Information on Blackbaud data security incident
Information for Mary's Meals supporters.
Mary’s Meals UK, in common with many charities, uses a third-party supplier named Blackbaud to provide databasing services.
Blackbaud recently informed its clients, including Mary’s Meals UK, of a data security incident affecting its systems, during which a cybercriminal was able to temporarily access and remove a subset of data from Blackbaud’s servers.
Blackbaud has confirmed that, though it is likely some limited Mary’s Meals UK data was involved in this breach, this did not include our supporters’ credit card or bank account information.
Having completed an investigation with the support of law enforcement officials, Blackbaud has assured us that it considers the risk to our supporters to be very low and that it has no reason to believe this data has been, or will be, misused. In fact, to the best of Blackbaud’s knowledge, the data has been destroyed.
Further details about the nature of this incident are available on the Blackbaud website.
The security of our supporters’ information is incredibly important to us and we take data protection very seriously. Mary’s Meals UK has made both the Information Commissioner’s Office and the Office of the Scottish Charity Regulator aware of this incident.
As a matter of urgency, we are seeking greater clarity from Blackbaud on which specific Mary’s Meals UK information may have been compromised, as well as confirmation of the steps Blackbaud has taken to further enhance its cybersecurity infrastructure and protocols.
If you have any questions about this incident, please contact us on 0800 698 1212 or email us at info@marysmeals.org. You can also find out more about how we use and protect your data by reading our privacy policy.
Though the risk posed directly by this data security incident is considered by Blackbaud to be very low, we know that all Mary’s Meals supporters will want to treat suspicious emails, letters, phone calls or any other unexpected communications with care and caution. You can read more about fraud awareness and prevention here.
We will continue to monitor the situation as it evolves, updating this statement on our website as appropriate and keeping under consideration any further communications with our supporters.