ISACA SG is located in Singapore. If you are providing personally identifiable information and are not a resident of Singapore, your country’s laws governing data collection and use may differ from those in Singapore, in particular, Singapore may not provide the same level of protections as those in your own country. By providing information to ISACA SG, you are transferring your personal data to Singapore, and you consent to the transfer to, retention of and processing of your data in Singapore.
Collection of Personally Identifiable Information
ISACA SG collects and maintains a variety of personally identifiable information, including email addresses, phone numbers, credit card and other payment information, business and home addresses, as well as demographic information such as courses or areas of study in which you may be interested. ISACA SG collects information directly from you through, for example, online registration forms, as well as offline, through exam or event registration forms. Information is collected and maintained from members, exam candidates, applicants, event attendees, speakers, participants in ISACA SG programs, purchasers of ISACA SG products and services, current and past web site users, survey respondents, and others. To the extent that information requested is not required for your participation in a given ISACA SG program, you will be told which information is optional. Should you fail to provide optional information, certain ISACA SG programs or features may not be available to you. ISACA SG may also maintain information about you that you do not directly provide, whether it is information received from third parties, such as business partners who provide exam administration services, or information ISACA SG collects about your activities. For example, ISACA SG keeps track of which events you have attended, which exams you have taken, which boards and committees you have served on, and which offices you have held.
Passive Online Data Collection
Online Professional Networking Features – Public Display of Information
Online web site users should be aware that our professional networking features are public in nature, thus any contributions and postings you make to our Site will be viewable by other web site users, and will be associated with the personally identifiable information in your public profile (which includes your name, user name, and other optional information you may choose to include). If you decide to participate in our professional networking features, keep in mind that your personally identifiable information (for example, your name and online name), along with any substantive information you disclose in the communication you decide to post, will be publicly accessible and viewable by others who visit that area. In addition, we may highlight certain users’ postings or contributions to other members of the professional networking features. For example, those who participate actively in our social networking features, like contributing materials and engaging in certain online activities, will be listed as “active members” in a roster that is viewable by all other registered users. It is possible that your posting may result in unsolicited messages from third parties. Such activities are beyond the control of ISACA SG, and ISACA SG makes no guaranties about the discoverability of your identity.
Use, Sharing and Retention of Personally Identifiable Information
ISACA SG uses personally identifiable information for the purposes described at the time of collection or as otherwise described to you, to process your requests, and to report to others about whether you are certified or not. ISACA SG also publishes the names, titles, country and business affiliations of officers, committee members and others who have assisted with initiatives or projects. ISACA SG also uses your information, as permitted by law, to provide you with information about ISACA SG, our products and services or other products and services in which we believe you may be interested, or for other legitimate ISACA SG business purposes, including order processing, processing of certification or membership applications, or registering you for event or training programs. We may also use your personally identifiable information to tailor your experience at our Site, to compile and display content and information that we think you might be interested in, and to provide you with content according to such preferences. ISACA SG may share personally identifiable information with third parties for legitimate business purposes, including for the following reasons or in the following circumstances :
• To vendors or third-parties who deliver or provide goods and services or otherwise act on behalf of or at the direction of ISACA SG, which third parties include, for example, exam testing agencies and training providers and partners, product-fulfillment companies, third-party event hosts, other third parties who may provide services on web sites that are accessible from links on our Site, and credit card companies processing payment;
• To ISACA SG volunteers and board members;
• To other ISACA chapters, the IT Governance Institute, and if you participate in our “Enterprise Participation Program,” your information will be shared with your organization’s program coordinator;
• If you are an event attendee, speaker, or sponsor, certain of your information will be included in the event roster, which will be publicly disclosed, and may also be shared with third-party event sponsors and exhibitors; • To those who wish to determine if you are certified, your certification status will be shared with those who inquire; • To investigate potentially fraudulent or questionable activities; • In anticipation of and in the course of an actual or potential sale, reorganization, consolidation, merger, or amalgamation of all or part of our business or operations; and
• When we believe it is necessary to cooperate with law enforcement or in response to a government request, including if specifically requested or required, as otherwise permitted by law, and for other valid ISACA SG business purposes.
ISACA SG also may use your profile information on an aggregate basis – without personal identifiers – to provide third parties with information, such as to help us develop new features and content for the Site, and to provide Sponsors and others with aggregate information about our users and the usage patterns of the Site. ISACA SG retains personally identifiable information for as long as necessary for its legitimate business purposes, and as otherwise permitted by applicable law.
ISACA SG uses reasonable measures to safeguard sensitive personally identifiable information, which measures are appropriate to the type of information maintained, and follows applicable laws regarding safeguarding any such information under our control. In addition, in some areas of our Site, ISACA SG may use Secure Socket Layer (“SSL”) or Transport Layer Security (“TLS”) encryption technology to enhance data privacy and help prevent loss, misuse, or alteration of the information under ISACA SG's control.
ISACA SG cannot guarantee, however, that your information will remain secure. The Internet by its nature is a public forum, and ISACA SG encourages you to use caution when disclosing information online. Often, you are in the best situation to protect yourself online. You are responsible for protecting your username and password from third party access, and for selecting passwords that are secure.
Links to Third-Party Sites
Your Privacy Rights Relating to Certain Information Disclosures
If you have an established business relationship (which includes membership) with us, you may request from us a list of the categories of personal information we have disclosed to third parties for those third parties’ marketing purposes, and a list of all third parties to whom we have shared that information. We will include in that list the names and addresses of the third parties who have received the information and used it (or who we believe may have used it) for their own marketing purposes. To exercise your rights, you may make one request each year by emailing us at email@example.com or writing to us at the address listed in the “How to Contact ISACA SG and Modify Your Information or Preferences” section below. Indicate in your letter that you are making a “Shine the Light” inquiry. Responses to requests sent to this email address or the mailing address listed below will be provided within 30 days.
How to Contact ISACA SG and Modify Your Information or Preferences