Chapter Privacy Policy


ISACA Mauritius Chapter Privacy Policy 

Last Updated:  January 2026

This Privacy Policy describes how the Mauritius Chapter of ISACA (“ISACA Chapter”, ”we” or “us”) collects, uses, shares, and retains personal information when you use the ISACA Chapter at https://engage.isaca.org/mauritiuschapter/home (the “Site”), or when you interact with us in person.  Personal information is data that can be used to identify you directly or indirectly, or to contact you, including, but not limited to, your name, mailing address, email address, and telephone number. 

Please note that this Privacy Policy does not apply to information collected or used by the global ISACA websites or mobile applications, which is governed by the Privacy Notice located at https://www.isaca.org/privacy-policy. Also, this Privacy Policy does not cover the practices of any of our Chapter’s business partners (such as vendors, sponsors, or advertisers), and does not apply to personal information that we collect from or about our employees, consultants, contractors, vendors, sponsors, or advertisers.      

1. Modifications to this Policy

From time to time, we may need to update or modify this Privacy Policy to address changes in the law, new issues, or to reflect changes on our Site.  When we update this Privacy Policy, we will change the “Last Updated” date at the top of the Policy so you know it has been updated.  To the extent required by law, we will notify you of material changes to this Privacy Policy.  

2. International Visitors 

This site is intended for users in Mauritius and internationally. Data protection laws may vary by jurisdiction. The ISACA Mauritius Chapter adheres to the Mauritius Data Protection Act 2017 (DPA) and relevant international standards. With over 200 local chapters worldwide, you can find your nearest one by searching on ISACA’s Local Chapters page.    
We may transfer personal information outside Mauritius, including to ISACA Global and other ISACA Chapters worldwide, for governance, membership administration, certification, and event coordination purposes.
Where personal information is transferred internationally, we ensure appropriate safeguards are in place, such as contractual protections, ISACA global privacy standards, and security measures to protect your data in accordance with applicable laws.

3. Collection of Personal Information You Directly Provide

We collect personal information from you when you interact with our Site and when you use our services.  We may collect information directly from you through, for example, online and offline registration forms for events, exams, meetings, and other Chapter activities.

Events. We may host in-person and virtual conferences, training sessions, knowledge sharing events, and webinars. When you register for an event, we may collect information such as your first and last name, email address, phone number, business address, employer, ISACA membership status and professional certifications, payment information (processed securely by third-party payment providers), and professional interests or areas of study.
We use this information to manage registrations, participation, communications, certificates, and event logistics. Where information is not required for participation, it will be clearly identified as optional. If optional information is not provided, certain features or services may not be available.

Presenter. If you are a presenter at one of our events, we will collect information about you such as your name, employer, contact information and your photograph, and we may also collect information provided by event attendees who evaluated your performance as a presenter. 

Committee Member. We may also collect your personal information if you are a committee member, or when you assist with initiatives or projects, or when you serve as a Chapter Officer, or on the Chapter Board. 

Chapter Meetings.  We may also collect your personal information when you attend a Chapter Meeting. 

Communications.  If you communicate or correspond with us by email, through postal mail, via telephone, or through other forms of communication, we may collect the information you provide as part of those communications.  For example, if you correspond with us through email, we may collect and store the email address you use to send the applicable correspondence and use it to respond to your inquiry, to notify you of other ISACA Chapter events, or to keep a record of your complaint, accommodation request, and similar purposes. 

We may also maintain information about you that you do not directly provide, whether it is information received from third parties, such as business partners who provide exam administration services, or information we collect about your activities.  For example, we may keep track of which events you have attended, which exams you have taken, which boards and committees you have served on, and which offices you have held.

4. Passive Data Collection – Information We Automatically Collect

As you navigate through and interact with our Site, we may use automatic data collection technologies to collect certain information about your device (computer, tablet, smartphone) and your activities, including: 

If you access our Site through a computer, we may automatically collect information such as your browser type and version, IP address, device type, operating system, Internet service provider or mobile carrier’s name, date stamp, time spent on a page, click through, queries made, search results selected, comments made, search history, type of service requested, purchases made, and information collected through cookies, pixel tags, and other technologies.

If you access our Site through a mobile device, we may also be able to identify the location of your mobile device. We use your location information (if shared) to identify the geographic locations from which our content is accessed so that we can better understand what content topics may be most relevant in that region, and to develop resources around those content topics. You may choose not to share your location details with us by adjusting your mobile device’s location services settings. 

Cookies are small files, typically of letters and numbers, downloaded onto your computer or mobile device when you visit certain websites. When you return to these websites, or visit other websites that use the same cookies, the websites recognize these cookies and your browsing device. A cookie cannot read data off your hard drive or read cookie files created by other websites. You can set yours to refuse cookies, or to alert you when cookies are being sent; however, if you disable cookies, the full functionality of our Site may not be available to you.  More information on cookies and their use can be found at www.aboutcookies.org or www.allaboutcookies.org.

Cookies set by the website operator are called "first party cookies". Cookies set by parties other than the website operator are called "third party cookies". The parties that set third party cookies can recognize your web browser both when it visits our Site and when it visits certain other websites where the third party’s cookies are also present.  

On our Site, certain third-party advertisers may use cookies that collect data from you.  Some of those cookies may contain tracking mechanisms that observe your behavior across multiple Sites.  We do not control the use of cookies by advertisers or third parties displaying data on the Site or on the sites you visit using links from the Site. 

5. Why We Collect Your Information 

We will only use your information as described in this Policy or as disclosed to you prior to such processing taking place.  We may use your personal information:

  • To provide our services to you, such as registering you for events or training programs;
  • To respond to your requests;
  • To advise you with information about other events or services which we believe may be of interest to you;
  • To improve our services and to detect, prevent, and address technical issues; and
  • To enforce compliance with our agreements, codes of conduct, and this policy. 

We process personal information based on your consent, the performance of Chapter activities and services (such as event registration and communications), our legitimate interests in operating and managing the Chapter, and compliance with applicable legal obligations.

6. Sharing Your Information

We may share your personal information with third parties for legitimate business purposes, including in the following circumstances:

  • To vendors or third parties who deliver or provide services or otherwise act on our behalf or at our direction;
  • To our volunteers and board members, to provide our services.
  • To ISACA and other ISACA chapters, the IT Governance Institute, and if you participate in our “Enterprise Participation Program,” your information will be shared with your organization’s program coordinator.
  • If you are an event attendee, speaker, or sponsor, certain of your information will be included in the event roster, which roster may be shared with event sponsors or exhibitors, where applicable.
  • To investigate potentially fraudulent or questionable activities; and 

When we believe it is necessary to cooperate with law enforcement or in response to a government request, including if specifically requested or required, as otherwise permitted by law, and for other valid ISACA Chapter business purposes.

7. Data Retention 

We will retain the personal information for as long as is needed to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law (such as tax, legal, accounting, or other purposes).  When we have no justifiable business need to process your personal information, we will either delete or anonymize it.

8. Security 

We use reasonable measures to safeguard your personal information, and follow applicable laws regarding safeguarding such information under our control.  We cannot, however, guarantee that your information will remain 100% secure.  The Internet, by its nature, is a public forum, and we encourage you to use caution when disclosing information online.  Often, you are in the best situation to protect yourself online. You are responsible for protecting your username and password from unauthorized access and for selecting secure passwords.

9. Your Choices

If you receive commercial electronic communications from us, you can unsubscribe from future communications by clicking on the “unsubscribe” link provided in such communications.

In accordance with the Mauritius Data Protection Act 2017, you have the right to request access to your personal information, request correction of inaccurate or incomplete information, object to the processing of your personal information, request deletion of your personal information where legally permissible, and request restriction of processing in certain circumstances.

To exercise these rights, please contact us at contact@isacamauritius.org and specify the information you would like to access, correct, or delete. For your protection, we may need to verify your identity before processing your request. We will respond as soon as reasonably practicable and may refuse requests that are manifestly unfounded or excessive or charge a reasonable administrative fee, as permitted by law.

Complaints

If you have concerns about how we process your personal information, please contact us using the details above. You also have the right to lodge a complaint with the Mauritius Data Protection Office (Data Protection Commissioner) if you believe your personal information has been processed in violation of the Mauritius Data Protection Act 2017.

10. Links to Third-Party Sites 

From time to time, we will provide links to third-party websites, or advertisements will contain links to third-party sites.  For example, we may link to a third party that assists with or provides online training services.  These links are provided as a service to you.  These third-party sites are operated by independent entities that have their own privacy policies.  This Privacy Policy does not apply to those third-party sites or to how those third parties may collect or use your personal information.  We have no control over the content displayed on such third-party sites, nor over the measures, if any, that are taken by such sites to protect the privacy of your information.  

11. Children

The ISACA Mauritius Chapter does not knowingly collect personal information from individuals under the age of 16.
If you are a parent or guardian and believe that your child has provided personal information to us, please contact us using the details below, and we will take appropriate steps to remove the information.

12. Contact Information

If you have questions or concerns about this Privacy Policy or how we process your personal information, please email us at contact@isacamauritius.org