How Nonprofits Can Stay Legal When Going Social
Social media is a powerful tool that nonprofit organizations can use to quickly, cheaply and personally engage with funders, volunteers and clients. But while the benefits of using social media are vast, challenges and legal risks exist.
The following are tips and traps to keep in mind and discuss with your lawyer if you have any questions.
Politics + NonProfits = Risky Business
To maintain tax-exempt status, 501(c)(3) organizations are prohibited from participation in political campaigns. Linking to a candidate's website or material that supports or criticizes a candidate poses risk, as does using your social media space to host an online forum or allow candidates to respond to questions unless the links or questions are neutral and all candidates are included equally or given an equal opportunity to participate.
This political prohibition extends to your employees. While the IRS permits nonprofit employees to advocate for or against candidates on their own time and dime, in social media the lines are easily blurred, e.g., if an employee is posting to their personal Twitter or Facebook account during business hours on a work computer, or if you encourage your employees to help spread the word about the organization's activities and they also post personal political views. If they will be posting about candidates on their own time, employees could be asked to include a disclaimer stating that their opinions are solely their own.
Employees in senior leadership positions need to be especially careful about commenting on candidates online, as they could be viewed as speaking for your organization even when they do not intend to represent it.
Employee social media use raises a host of other issues for you as a nonprofit employer. Major concerns include protecting the organization's confidential information and intellectual property, protecting client confidences for organizations serving individual clients, dealing with employee disparagement of the organization or other employees, and dealing with on- or off-duty harassing, racist, sexist or otherwise inappropriate behaviors.
Many nonprofits now address social media conduct in their employee handbooks and technology policies, or draft a separate social media policy.
The Perils of Posts
If your organization creates a social networking space for a certain client population, your staff might choose to participate in the conversations taking place, but they should refrain from offering specific legal, medical or psychological advice. Instead, offer referrals or invite users to come in for an appointment. Also consider including a disclaimer that your forums are not intended as a source of professional advice, but are for informational purposes only.
If you set up your social networking platform through a third-party service such as Facebook, they should have their own DMCA agent -- but you should still allow users to contact you with such complaints.
You also need to think about protecting your own intellectual property. If you own a trademark, you could actually lose protection if you don't actively monitor and control its use. Unlike the commercial world, where intellectual property misuse is often aggressively addressed, a nonprofit might want to be more sensitive to the situation, especially if the inappropriate use is coming from well-intentioned employees, volunteers, clients or funders that the organization does not want to alienate. But you must still take the necessary steps to protect your intellectual property, even via gently phrased "cease and desist" requests that aim to educate rather than threaten.
Most states have registration, disclosure and reporting requirements for organizations that solicit contributions, electronically or otherwise, within the state. Fundraising campaigns involving Facebook, Twitter or other social networking are relatively new, and state officials have not yet answered the question of to what degree user-propagated or viral campaigns trigger these requirements. However, the current treatment of website and email solicitation provides some guidance, and in response, the National Association of State Charities Officials (NASCO) has adopted informal, non-binding registration guidelines known as the "Charleston Principles."
Under the principles, if your nonprofit is specifically targeting a state's residents by affirmatively advertising or sending messages to them, or if you receive substantial or frequent contributions from a state's residents, you should register in that state. And keep in mind that fundraising can spread across state lines with the simple click of a "share" button. Some states, such as Florida and New York, have even taken the position that a nonprofit with a "donate now" button on its website is soliciting contributions from anyone with Internet access in their state and consequently is subject to the state's registration requirements.
The Multi-State Filer Project summarizes the various state registration requirements and provides information about the Unified Registration Statement, a common registration form accepted by many states.
Most states have enacted laws governing the collection of personal information from individual Web users. These laws often govern areas such as how the data must be protected, opt-out availability, and what steps an organization must take in the event of a data breach. Children's privacy is even more highly regulated.
That about sums it up. Remember, you can stay legal while being social! If you have any questions about these general tips, ask your lawyer.