn more about using Microsoft Office 365 for your non-profit organization in Portland and Dayton. Call (503) 389-8015 or book a meeting with us.

Like this article? Check out a few of our recent posts:

4 Can’t-Miss Cybersecurity Tips Your Small Business Needs Desperately

Preparing for 2020 Microsoft’s End-of-Support List

Are You Worried About the Cost of Managed Technology Services?

Nick Hess

Nick Hess is an authority for IT services in Portland, OR. Nick's team at SureTec IT has helped numerous companies with their day-to-day IT service needs. Nick also has years of experience with Google G Suite, Microsoft 365, and business VoIP Services.

Book Your SureTec Discovery Call

Initial discovery call will help us better understand your needs and see how we can help you best.

Portland Metro Area

10180 SW Nimbus Ave,
Suite J1
Tigard, OR 97223

(503) 406-2152

Cincinnati, Dayton, & Columbus

4031 Colonel Glenn Highway Suite 303 Beavercreek, OH 45431

(937) 427-9790