Modifications to this Policy
If you are providing personally identifiable information and are not a resident of the United States, your country’s laws governing data collection and use may differ from those in the United States, in particular, the U.S. may not provide the same level of protections as those in your own country. By providing information to ISACA Chapter, you are transferring your personal data to the United States, and you consent to the transfer to, retention of and processing of your data in the United States.
Collection of Personally Identifiable Information
ISACA Chapter collects and maintains the following information: name, email address, dietary restrictions, and meeting attendance/registration information. ISACA Chapter collects information directly from you through, for example; online event registration, third party payment processor (Payment notifications), other communications media such as email. Information is collected and maintained from members, non-members, event attendees, speakers, current and past website users, survey respondents, and others. To the extent that information requested is not required for your participation in a given ISACA Chapter event, you will be told which information is optional. Should you fail to provide optional information, certain ISACA Chapter programs or features may not be available to you.
ISACA Chapter may also maintain information about you that you do not directly provide such as payment processors and ISACA International. ISACA Chapter uses/accesses information about members of the chapter including information mentioned above as well as employer, title, ISACA affiliation information, home address, work address, phone number, and meeting payment information (credit cards are accepted but are processed and information is stored by a third party).
Passive Online Data Collection
Use, Sharing, and Retention of Personally Identifiable Information
ISACA Chapter uses personally identifiable information for the purposes described at the time of collection or as otherwise described to you; to process your requests; to report to others about whether you are certified or not; as permitted by law to provide you with information about ISACA Chapter, our products and services or other products and services in which we believe you may be interested; or for other legitimate ISACA Chapter business purposes, including order processing, processing of certification or membership applications, or registering you for event or training programs. We may also use your personally identifiable information to tailor your experience at our sites, to compile and display content and information that we think you might be interested in, and to provide you with content according to such preferences. ISACA Chapter also publishes on our website the names, titles, certification status, and business affiliation of chapter officers.
ISACA Chapter may share personally identifiable information with third parties for legitimate business purposes, including for the following reasons or in the following circumstances:
- To vendors or third-parties who deliver or provide goods and services or otherwise act on behalf of or at the direction of ISACA Chapter, which third parties include, for example, exam testing agencies and training providers and partners, third-party event hosts, other third parties who may provide services on web sites that are accessible from links on our Site, and credit card companies processing payment;
- To ISACA Chapter volunteers and board members;
- To ISACA and other ISACA chapters, the IT Governance Institute, and if you participate in our “Enterprise Participation Program,” your information will be shared with your organization’s program coordinator;
- If you are an event attendee, speaker, or sponsor your information will be included in the event roster and this information may also be shared with third-party event hosts;
- To investigate potentially fraudulent or questionable activities, and;
- When we believe it is necessary to cooperate with law enforcement or in response to a government request, including if specifically requested or required, as otherwise permitted by law, and for other valid ISACA Chapter business purposes.
ISACA Chapter also may use your profile information on an aggregate basis – without personal identifiers – to provide third parties with information, such as to help us develop new features and content for the Site, and to provide Sponsors and others with aggregate information about our users and the usage patterns of the Site.
ISACA Chapter retains personally identifiable information for as long as necessary for its legitimate business purposes, and as otherwise permitted by applicable law.
ISACA Chapter uses reasonable measures to safeguard sensitive personally identifiable information, which measures are appropriate to the type of information maintained, and follows applicable laws regarding safeguarding any such information under our control. In addition, in some areas of our Site, ISACA Chapter may use Secure Socket Layer (“SSL”) or Transport Layer Security (“TLS”) encryption technology to enhance data privacy and help prevent loss, misuse, or alteration of the information under ISACA Chapter control.
ISACA Chapter cannot guarantee, however, that your information will remain secure. The Internet by its nature is a public forum, and ISACA Chapter encourages you to use caution when disclosing information online. Often, you are in the best situation to protect yourself online. You are responsible for protecting your username and password from third party access, and for selecting passwords that are secure.
Links to Third-Party Sites
How to Contact ISACA Chapter and Modify Your Information or Preferences
To help us keep your personal information up to date, or to request access to the personal information ISACA Chapter maintains about you, you may contact any of the officers listed on our website via email.
ISACA Chapter does not believe its website is appealing to children, nor are they directed to children under 13. ISACA Chapter does not knowingly collect personally identifiable data from persons under the age of 13, and strives to comply with the provisions of COPPA (the Children’s Online Privacy Protection Act). If you are a parent of a child under 13, and you believe that your child has provided us with information about him or herself, please contact any of the officers listed on our website.