Most small charity boards run on email. Agendas, board packs, minutes, that one policy someone swears they circulated back in 2022 – it all lives in inboxes. It works, right up until it doesn’t.
The fix is to give your board a single, secure home for meeting papers, decisions and actions, and to pick something simple enough that no trustee needs a training course to use it. Here’s how to make the move without the upheaval.
Why email quietly becomes a problem
Email feels free and familiar, but it creates risk in the background. Board papers end up scattered across a dozen inboxes, version control disappears, and confidential documents sit in personal accounts with no oversight.
It’s also a weak point for security. Around three in ten UK charities reported a cyber breach or attack in the past year, and phishing – fraudulent emails – was by far the most common method used against them. Board minutes and financial papers are exactly what an attacker wants, and a busy inbox is an easy way in.
The admin problem nobody plans for
Here’s the issue that catches boards out. When your secretary, treasurer or CEO moves on, your governance history often walks out of the door with them.
If your papers, minutes and decision trail sit in one person’s email account, that knowledge isn’t really the charity’s – it’s theirs. Getting it back can mean awkward requests, missing documents and gaps in your records at exactly the moment an auditor or regulator asks to see them. A board portal keeps everything in the charity’s own account, so a change of personnel becomes a tidy handover rather than a scramble.
Move board Off Email – Making the switch
The biggest worry trustees usually have isn’t the technology — it’s whether less confident board members will actually use it. That’s a fair concern. If the platform is complicated, people will quietly retreat to email and you’ll be running two systems at once.
Governance360 was built by people who’ve sat on boards themselves, which shapes how it works in practice. Setup is straightforward — most boards are up and running within a day. There’s no jargon-heavy onboarding, no training course required, and the interface is designed for someone who logs in six times a year rather than every day. Trustees can access papers, review documents and see their actions without needing to remember a complicated login process.
It’s also worth starting small. You don’t have to migrate everything at once. Pick your next board meeting, upload the papers to the platform, and invite trustees to access them there instead of by email. If it works — and it usually does — carry on from there.
What to look for in a board portal
Not all board portals are designed with smaller charities in mind. Some are built for large corporate boards and come with pricing and complexity to match. When you’re evaluating options, a few things are worth checking:
- Ease of use for occasional users. Your trustees aren’t logging in daily. The platform needs to be intuitive for someone who comes back to it every six weeks.
- Organisation-owned accounts. Documents should belong to the charity, not to the person who set it up. If your clerk leaves, the records stay.
- Pricing that fits a smaller organisation. Enterprise platforms charge enterprise prices. There are purpose-built options available at a fraction of the cost.
- A free trial. Any credible platform should let you test it properly before committing. Governance360 offers a free trial so you can run a meeting through it before making any decision.
The bottom line
Email was never designed to run a board. Moving to a single, secure home for your governance protects the charity when people move on, cuts your exposure to phishing, and makes meetings easier to run. The trick is choosing something simple enough that the whole board comes along with you.
If you’d like to see how it works in practice, you can start a free Governance360 trial and move a meeting across to test it for yourself.
Sources & Follow-on reading
- Department for Science, Innovation and Technology, Cyber Security Breaches Survey — finding that roughly 30% of UK charities reported a cyber breach or attack in the previous 12 months, with phishing the most common type. Reported by Civil Society Media: https://www.civilsociety.co.uk/news/30-of-charities-experienced-cybersecurity-breaches-or-attacks-last-year-stats-show.html
- UK Fundraising summary of the Cyber Security Breaches Survey (charity phishing figures): https://fundraising.co.uk/2024/04/12/almost-a-third-of-charities-experienced-a-cyber-breach-or-attack-in-last-12-months-survey-finds/
- Governance360 – Board Portal for Small Organisations: https://governance360.com/platform/board-portal/