“`html
In April 2026, the UK’s Information Commissioner’s Office confirmed new guidance around the Charitable Purpose Soft Opt-In rules under the Data (Use and Access) Act 2025. For charity fundraising managers, this is either a significant opportunity or a serious compliance trap — depending entirely on how well you understand what has actually changed. Get it right and you can build stronger, longer supporter relationships. Get it wrong and you are looking at complaints, unsubscribes, reputational damage, and potential ICO scrutiny. This post cuts through the noise so you know exactly where you stand.
What the Charitable Purpose Soft Opt-In Actually Means
Previously, charities generally needed explicit consent before sending fundraising emails or text messages. Under the new charitable soft opt-in rules, charities can now contact individuals electronically without traditional marketing consent — but only if all of the following conditions are met:
- The individual has shown interest in your charity or supported its charitable purpose
- You collected their details directly
- They were given a clear opportunity to opt out at the point of collection
- Every message you send includes a simple, visible unsubscribe option
This applies to email marketing, SMS, and some social media direct messaging. It sounds straightforward. It is not. Because the conditions are specific, and the details matter enormously.
The Biggest Mistake Charities Will Make in 2026
Plenty of organisations will assume this rule change means they can now contact their entire existing database. They cannot.
The ICO has been explicit: the charitable soft opt-in does not automatically apply to historic records collected before the rules came into force. If you gathered supporter data years ago without a proper opt-out process in place, you cannot retroactively treat those records as soft opt-in compliant.
This is where many charities are about to discover their CRM systems are far messier than they realised. Most charity databases were built for fundraising convenience, not future compliance auditability. That is an uncomfortable truth, but it is better to face it now than after a complaint lands with the regulator.
What Fundraising Managers Need to Review Right Now
Your Data Capture Process
Every touchpoint where you collect supporter information needs reviewing. Donation forms, event registrations, petition sign-ups, merchandise purchases, volunteer applications — all of it. For each one, ask yourself: are you clearly explaining why you are collecting data, how you will contact them, and how they can opt out? If not, your soft opt-in position is legally weak before you have even sent a single email.
Your CRM Segmentation
This is where it gets serious. You now need your CRM to distinguish clearly between full consent contacts, soft opt-in contacts, postal-only contacts, suppression lists, historic records, and event-generated contacts. Not all supporters can legally receive the same communications. And one point that will catch many organisations out: third-party marketing lists are not soft opt-in compliant. Full stop.
If you are using B2C data for prospecting or supporter acquisition, that data operates under a completely different consent framework and must be treated accordingly.
Your Unsubscribe Process
The unsubscribe mechanism in every communication must be visible, functional, and simple to use. If supporters struggle to leave your mailing list, you are not protecting supporter trust. You are actively damaging it. That is both a compliance issue and a reputational one.
5 Practical Steps for Fundraising Managers
- Audit your database — when records were collected, how they were collected, and what permissions currently apply
- Review every data capture form — donation pages, event sign-ups, downloads, volunteer forms, everything
- Fix your CRM structure — proper permission tracking and segmentation is no longer optional
- Rewrite your privacy messaging — in plain English that a supporter can actually understand
- Train your team — fundraising, marketing, and supporter care staff all need to understand what soft opt-in means and what it does not mean
The Real Fundraising Opportunity Here
Now for the commercially important part. Done properly, this rule change genuinely helps charities. Historically, many organisations lost contact with supporters immediately after a one-off donation, event, or petition sign. There was no lawful basis to continue the relationship. Now there is more flexibility to do exactly that.
Long-term donor value comes from ongoing engagement, storytelling, trust, and emotional relevance. The charities that benefit from these new rules will not be the ones sending more emails. They will be the ones sending better, more relevant, more human communications. The Data & Marketing Association has long emphasised that data-led, consent-aware marketing consistently outperforms volume-led approaches — and that principle applies directly here.
This is not just a legal change. It is a strategic one. The old fundraising model chased consent at all costs. The new model is about building transparent supporter relationships properly. One is transactional. The other is relational. Supporters can feel the difference immediately.
If you work with external data suppliers or run prospect acquisition campaigns alongside your supporter retention activity, it is also worth reviewing how your B2C data strategy aligns with these updated rules. The two sit alongside each other, but they are governed differently and should never be mixed without clear segmentation in place.
Ready to Clean Up Your Data Strategy?
The charities that come out ahead in 2026 will be the ones that respect supporters, segment intelligently, and treat data responsibly. The law has created more flexibility — but flexibility without a proper strategy tends to become chaos, and chaos is expensive. If you want to talk through your data approach or need compliant, well-segmented data to support your fundraising activity, take a look at our data pricing options or get in touch with the team at Data Bubble.
Frequently Asked Questions
Does the charitable soft opt-in apply to data I collected before April 2026?
Not automatically, no. The ICO has been clear that historic records collected without a proper opt-out opportunity in place cannot simply be reclassified as soft opt-in compliant. You need to audit those records carefully and assess each segment individually before using them for electronic fundraising communications.
Can I use a bought or rented mailing list under the charitable soft opt-in rules?
No. Third-party marketing lists — including data purchased or rented from a data broker — are not covered by the charitable soft opt-in. That exemption only applies where the charity collected the individual’s details directly. Bought lists operate under a separate consent framework and must be used accordingly.
What happens if a charity gets this wrong?
At minimum, you risk increased unsubscribe rates, supporter complaints, and reputational damage. At worst, you risk regulatory action from the ICO, which has the power to issue significant fines under UK GDPR and PECR. Getting your data governance right now is far cheaper than dealing with the consequences of getting it wrong.
“`
