Risk Register/2012

From Wikimedia UK
Jump to navigation Jump to search
Historical
This page is kept as an archival reference.
If you want to raise a point about it, please start a discussion thread on the community forum.

This page sets out some of the key risks that Wikimedia UK is aware of, monitors, and has contingency plans in place to deal with. The Charity Commission guidance on this topic is available here. We are obliged to maintain a risk register, and we make as much of this publicly available as we are able to in accordance with our values. Our confidential risk register is held on our office wiki.

Fundraiser risks[edit | edit source]

The WMF changes the arrangements for sharing funds from the WMF fundraiser.

Action:
Maintain a reserve fund so WMUK has time to downsize to a size appropriate to our new resource base after this change.

Infrastructure Issues

  • Debit integration
Actions:
  • Work with key developer to ensure implementation within timescale.
  • Contingency planning to manage without integration, but with improved donation workflow and manual data imports to ensure good stewardship
  • Payment processor problems
Actions:
  • Meet with our supplier to discuss any likely service disruption and contingencies should such occur
  • Fundraising Manager to work with WMF to negotiate issues around any PayPal service disruption
  • Fundraising Manager to oversee a checking/testing schedule when fundraiser is live to identify problems when they occur, avoiding prolonged outage without notice
  • Fundraising Manager to work with WMF contractor to ensure through infrastructure testing prior to launch of fundraiser to identify any errors

Data storage and access

  • The CRM 'workload' issues
Actions:
  • Extensive testing pre-November of data import and export mechanisms and processes
  • Preparation for time-heavy processing of large data sets
  • Have considered option of increasing time-out length of server in extreme circumstances on advisement
  • Data protection issues
Actions:
  • Have valid data protection insurance
  • Have valid and sufficient SSL certification in place
  • Fundraising Manager to have oversight of those with differing access to different areas of managing the fundraiser, and ensure appropriate agreements are signed and access in line with | Calidicott principles
  • Freedom of Information issues
Actions
  • Fundraising Manager to draw up process to responding to Subject access or freedom of information requests.
  • Fundraising Manager work with Chief Exec to manage responses to any FoI or Subject Access requests to ensure compliance.
  • Fundraising Manager to seek to pre-empt requests by timely sharing of anonymised data and results through public wiki whenever appropriate and in a planned fashion (testing pages, fundraiser specific blog etc)
  • Advertising Standards Agency compliance
Actions:
  • Fundraising Manager to working with ASA's Copy Advice service to check appeals text for banners and landing pages, and linked pages with further info.
  • Poor donor stewardship
Actions:
  • Fundraising Manager to plan how staff and volunteer resources to manage queries
  • Fundraising Manager to organise refreshed templates for thanking donors and trial bulk mailings
  • Fundraising Manager to schedule communications are timely and relevant to avoid 'spamming' audiences

Other financial risks[edit | edit source]

Financial risk - we run out of the funds needed to support our plans.

Action:

Create and adhere to good practice financial systems and protocols.

Build in contingency planning to budget

Create reserves to ensure at least one year of continuing activities.

Financial risk - we are subject to fraudulent activity from within or outside.

Action: Maintain exemplary financial systems and ensure they are adhered to through regular monitoring and professional external audit.

Organisational risk[edit | edit source]

The UK community fractures with disagreements between its members and constituent parts

Action:

Continue open and transparent systems to allow open debate whilst encouraging a presumption of good faith

The WMF takes actions which WMUK opposes

Action:

Encourage all WMUKs members to participate in WMFs consultations to minimise the risk of such a breach.

Develop WMUK's independent fundraising alongside our joint fundraising with WMF so we can act independently if needed.

WMUK takes actions which WMF opposes

Action:

Be open about our decision making processes, consult with our partners before decisions are made, if practical.

Develop WMUK's independent fundraising alongside our joint fundraising with WMF so we can act independently if needed.

Risks related to WMF projects[edit | edit source]

Scandal related to pornography or politics or other issue on some corner of the WMF sites

Action:

Continue outreach to new readers and editors so we already have a reputation in peoples mind before the 'scandal' hits.

Training of Trustees in television interview techniques.

Employ public relations staff to make sure our response is available

Collapsing editor base means a decrease in quality

Action:

Build WMUK programme with editor retention and development a core objective.

Monitor effectiveness of activities.

Develop Train the Trainers to build new capacity

Wikipedia and sister sites become unpopular and usage declines

Action:

Outreach and partnership work to improve the quality of Wikipedia and other WM projects.

Decrease in diversity of editor and volunteer base Action:

Build programmes to address these concerns. Pay especial attention to developing, supporting and retaining volunteer base. Target hitherto underrepresented groups.

Monitor effectiveness of activities.