|
Dear Mr Robinson
Earlier this year, the company which supplies our supporter database software, Blackbaud, was hit by a series of cyber-attacks. Blackbaud informed the Information Commissioner's Office (ICO) and in July notified affected organisations. We understand that the incident affected a significant number of UK and US charities and other not for profit organisations.
Blackbaud has assured us that the issue was resolved and that the data is now secure. They have also stated that there is no need for individuals to take any action at this time. We have reported the incident to the Information Commissioner's Office (ICO) and are awaiting further guidance from them.
We are writing to you so that you know what has happened, and what action we, and Blackbaud, have taken.
What happened?
On 16 July we were contacted by Blackbaud, one of our suppliers who are one of the world's largest providers of databases and customer relationship management systems for charities and other large organisations including many universities here in the UK and North America. They informed us that sometime earlier this year a cybercriminal hacked into Blackbaud's systems and accessed data containing personal information, which they offered to destroy in exchange for a payment. Blackbaud paid a ransom to the cybercriminal and received third party assurances that the stolen data was destroyed and not used or sold on. Blackbaud states that it has no reason to believe any data was shared beyond the cybercriminal, nor that it was or will be misused, nor will it be disseminated or otherwise made available publicly.
Why and how was Church Army affected?
We use a Blackbaud programme called Raiser''s Edge to record all our engagement with our supporters. Blackbaud have told us that the data breach included an old back-up copy of our database from 3 years ago (July 2017), and so it is possible that personal and contact details and also details of your involvement with Church Army up to that time may have been accessed. In 2017 our data was moved to be stored on Microsoft Azure which is one of the most secure systems. Anyone joining the database since then, and all new data is not affected.
What has been done about this incident?
Blackbaud have carried out their own investigation into the attack with law enforcement agencies and third-party cyber security experts. They assured us that they have put new measures in place to stop the specific type of attack happening again. Blackbaud have also notified the UK's Information Commissioner's Office (ICO).
Since we first heard about the issue, we have been undertaking our own internal investigation and been liaising with Blackbaud to clarify exactly what happened and obtain a copy of the affected data back-up from July 2017. We have taken legal advice, have informed the Information Commissioner's Office and are continuing to liaise with them, following their advice on what action we should take, and additionally we have reported the incident to the Police and Charity Commission. To assist us in this we have enlisted the services of a legal firm and also IT specialists.
What do you need to do?
Blackbaud have stated that, in their opinion, this incident is unlikely to have any impact on individuals. However, we would always recommend that you remain vigilant and if you notice any unusual or suspicious activity that concerns you, please report it to the police.
We understand how concerning it is to receive news like this, and we are so sorry for any anxiety that this news may have caused you. If you have any questions, please do not hesitate to contact us - contact Paul Critchlow on 0300 123 2113 or paul.critchlow@churcharmy.org
We take this issue very seriously, so please be assured that we will continue to do everything we can to ensure that your personal information is secure. We are continuing to work with Blackbaud to investigate this matter and we continue to take advice from the Information Commissioner's Office.
Thank you for your continued support of Church Army as we work with marginalised communities across the UK and Ireland.
Des Scott
Chief Executive Officer
|
Text Box
button
dropdown
checklist
Over the last few weeks we piloted Cuppa with a Key Worker to bring you and our supporters an insight in to Church Army''s frontline work, straight from the mouths of our staff and Evangelists. The response to these has been fantastic, so we''ll be doing a monthly live video call with you!
Based in a multicultural community with a stark mix of wealth and deprivation
"I am at the beginning of a journey, partly inspired by the coronavirus pandemic disproportionately affecting black people, and also by the Black Lives Matter movement.
You are receiving this email because you are part of a Church Army mailing list. Evangelists, staff and members of the Mission Community are automatically included in internal emails. Other supporters and contacts are only added with their consent by signing up online or via another response method. Contact comms@churcharmy.org for more information.
"I was at our community garden unloading flag stones for our soon to be built shelter. George, a guy from the estate who I have got to know over the last few months, came down for a chat. He has been struggling with lockdown isolation and shared how he was seriously considering suicide and had the rope ready in his garage.
Our mailing address is:
"'Love the Lord your God with all your heart and with all your soul and with all your mind.' This is the first and greatest commandment. And the second is like it: 'Love your neighbour as yourself.'" - Matthew 22:37-39
Our mailing address is:
One of the first things she did was go out with Father Terry and his coffee van three mornings a week. On the side of the van there''s a Bible verse saying: "If anyone thirsts, let him come to me and drink" (John 7:37), and underneath: "Given with God's love". They parked the van in different parts of the estates and gave out free coffee to people in the local community.
You are receiving this email because you are part of a Church Army mailing list. Evangelists, staff and members of the Mission Community are automatically included in internal emails. Other supporters and contacts are only added with their consent by signing up online or via another response method. Contact comms@churcharmy.org for more information.
Robin Webb has been appointed as Chief Operating Officer (COO). His role of COO brings together parts of the previous Deputy CEO and Finance Manager roles.
Jude Davis has been appointed as Director of Ministry and Community Leader in a part-time capacity for the next 12 months. Jude will work with Des Scott (CEO) and Andrew Chadwick (Dean of Community) to look at how Church Army, as a Mission Community, ensures that our missional DNA runs through every person who works with us. You might recognise Jude as she''s been the Vice Chair of Church Army''s Board until now. Hear from Jude herself in 
Arts and Entertainment
Business and Industry
Computer and Electronics
Games
Health
Internet and Telecom
Shopping
Sports
Travel
More