In this webinar, Antoine Bonicalzi, Marketing Director* for Cyberimpact, will talk about how you can comply with CASL &GDPR by taking a few simple steps. All in simple plain English, no legal jargon guaranteed! Antoine will cover exactly what CASL & GDPR are, and how they apply to your nonprofit so that you’ll be ready to make 2019 your best data privacy & consent driven year yet. In this webinar you will learn: - How to handle your contacts’ personal data - How to obtain & handle meaningful consent - The types of software to help you stay compliant - The channels of communication (e-mail & other digital communication) you can use to promote your work while remaining compliant * Please note that Antoine is not a lawyer, the content of this webinar does not constitute legal advice. For legal advice, please consult legal experts.

1. How to be CASL & GDPR
compliant
in the CASL Era

2. Digital marketing specialist and
small business marketing expert
Antoine Bonicalzi

3. The content presented by Cyberimpact is for
informational purposes only, and is a general
interpretation of the law.
This information should not be interpreted as legal
advice. If you are seeking legal advice, please consult
your lawyer.

4. Demystify CASL

9. Your obligations when sending commercial emails

10. Your obligations when sending commercial emails

11. Your obligations when sending commercial emails

12. Your obligations when sending commercial emails

14. What is the GDPR?
The General Data Protection Regulation (GDPR) is the European Union’s
(EU) new privacy law. Its aim is to give greater protection and rights to
individuals in the EU in regards to the collection and use of their personal
data.

15. Does it apply to your organization?
If your organization has members, donors or website visitors in the EU,
you must be in compliance with the GDPR.
Also, if you collect personal data from European citizens (for example,
through a subscription form on your website) and/or, send commercial
emails, the GDPR applies to you and it is your duty to comply.

16. What do we mean by personal data?
By personal data, we mean anything that can identify an individual.
● Age
● Ethnicity
● Gender
● Postal Address
● Job Position
● Biometric data such as fingerprints and facial recognition
● Medical information
● Unique identifiers such as IP address, location data, email address, etc.

17. The 3 actors of the GDPR
The GDPR makes the distinction between 3 actors.
Data Subject: The person whose personal data is being collected, which could
be users, website visitors, or members.
Data Controller: The entity who is asking users, website visitors, or customers for
their personal information. Your organization would be considered the data
controller.
Data Processor: A third party that processes and stores the data on behalf of the
data controller. For example, Cyberimpact is a data processor.

18. Recommendations
to Ensure Your Nonprofit is
CASL and GDPR Compliant

19. Always tell people why you are asking
for personal data and what you are
going to do with it

21. Only ask for the personal data that
you really need

22. Always get consent before sending
out mass email

23. Tell people how they can see, modify
or ask for deletion of their personal
data

24. Use a centralized CRM

25. Use a CASL and GDPR compliant
email marketing platform

26. Can you still promote your
cause using email?
Absolutely!

27. Source: campaignmonitor.com
Event invitations

28. Source: campaignmonitor.com
Newsletters

29. Source: campaignmonitor.com
Donation appeals

30. Source: campaignmonitor.com
Thank you emails

31. Source: campaignmonitor.com
Retention emails

32. Do more with email
automation!

33. Welcome New Donors

34. Nurture Subscribers or Event
Attendees Into Donors

36. Cyberimpact makes
compliance easy !

37. Give it a try
Create your free account now!
CYBERIMPACT.COM

38. QUESTIONS