Safety & privacy
Blood Donor Data Privacy Best Practices
A checklist for platforms, NGOs and organisers.
Design rules
Verified consent at capture; channel preferences honoured mechanically; numbers never rendered on public pages; area-level location only; deletion that actually deletes.
Operational rules
Access logs for anyone viewing contact data, coordinator NDAs, encrypted-at-rest storage, and never emailing spreadsheets of people.
Cultural rules
Treat every donor number as a promise: relevant contact only. The first spam call is where donor networks start dying.
Frequently asked questions
How does HelpALife implement these?
Session-verified OTP contacts, no public directory, donor-controlled radius/channels/pause, and admin access limited to allow-listed coordinators.
What's the single most common failure?
The 'helpful' volunteer forwarding the full donor sheet to another group — access control beats good intentions.