Confidentiality & Donor Privacy
Protecting information about donors, participants, and fellow team members.
Placeholder content
Demo text for design review. Replace with the official Goodwill Houston policy language before launch.
1. Confidential Information
Confidential information includes donor names and contact details, program participant records, team member personal data, financial information, and any non-public business information.
2. Handling Donor Information
Donor receipts and contact information must be stored in locked drawers or password-protected systems. Never share donor information with third parties without written consent and Compliance approval.
3. Password Requirements
All team member accounts must use a password of at least 14 characters, containing a mix of upper, lower, numbers, and symbols. Passwords are rotated every 180 days. Multi-factor authentication is required for all Workday and email access.
4. Data Breach Reporting
Suspected data breaches — including lost laptops, suspicious emails clicked, or improperly accessed records — must be reported to security@goodwillhouston.org within 1 hour of discovery.
