No images? Click here

 

The Charitable Purpose

ACNC monthly e-newsletter

April 2024

 

Commissioner's Column

 
 
Headshot of Sue Woodward AM, Commissioner of the ACNC

 

While the digital economy has opened a world of opportunities to do things faster and more conveniently, there has also been the proliferation of cyber attacks where personal and organisational data is put at risk of misuse. Around the world there are more devices with a connection to the internet than there are people. As with other sectors (business and government), charities are vulnerable to malicious attacks - with cyber security now a fundamental pillar in maintaining organisational integrity.

Read the full Commissioner's Column

 
 

Charity news and updates

 
 
 
 

Guidance and resources for charities 

 

Free cyber security resources for charities

Cyber incidents can be costly and lead to the loss of sensitive information, service disruptions and reputational damage. Check out free resources from the Australian Signals Directorate, including steps to help charities improve their cyber security defences. 

Read more
 
 

Governance Toolkit: cyber security

Our updated guidance defines cyber security, outlines your charity's legal obligations, and explains how to manage the risks of cyber attacks. There are also additional resources, including a template plan for responding to a breach and a information asset register template. 

Read more
 
 
 

2023 Annual Information Statement 

Does your charity operate on a calendar year?

Charities that operate on a calendar year (1 Jan to 31 Dec) must submit their 2023 Annual Information Statement before 30 June 2024.

Remember that there will be new questions requiring you to report your charity's dealings with related parties. Learn more about the new questions and what you need to know in our AIS Hub.

Get in early, beat the rush and submit via the Portal now.

Submit via the Charity Portal now
 
 

Answering your questions


A few of the most common questions we have been hearing from charities recently...

Q: Our charity is small and doesn’t have a lot of resources or money to spend on fancy computer software. What can we do to protect our charity from cybercrime? 

A: Unfortunately, cyber criminals don’t discriminate when targeting their victims. Smaller charities can be particularly vulnerable because their limited resources mean they can have weaker defences.  

There are some simple things your charity can do to protect itself, and it doesn’t have to cost a cent. These include changing passwords regularly and limiting access to computer systems to only those who need it.  

Conducting an information audit and recording it in an information asset register can be a useful way to identify your sensitive assets and understand where they are stored and who has access to them. This can the help you catalogue the potential risks and develop some mitigation strategies.  

Our Governance Toolkit: Cyber Security has a range of advice and practical strategies about how to manage the risk.  

Q: Our charity’s computer system has been hacked and our files have been compromised – what should we do?  

A: Your charity should have a plan for responding to cyber security issues and data breaches. There is a free template plan at the bottom of this page for responding to data breaches.  

Take the following steps to manage, respond and address a data breach:  

  1. Identify and contain: Understand what is happening and, if possible, take steps to prevent other systems, devices or data from being affected. 
  2. Investigate: Find out the nature of the issue, which devices and systems are affected, and what the risks might be. 
  3. Assess the risks and respond: Work out what harm has been done, the effects of the harm, and what could go wrong from here. 
  4. Act and notify: Decide on the priorities for protecting individuals and organisations from further harm. In the case of a data breach, follow the OAIC notification guidelines to inform the regulator and other parties if required. 
  5. Review: Look over your charity’s policies, procedures and systems to identify any changes that would reduce the likelihood and consequences of similar issues occurring again, and then implement these changes. 

 

 

Welcome to the charities we registered in March 2024. 

We register hundreds of new charities every month. Take a look at the latest list. 

View the list
 
photo of documents with text that says 'resources for newly registered charities'

To remain eligible for registration, charities must meet ongoing obligations.

Each time a Responsible Person (a committee or board member or trustee) commences or resigns from their position, you must notify us.

Learn more about notifying the ACNC.

Holding an annual general meeting is a good way to be accountable to your members. Read more about AGMs and view our free resources.

 
 
 

Stay up to date

Follow us on social media

TwitterLinkedInFacebookInstagram
 
Subscribe to The Charitable Purpose
Share this newsletter
 
 
 
 

The ACNC acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respects to them and their cultures and elders past and present.

 
 

Australian Charities and Not-for-profits Commission
GPO Box 5108
Melbourne VIC 3001

© Commonwealth of Australia

Preferences  |  Unsubscribe