Who is this for?
This content is designed for participants in Anti Entropy's SparkWell fiscal sponsorship program. While some context will be specific to SparkWell and may need more context, we've made these resources public because they may, nevertheless, be useful to others who may be founding or building an organization.
- Introduction & onboarding
- Mission, theory of change & impact evaluation
- Fundraising strategy & donor management
- Financial management & budgeting
- Legal compliance & risk management
- Infosec & GDPR (current stage)
- Brand development & marketing
- "Bus-proofing" & sustainability strategy
- HR systems & hiring strategy
- Board development & governance
- Revisited: Mission, theory of change & impact evaluation
- Graduation
Infosec & GDPR
Why is this important?
When setting up a nonprofit, considering information security and GDPR is vital to protect sensitive data, maintain trust, and comply with legal requirements. Nonprofits often handle personal information from donors, beneficiaries, staff, and partners; strong infosec practices prevent data breaches, cyberattacks, and misuse of information. GDPR compliance ensures that data is collected, stored, and used responsibly, respecting individualsβ privacy rights and avoiding legal penalties. Together, they help safeguard the nonprofitβs reputation, build stakeholder confidence, and ensure ethical and lawful data management.
Suggested reading
Nonprofit Operations Playbook:
Other Related Readings
Milestones
Aim to complete these before your next monthly check-in:
βοΈ Data map drafted
(Optional) Further outcomes
Consider completing these throughout the program:
βοΈ Cybersecurity discussed
βοΈ GDPR compliance understood
Next up: Brand development & marketing
When setting up a nonprofit, brand development and marketing are crucial for building visibility, credibility, and support.
See the Brand development & marketing worksheet for more information.