About the May Meetup
We had a great meetup at the Frick Art & Historical Center on May 3! Many new faces and lots to discuss. A big “thank you” to Linda and the Frick staff for hosting us! Next month we will be at Computer Reach for our “Open Source Summer Fiesta” meetup, where we will have our usual meeting and spend some time receiving a demo of open source software and a tour of Computer Reach’s facility. Mark your calendar for June 7!
Here are the notes and resources from this meetup:
- An attendee Googled their organization’s name recently, only to learn that their Force.com site was set up improperly and that their entire database was open for the world to access. Warned the rest of us that Force.com should not be set up as the main CRM tool for an organization and that when used along with core Salesforce, should still be made secure and be given 2 factor authentication.
- If implementation goes poorly (as mentioned above), document, document, document. Also have cybersecurity insurance in place in case records are accidentally hacked or released and the organization faces a lawsuit.
- See if old sites are on the Google Wayback Machine, which is like a cache for websites.
- Local implementers of Salesforce include:
- HTTPS protects data being transmitted to and from a website.
- Having it in place can help to boost public perception and build trust.
- Still need security to protect site from hacking attempts.
- Let’s Encrypt tool is a free SSL option.
- Need a dedicated IP with the host to do SSL.
- Can be expensive to implement, depending on what you decide to use for SSL certificate. Hosts aren’t generally too helpful about support re: site conversions.
- Dreamhost is a good host – very good at support and they offer Let’s Encrypt.
Upgrading Windows 7 to Windows 10
- It can take a while to get Windows 10 to install properly if upgrading. Installing from scratch seems to work just fine though.
- Don shared these links after the meeting:
- Dell is currently shipping many PCs as “Windows 10” but when you get them, they have Windows 7 and you have to do the upgrade yourself.
- How to keep Windows 10 from automatic discovery and installation of printers: go to File/Print Sharing and turn off the print share feature. Microsoft still has driver compatibility issues with certain copiers/printers in Windows 10.
- Turn off “User Experience Feedback” so it doesn’t slow down the network.
- Windows 10 S was just released.
VoIP (Voice over Internet Protocol)
- One channel for Internet and voice data (phone systems).
- Vendors are selling phone services based off their own servers, but it’s better to have an in-house server.
- Cisco is a VoIP phone vendors, as is Avaya. Avaya seems to be better for smaller organizations.
- An in house server also has the advantage of being a capital expense (can be depreciated).
- You still have to have a really good Internet connection for VoIP to work well.
- connecTel is a local telecom broker – will assess your contracts for free and advise you on best configuration and how to save the most money in the process.
- DQE Communications and Level 3 Communications are fiber-optic Internet providers.
We held our last meeting at Grow Pittsburgh for this year on April 5. Thank you Deidra and the GP staff for hosting us again! The weather finally appears to be warming up and we are looking forward to seeing everything in bloom next month when our meeting happens at the Frick Art & Historical Center on May 3!
Notes and resources from this month’s meeting:
- MAAS 360
- Protect mobile data
- Can remotely wipe data for lost devices
- Can pull out app shortcuts onto your phone desktop
- Free up to 10 licenses
- Not free to develop it out
- How to clean up data?
- Sometimes have to change your business process (like how data gets input)
- When importing historical data, its frequently advisable to clean it up first
- There are apps available for data cleanup that work with Salesforce
- There are dupe record catching mechanisms built into Salesforce, but if data input is too different, they won’t catch everything
- Set your data input policies in advance (example: abbreviations vs. spelling things out – St. vs. Street)
- Average time to convert to a new database varies, typically 1-2 years
- Need to think about the cost of holding onto bad data
- How much data do you really need to bring over from the old system? You don’t carry all your assets in your pocket as cash, you may not need to carry all your data around in a single system either
- Data/email cleanup idea: send an email around offering a drawing for a gift card to see who responds
- Email integration with databases
- Finding funding for technology
- Write tech consistently into all of your grant proposals
- Don’t be afraid to write separate proposals for technology too
- Accessibility (non-tech discussion)
We had a great meeting again at Grow Pittsburgh! Thank you again to Rebekah and GP staff for hosting us! (We will be back at GP for the April meeting on 4/5, then we go to the Frick Art & Historical Center in May.)
Here are the notes and resources from the meeting. Note that we concentrated very specifically this month on questions and issues raised by group members.
Data security audits for nonprofits
- Assume banking standards because of donor-related info?
- HIPAA compliance required for health care orgs
- PCI-DSS – annual certification needed if accepting credit cards – there’s a 120 page document used to verify compliance on various systems
- Trustwave – scans monthly for testing purposes
- TransArmor – a security solution from First Data
- Think about all security systems by going through PCI certification doc
- PCI-DSS – limited where info is stored, who has access, etc.
- If keep paper copies of credit card data, only liable for that – must keep locked up and have procedures in places for storage and destruction
- If using 3rd party online service, compliance is on them
- In PA, if a single record in the database is compromised, the organization is liable for $60-70 fine per person for a mandatory three years of a monitoring service
- Idea: take risk analysis to executive director for org (to prove need to take action and/or make case for changes)
- Many nonprofits are already in a crisis state and don’t need additional problems added to that
- PNC Bank does not do merchant services – they resell for First Data
- In terms of credit card processing, there are really only three processors, with everyone else being resellers: First Data, World Link and ______ (group couldn’t think of third company)
Phone systems, vendors, best practices for implementations
- If don’t want cloud-based system, what are options? (Want phones that work when Internet goes down)
- Also want to depreciate as capital expenditure
- Avaya vendor – Advent Communications (pricey for support, but don’t have to call often – very stable)
- Can use a broker to do your telecom research and pricing negotiation for you – Connectel, Opticom Consulting
- Full Service Network – phone vendor, cloud-based retailer – not good for Internet service, only phones
- Computer Reach – has put in phones, vendor in California
- Internet configuration – suggest Internet router separate from phones so heavy network traffic doesn’t knock out phone system
- Prime Communications – sell MyTel system
- Guardian – owned by Armstrong Cable
OneDrive for Business if no Office 365 or Sharepoint
- OneDrive is integrated with Windows 10
- Hotmail is also integrated into OneDrive now
- Can now simultaneous work in docs on OneDrive
- TechSoup has Office 365 for $0, but need to purchase other things for it to be fully functional
- Tech Impact provides migration services for eligible organizations via TechSoup (it’s a partnership – there’s a $10 fee for an assessment first)
If leaving your tech job, what should you document and share with the incoming person?
- Keep a list of your daily activities for one month
- Make other lists for weekly/monthly tasks
- Propose that your org hires you as an independent consultant for a month or two
- Refer to job description, then list all possible jobs the person might need to do under each heading
- Get the info out of your head and onto paper
- Think about the spinning plates act on the Ed Sullivan show – china plates spin most easily but are hard to replace, so are more important (critical tasks). Paper plates are harder to spin but easy to replace, so are less important (busy work).
- Verbal only – give them the political read on people and relationships – but watch what you say because it’s a small nonprofit world in this geographical area
Thank you to everyone who attended our first meeting of the new year at Grow Pittsburgh, and a big thank you to Rebekah and the Grow Pittsburgh team for hosting us!
Our next meetup will take place at the same location on Wednesday, March 1 from 8:30-10 am.
Here are the notes and resources from the meeting:
Affordable wi-fi hotspots available from Mobile Citizen, a division of Sprint
- Up to 10 people can connect to it
- 25 MB encryption
- Available to any nonprofit or household
- You pay for the Franklin R450 hotspot (~$79 + $9 shipping), then $120 for a year of service
- Visit MobileCitizen.com and submit NPO information
- Have to re-certify annually
- Coverage is anywhere Sprint has coverage (Sprint owns most of the cellphone infrastructure in the U.S.)
- Cannot tether with it
- Tech support is reportedly very good
- If you have questions, email Dave Sevick at Computer Reach, firstname.lastname@example.org
- Cradlepoint – can plug old Verizon connectivity stick into it; will act like a landline router
- Salesforce Users Group
- Next meeting is Feb. 15
- Trailhead.salesforce.com for learning (user/admin/developer)
- Local Salesforce consultants include:
- LISC – grant through Neighborhood Allies, has been used in the past for Salesforce assistance by one of the attendees
- Tell them how to do it
- Show them how to do it
- Have them do it
- Ransomware – story about Italian hotel computer system held for ransom by hackers
- What are nonprofits doing about cryptoware and ransomware?
- Education is important – educating your staff and volunteers not to fall for scams in emails
- AV software only does so much good to guard against this
- Don Rowe and his colleagues are working on a few scripts to help guard against this (for example, one script would unmount the hard drive so it couldn’t be hijacked)
- Most NPOs don’t seem to be creating disaster recovery plans – we need to get better about this
- It’s important to check your ability to restore backups on a regular basis
- Crashplan – online data backup
- If ransomware were to take over your computer, the best thing you can do is shut it down, disconnect from the Internet and call someone for help
- Software tools
- A small office needs, at a minimum:
- Spam filtering appliance
- Management will always make the argument of convenience vs. risk – IT is sometimes forced into poor practices (If you are an IT worker in this boat, document everything to CYA)
- NPOs or government agencies can submit a challenge to be worked on during the event
- Deadline to submit is Valentine’s Day
- Developer groups/teams can also sign up
- Visit the website to submit a challenge
We had a great time at our Bagels & Bytes Holiday Party last Friday! Thank you to everyone who came out for the meeting/party. We chose to keep the meeting over lunch informal and to leave note-taking for another time. Therefore, photos are the only content available from this particular meeting.
Please note, there is no January meeting for the Allegheny group. The next meeting will be held on Wednesday, Feb. 1 from 8:30 – 10 am at Grow Pittsburgh. Happy holidays!!
We thought posing in front of the Star Trek machine would be fun and geekily appropriate!
Our annual ski-ball competition! First round winner (Katie) received an NTEN shirt.
The second round winner was Katie again (who declined the prize), so Nicole and Joe faced off for a copy of “The Shallows” by Nicholas Carr (which Joe won).
We held our last regular meetup of 2016 at ACHIEVA in the South Side. Thank you to Nicole, Steve, Dave and the rest of their staff for hosting us!
Our next meetup will be the Bagels & Bytes Holiday Party at Dave & Buster’s on Friday, 12/9 from 1-4 pm. As in the past, we will have our regular meeting in the dining area (each person buys his or her own meal and Cindy will get some appetizers for all), have a “techie white elephant” gift exchange and then go play some games. A reminder email will be coming out within a week or so.
Here are the notes from November’s meetup:
- Backups are critical
- There’s typically a time period of 120 days from the time something happens until the time it is discovered
- Backups should not by attached or kept close to the main data server or source – need to store copies off-site
- Have a social media policy to combat potential info security compromises in that area – nothing is truly private on social tools
Programs Related to Technology that Employ (or Engage as Volunteers) People with Disabilities & Veterans
- Dave Tinker mentioned a program that ACHIEVA is doing in conjunction with CMU for their residents to perform microjobs online
- Cycle Point (part of Source America and partners with Goodwill of SWPA) employs people with disabilities and veterans (located in DC)
- Computer Reach particularly is interested in finding veterans to volunteer at their org
Salesforce Database Conversions (What to Expect)
- All data gets put into spreadsheets and is then cleaned (usually by the organization not the vendor)
- Lot of effort to go through an implementation like this, but well worth it in the long run
- Best to keep the same vendor contact during the entire implementation process if possible
- There is a learning curve involved but it’s great once everyone is trained and things are up and running properly
- Cool plugin for Salesforce is Gridbuddy – it makes the database display data in spreadsheet format
- There’s an annual conference called Dreamforce
- Katie Gascoine shared a local Salesforce-related event called Dreamforce Comes to You (#DFC2U) that happened on Nov. 14 (sorry I didn’t post this in time!)
AFP National Philanthropy Day
- Example/question given was about an organization moving from paper forms being entered in database to direct entry of data (and the resistance being encountered by staff and volunteers)
- Training is essential
- Important to get buy-in from staff and volunteers, preferably before rolling out a change
- Need support from management – they have to have your back and hold staff/volunteer accountable for making the necessary changes
- Can also gamify or incentivize the change – figure out a way to make it fun
Other Items of Interest
We met this month at ACHIEVA in the South Side. Thank you to Steve, Nicole and Dave for hosting us! We’ll be back at ACHIEVA for November’s meetup.
Here are the notes from this month’s meetup:
- Schneider Downs – does security updates via email
- Cars can be hacked
- Cybersecurity insurance
- Cybersecurity conferences
- Website hacking / security – how do you secure your website from hackers?
- MS Office – no more clipart
- Get images from Bing.com now
- Have to watch for viruses when getting images off the web
Databases for nonprofits
Mobile Internet Hardware
- How to get Internet when working in places without it or when travelling abroad?
- Mobile hotspots or devices that provide wi-fi
- Verizon Jetpack (can get global plans)
- Connect 10 users to one and devices can talk to each other
- Data plan required
- Verizon has nonprofit flat rate for NPOs, unlimited data, domestic only
- Can buy SIM card, swap out, use that country’s domestic plan while traveling
- T-Mobile 2G (unlimited international data)
- Satelite wi-fi
- When build websites
- Have to consider slow internet
- Consider audience
- Google Fiber – setting up in cities where city owns infrastructure