The challenge

The charity wanted a clear picture of its digital estate—especially CRM, data governance, security and core systems—to reduce risk, improve efficiency and set priorities for future change.

Our approach

• Listen and map: Staff and supplier interviews to understand needs, pain points and current ways of working.

• Assess the stack: System analysis across CRM, data flows and collaboration tools; review of controls and practices.

• Surface risk and effort: Structured risk assessment to highlight where issues were most likely and most impactful.

• Make it actionable: A concise report setting out findings, priority recommendations and a realistic sequence of actions.

Results / outcomes

• Practical roadmap: Clear steps to strengthen cyber resilience, replace the CRM and streamline data processes.

• Better collaboration: Recommendations to improve everyday tools and ways of working.

• Stronger governance: Actions to tighten data ownership, consent and retention.

• Ready for change: A foundation for future transformation focused on efficiency, security and a more user-friendly digital environment.

What we delivered

• Technology review and audit report (findings, risks, priorities)

• Risk register with likelihood/impact and mitigation actions

• CRM replacement recommendation and next-step options

• Data governance improvement plan

• Cyber security actions and phasing

• High-level roadmap with sequencing, owners and indicative effort

Outcome: a clear, credible plan to modernise the charity’s digital infrastructure —reducing risk today and enabling smarter, more secure ways of working tomorrow.