Category

Nonprofit

Jun 17
0

Imagining the Unimaginable: Recovery from a Personal Data Breach

By | cyber security, Data, Nonprofit | No Comments
"data breach" with locks over data pieces

Can you imagine losing $43 billion? It’s hard to imagine losing $43, let alone $43 billion, but that’s what AARP claims American adults lose to identity theft and fraud each year. That’s a staggering number. And it doesn’t matter whether this information is lost by an organization that failed to protect customer data or an individual who fell for a phishing scam—the results are the same. Lost time, lost reputation, and yes, often blame and shame.

Cybercriminals continue to grow increasingly sophisticated in using both technology and psychology to trick victims into disclosing sensitive personal or financial information that can lead to theft and fraud. If you’ve fallen victim, please don’t blame yourself. Instead, act now to recover from the situation.

An Ounce of Prevention

The old saying “an ounce of prevention is worth a pound of cure” is very apt when it comes to identity theft. Many organizations, including the IRS, have published information to help people whose identities were stolen as part of a tax fraud scam. But did you know that there are 20 types of identity theft? Credit and debit card theft, stealing mail to gain access to confidential information, and other types of theft are common ways in which criminals gain access to personal information.

Many credit card companies now have safeguards against such theft by locking cards and contacting the cardholder when card activity suddenly increases past the cardholder’s typical activities. Still, it’s not foolproof. Consumers should monitor their credit cards, bank accounts, and credit scores frequently and guard against phishing emails or phone calls designed to trick the unwary into revealing sensitive information through a sense of urgency or familiarity.

How Do You Know If Your Data Is Compromised?

When personal data is compromised, it can lead to serious consequences, including financial loss, identity theft, and ongoing security risks. Consumers may notice unauthorized transactions, unfamiliar login attempts, or receive password reset emails they didn’t request—all potential signs of a breach. Additionally, a surge in spam calls or phishing emails could indicate that personal information has been leaked to third parties. In some cases, unexplained changes to security settings, such as modifications to two-factor authentication, may suggest that an account has been accessed without permission.

To identify whether personal data has been exposed, individuals can closely monitor their financial accounts, review credit reports for unusual activity, and utilize online tools designed to detect breaches. Many organizations offer data breach notification services that alert users if their information appears in leaked databases. If suspicious activity is detected, immediate action is necessary—this includes updating passwords, enabling additional security measures, and reporting the incident to the relevant financial institutions or authorities.

Recovering from a personal data breach requires a proactive approach. Establishing strong security habits, such as using unique passwords for each account and enabling multi-factor authentication, can help mitigate future risks. Consumers should also remain vigilant against phishing attempts and fraudulent communications, as cybercriminals often exploit compromised data to launch further attacks.

Recovering from a Data Breach

Although there is a lot of information published online to help individuals recover from a data breach, it can feel overwhelming to sort through it all. One helpful tool provided by the Federal Trade Commission is an interactive website, Identity Theft, which can help you create a personalized recovery plan.

If you suspect your personal data has been compromised, acting quickly can help minimize potential damage. Here are the key steps to take:

  1. Confirm the breach: Check for unusual activity in your accounts, such as unauthorized transactions, password reset emails you didn’t request, or unfamiliar logins. If a company notifies you of a breach, verify the details through their official website.
  2. Secure your accounts: Change passwords for affected accounts. Don’t reuse passwords across multiple sites. Mult-factor authentication also adds another layer of protection.
  3. Monitor financial activity: Review your bank and credit card statements for suspicious transactions. You can also place a fraud alert on your accounts or freeze your credit.
  4. Watch for phishing attempts: Scammers often use leaked data to send convincing emails or texts asking for personal information. Don’t click links in emails. Instead, close the email and navigate to a new browser tab before logging in and checking to see if the email is legitimate.
  5. Check for identity theft: If sensitive information, such as your Social Security number, has been exposed, monitor your credit reports and consider enrolling in an identity theft protection service.
  6. Report the breach: Notify your bank, credit card issuer, or relevant authorities if you detect fraudulent activity. If the breach involves your workplace or a service provider, follow their recommended security steps.
  7. Stay informed: Keep an eye on updates from the breached company and cybersecurity experts. They may provide additional guidance or offer free credit monitoring services.

Taking these steps can help protect your personal information and reduce the risk of further harm.

Welter Consulting

Welter Consulting bridges people and technology together for effective solutions for nonprofit organizations. We offer software and services that can help you with your accounting needs. Please contact us for more information.

Jun 13
0

Important Tax Changes Coming to Washington State

By | Nonprofit, Tax | No Comments
"tax changes" on ticker tape

The Washington State legislature passed a new budget on April 27, 2025. The new budget updated several notable tax policies, some of which may affect you or your organization. These changes impact nonprofits, including colleges and universities, as well as nonprofits that host conferences and live events. We’ve summarized key points below and included links to the actual bills for your reference. The Washington Society of CPAs has also provided a more in-depth look and additional resources you may wish to review.

Engrossed Substitute House Bill 2081

Engrossed Substitute House Bill 2081 made changes to the state’s business and occupancy (B&O) tax. Rates have changed for service providers earning more than $5 million annually. The new rate is 2.1%. Previously, the rate was applied to businesses in this sector earning more than $1 million.

Additionally, the bill clarifies tax treatment for investments in response to the Antio, LLC vs. Department of Revenue court case. It formally defines “incidental investments” and establishes a 5% threshold for classification; a stricter limit compared to the Department of Revenue’s previous 5% safe harbor standard. While this change provides a clearer framework, some ambiguity remains regarding the definition of a business’s main purpose and how the 5% threshold should be applied across different reporting periods. To address outstanding tax questions, the Department of Revenue will issue additional guidance to further clarify tax policies and compliance expectations.

A key point in this bill affects nonprofits. Washington State’s Engrossed Substitute House Bill 2081 introduces tax exemptions for mutual funds and most nonprofit organizations, aiming to address concerns raised by the Antio, LLC vs. Dept. of Revenue case. This change benefits foundations, private colleges, and nonprofits by preventing their endowment funds and investments from being taxed under new B&O provisions. However, the exemption won’t take effect until January 1, 2026, as the Department of Revenue (DOR) indicated it needs time to implement the necessary administrative processes. Until then, nonprofits and other affected entities remain uncertain about their tax liabilities for the current and previous years. To provide additional clarity, the DOR will issue further guidance on how these exemptions will be applied under Washington’s evolving tax rules.

Engrossed Substitute Senate Bill 5814

Engrossed Substitute Senate Bill 5814 modifies the rules around sales tax. It removes a tax exemption for services that rely primarily on human effort, meaning that accounting and other professional services will now be subject to sales tax if they involve the use of digital tools. The bill defines Digitally Automated Services (DAS) as any service transferred electronically using one or more software applications.

Because many CPAs and professional service providers use online portals to communicate with clients, their engagements will likely be taxed. The legislature declined to restore the exemption, so this change will take effect on October 1, 2025. In response, the Washington Society of CPAs (WSCPA) and other professionals have asked Governor Ferguson to veto this section of the bill, arguing that more discussion is needed to assess its broader impact.

Another change is that “live presentations,” such as conferences, will now need to charge sales tax. This includes all professional development conferences. This provision requires further study, as it may also impact schools, colleges, and universities.

Nonprofits Need to Know Tax Law Changes

Having a tax-exempt status does not mean that your organization is entirely exempt from all taxes. As in the examples above, there are certainly situations in which nonprofits could be required to charge taxes, such as sales tax. Nonprofits must keep up to date with tax law changes in their states to ensure they’re in compliance with current regulations.

Welter Consulting

Welter Consulting bridges people and technology together for effective solutions for nonprofit organizations. We offer software and services that can help you with your accounting needs. Please contact us for more information.

May 21
0

Why Your Nonprofit Needs a Financial Risk Assessment

By | Accounting, Accounting Software, Budget, Nonprofit | No Comments
person at desk with notebook, pen, and laptop and graphs showing high/low waves for risk assessment

A financial risk assessment is an annual audit of many areas of your organization’s financial preparedness and stability. Such an assessment looks at many areas of your company, including the overall management, human resources, facilities, finances, accounting, sales, information systems, and more. Here is why a financial risk assessment is vital for a healthy nonprofit.

The Purpose of a Financial Risk Assessment

Everything in life involves risk. That includes running a nonprofit. A financial risk assessment examines the current state of your business and identifies potential risks. It’s only after identifying risks that you can take action to address them.

You can conduct your own financial risk assessment; however, many find that obtaining outside assistance from their CPA, a nonprofit consultant, or another similar professional is helpful. Often, we are too close to our own business to see potential risks clearly. An outside perspective can cut through the familiarity of the everyday and see the gaps that we often miss.

Benefits of a Risk Assessment

A financial risk assessment provides many benefits to nonprofits by enhancing their overall operations and safeguarding their missions. It helps organizations identify potential risks, such as fraud or inefficiencies, ensuring that their funds and resources are managed effectively to achieve their goals. By addressing these vulnerabilities early, nonprofits can streamline their operations and make better use of their resources.

Conducting regular financial risk assessments builds trust among donors, board members, and the community. It demonstrates a commitment to sound financial practices, which can attract and retain long-term supporters. Additionally, these assessments ensure that nonprofits comply with legal and regulatory requirements, minimizing the risk of penalties or reputational damage.

Finally, a financial risk assessment equips nonprofits to navigate uncertainties like economic shifts or changes in funding sources. By preparing for these challenges, organizations can maintain their focus on their mission and continue to deliver meaningful impact.

Costs of Avoiding a Risk Assessment

Perhaps you’re thinking, “This is all well and good, but we’re so busy! We just don’t have time to stop and do a comprehensive assessment.”

Do you have time to address a big risk, like a cyber-attack? What about a trip and fall accident because you haven’t assessed the risk of a worn carpet in your reception area?

It’s like owning a car—do you ignore the knock in the engine until the car breaks down, or do you take it to a mechanic to get it checked out?

The costs of avoiding a financial risk assessment may include:

  • Mistakes in the balance sheet, such as liabilities not properly recorded or other mistakes that can muddy the financial picture, can be time-consuming to fix later.
  • Failing to conduct a physical inventory on a regular basis can lead to adjustments, negative equity, and other problems.
  • Missing or poor internal controls can lead to employee theft or mismanaged funds.

There are many more areas where failing to conduct a risk assessment can lead to problems. As you can see, it’s always better to prevent problems than to spend time later fixing them.

Other Benefits of a Risk Assessment

Other than avoiding scary problems, there are many more benefits derived from conducting a comprehensive risk assessment. The assessment can help you build your strategy, setting the stage for thoughtful decisions about where to invest for risk mitigation and where to step out in growth. It may also uncover untapped potential and lead to productive discussions about how your organization can expand.

Start Now

Don’t wait until the end of the year planning to conduct your assessment. You can start now. Pick one department or area of the company, such as finance or operations, and come up with a list of questions. Ask yourself what is working, what isn’t working, and what may be improved.

This is where working with an outside consultant can help. We’re happy to discuss your plan of action and the next steps for financial risk assessment and management.

Welter Consulting

Welter Consulting bridges people and technology together for effective solutions for nonprofit organizations. We offer software and services that can help you with your accounting needs. Please contact us for more information.

May 14
0

Understanding AI: A Guide for Nonprofits

By | Nonprofit | No Comments
person at laptop with AI overlay

Artificial intelligence (AI) seems to be everywhere these days. Whether it’s a featured news story or a new platform offering the latest and greatest in AI automations, this technological advancement is changing nearly every facet of business. And that includes how nonprofit organizations manage everything from fundraising to writing job descriptions.

With 58% of nonprofits stating that they are using AI as part of their communications and 68% using it for data analysis, AI has every indication of becoming a standard productivity tool for organizations. Here’s what your nonprofit needs to know about AI: what it is and how to use it safely and effectively.

What Is AI?

AI, or artificial intelligence, is a computer program that gives machines the ability to mimic human thinking. AI-based programs excel at analyzing data, processing information, and drawing conclusions.

Machine learning is a term often coupled with AI. Machine learning refers to the process by which an AI tool incorporates new information or “learns” from the questions, feedback, and information fed into the model. The two terms, AI and machine learning, are not synonymous, but are often used together (AI/ML) to distinguish the newer type of AI, called generative AI, from another model called predictive AI.

GenAI versus Predictive AI

If generative AI uses machine learning to generate new responses, what is predictive AI? As the name suggests, this AI model is often used to analyze data patterns and predict action based on patterns.

 A good example of predictive AI is found on large retail websites. This is how websites analyze your search terms and patterns, or previous purchases, and suggest other products you might like. That’s predictive AI in action.

Another example is right at your fingertips – your smartphone. If you’re texting and the phone “suggests” words or phrases, inviting you to tap to fill them into your note, it’s using predictive AI to guess your next word or phrase.

AI Tools for Nonprofits

It may be helpful to think of AI as another coworker, albeit one that doesn’t take the last donut in the break room. AI cannot replace people, but it can perform many tasks. Some programs that incorporate useful AI tools that nonprofits may wish to test include:

  • ChatGPT, Microsoft Copilot, or Gemini: These tools can draft simple text and offer suggestions to improve existing text. You can use them to help craft social media messages, emails, or reports. (Please note: never use “free” versions of these tools for confidential or proprietary company information. Only the paid versions keep the information ingested into the AI private. Others incorporate the data into their machine learning repository, potentially exposing confidential data.)
  • Grammarly: Grammarly is a great tool to help you polish written drafts. It checks grammar and spelling but also offers feedback to improve clarity. It can also be added as an extension to Google Chrome and seamlessly provide feedback when you’re working on Google Docs.
  • Canva: Do you do your own graphic design? Canva is an easy-to-use design program that offers templates for everything from flyers to social media posts. You can upload your logo and brand colors to a folder and keep them handy for use. The AI tools within Canva provide a free AI image generator, and its AI suggestion tool can be used to improve designs.
  • Donor Search AI: Remember how great AI is at analyzing data to find patterns? Donor Search AI uses this principle to improve your donor outreach efforts. It analyzes response patterns, campaigns, and more to recommend the best time for donation campaigns. Other tools found within the Donor Search suite help with fundraising and channel communications.

Which AI Tools Should You Choose?

The list above only scratches the surface of what’s available. New tools seem to arrive daily, with more and more designed for nonprofits. Select the AI platform that helps your organization achieve its goals. As we said at the start of this article, think of AI as a coworker. If you could hire another person, what would that person do? Graphic design, donor campaigns, or something else? That will help point the way to the best platforms for your organization to invest in to maximize the potential of AI.

Welter Consulting

Welter Consulting bridges people and technology together for effective solutions for nonprofit organizations. We offer software and services that can help you with your accounting needs. Please contact us for more information.