Yes. A non-profit may collect personal information to help fulfill its purposes. Non-profits should have valid reasons and consent for its collection and use.
Consent means giving permission to the collection of personal information. This usually happens in one of two ways.
● Implicit consent means that the individual has consented based on their purchase of a ticket. In order to buy the ticket they have to pay for it and provide a credit card number. Purchasing the ticket is their implicit consent to the collection of their credit card number which is personal information.
● Explicit consent is where a consent form is provided to the person. For example, consent forms are routinely used for the sharing of personal information between medical practitioners.
Non-profits should exercise caution in securing personal information. For example, caution includes protecting digital records with a password and encryption and protecting paper records in a locked cabinet.
A privacy officer is a person designated by a non-profit to answer questions about how it collects, uses, retains, and discloses personal information.
SPAM is junk messaging. These unwanted and unsolicited electronic messages are sent to a group of people. Electronic messages include any electronic means such as email, text, instant message, and tweet. Spam is not allowed by Canada’s anti-spam law. This law only applies to electronic messages sent for a commercial purpose.