PRIVACY NOTICE. Privacy notice. What personal data we collect and the Legal Basis. Who are we? The personal data we would collect from/process on you

Similar documents
Our Data Protection Officer is Andrew Garrett, Operations Manager

PRIVACY POLICY. 1. Introduction

Clubs template privacy notice wording

Cellular Solutions and Services Limited and Cellular Solutions and Network Services Privacy Policy

CHASE GRAMMAR SCHOOL PRIVACY STATEMENT General Data Protection Regulations (GDPR)

Beam Suntory Privacy Policy WEBSITE PRIVACY NOTICE

Privacy Notice Alumni

Information you give us when you sign up to the World Merit Hub. In addition, when you sign up to the World Merit Hub, we will usually ask for:

PRIVACY POLICY. What personal data we collect and why we collect it IN ORDER TO: (Date of last update: 1 st January 2019)

Office of John Howell MP Data Protection Policy

Data Protection Policy

Chess Entries 4 All Website Privacy Policy

Privacy and Cookies Policy

Link Exhibitions Privacy Policy

Wesley House data protection statement and privacy notice (short-course delegates)

Last updated 31 March 2016 This document is publically available at

Data Protection Policy

This article will explain how your club can lawfully process personal data and show steps you can take to ensure that your club is GDPR compliant.

Part B of this Policy sets out the rights that all individuals have in relation to the collection and use of your personal information

DLB Privacy Policy. Why we require your information

Kidenza Community Interest Company PRIVACY POLICY

PRIVACY NOTICE: UK NARIC ANNUAL CONFERENCE

2. The Information we collect and how we use it: Individuals and Organisations: We collect and process personal data from individuals and organisation

Data Protection Privacy Notice

EIT Health UK-Ireland Privacy Policy

sportscotland Clubs template privacy notice wording

Website Privacy Notice

Privacy policy. Definitions and interpretation

ATHLETICS WORLD CUP PRIVACY NOTICE

Care Recruitment Matters Limited Privacy Notice

Our Data Privacy Statement Scope Responsibilities

A1 Complete Plumbing and Heating Limited Job Applicant Privacy Notice

BEAUTIFUL DRINKS LTD.

It applies to personal information for individuals that are external to us such as donors, clients and suppliers (you, your).

Aston Park Tennis Club. Privacy Policy for Members

All data subjects whose personal data is collected, in line with the requirements of the GDPR.

Privacy Policy. About Us

PS Mailing Services Ltd Data Protection Policy May 2018

For ease of reference, we have organised this Statement into the following click-through sections:

Wonde may collect personal information directly from You when You:

Oblong Europe Ltd- UK Data Privacy Policy

We respect your privacy and we promise to do the following: Without limitation, any of the following Data may be collected:

NHS R&D Forum Privacy Policy: FINAL v0.1 May 25 th 2018

Spree Privacy Policy

Inspiring Insights Ltd Privacy Policy - May Important Information. 2. The data we collect and how we store it.

Islam21c.com Data Protection and Privacy Policy

Privacy Notice For Ghana International Bank Plc customers

PRIVACY POLICY. Introduction:

Website and Marketing Privacy Policy

NOTICE OF PERSONAL DATA PROCESSING

One Sector Community Limited ACN ( OSC ) Privacy Policy

BIOEVENTS PRIVACY POLICY

Staff and Recruitment Privacy Notice Your personal information

Contract Services Europe

GDPR effects on Gift Aid. Presented by Keren Caird Business Development Gift Aid Manager Sue Ryder

Plus500UK Limited. Website and Platform Privacy Policy

CITY SECURITY MAGAZINE

Privacy Policy Identity Games

Bend Mailing Services, LLC, dba BMS Technologies ( us, we, or our ) operates the website (the Service ).

The West End Community Trust Privacy Policy

What kind of information do you collect, when and how?

About Us. Privacy Policy v1.3 Released 11/08/2017

Bournemouth Churches Housing Association: National Citizen Service (NCS) PRIVACY NOTICE

Privacy Policy. (GDPR compliance)

PRIVACY NOTICE (TIER 4)

Creative Funding Solutions Limited Data Protection Policy

DS MEDIA & EVENTS LTD PRIVACY POLICY

Data Protection policy

PRIVACY POLICY FOR WEB AND ONLINE TRADING PLATFORM

This Privacy Policy applies if you're a customer, employee or use any of our services, visit our website, , call or write to us.

Privacy Notice. Introduction. What is personal data? Date Updated: 2/11/2019

Within the meanings of applicable data protection law (in particular EU Regulation 2016/679, the GDPR ):

Privacy Policy. Information about us. What personal data do we collect and how do we use it?

DATA PROTECTION PRIVACY NOTICE PROTECTING YOUR PERSONAL INFORMATION: YOUR RIGHTS, OUR RESPONSIBILITIES

OMICRON ARE COMMITTED TO PROTECTING AND RESPECTING YOUR PRIVACY. We are Omicron Solutions Ltd (Omicron) and this is our Privacy policy.

The type of information that may be collected will vary depending on the means by which we collect it and includes:

Protecting your Privacy Winchester Cathedral Privacy Notice

Privacy Notice For Our Customers And Contacts

SCALARR PRIVACY POLICY

For our services, the data controller (the company that s responsible for your privacy), is Rent a Van 365 Limited. Registered address:

UNTITLED HIP HOP PROJECT Privacy Policy. 1. Introduction

Privacy Policy. Full name and contact details (including your contact number, and postal address).

Element Finance Solutions Ltd Data Protection Policy

Privacy Policy. Effective date: 21 May 2018

You can find a brief summary of this Privacy Policy in the chart below.

Starflow Token Sale Privacy Policy

Hertfordshire Natural History Society

PRIVACY NOTICE Olenex Sarl

1.3 Please follow the links below for further information. Where relevant, we have made a distinction between different categories of data subjects:

CURTIS BANKS LIMITED. Privacy Information Notice. curtisbanks.co.uk

Jefferies EMEA Privacy Notice

Janie Appleseed Network Privacy Policy

MAID2CLEAN (FRANCHISE) LIMITED

Promise Dreams Privacy Policy

NEWS CORP AUSTRALIA PRIVACY POLICY

Data Protection Policy - Sustainable Hackney

1. How we process Personal Data from and about you.

Kährs Group s Privacy Policy

Davenport Lawn Tennis Club April 2018

Keen Software House Privacy Policy

Transcription:

Page: 1 of 5 Privacy notice Who are we? The (ILC) is an independent chapter and affiliate of ISACA International, engaged in the promotion of the education of its members for the improvement and development of their capabilities relating to the auditing of, management consulting in, or direct management of the fields of IT governance, IS audit, security, control and assurance. Our data privacy representatives can be contacted directly here: dataprivacy@isaca-london.org 0207 1832211 What personal data we collect and the Legal Basis The personal data we would collect from/process on you Personal data type: Your registration details including ISACA membership number, certificate and dates of exam passed exams and certified, Payment Status, Certification Status Event registration details (Member/Non Member/Affiliate of ) Event Registration Details including Membership Number and CPE entitlement Name, personal contact details, Query Information Source: ISACA International Event Registration Partners Event Registration Queries from Members/Non Members The personal data shared by ISACA International The personal information shared by ISACA International is used to meet objectives as an affiliate of ISACA International (Article 6 1 f) and provide membership services to members. We use your personal data to provide following services:- Maintain your record of registration for attending the ILC event and share it with event venue host/provider to print and issue attendee badges for security, health and safety. Keep you informed of future ILC and partner educational events (including events, certification courses etc.)

Page: 2 of 5 Send you Newsletter and track the IP address to the demographic analysis of the geographical location of constituents. Contact you to participate in the relevant surveys and research initiatives supported by ISACA London Chapter. Contact you to participate in Annual General Meeting of the (applicable to fully paid up members of ISACA International and ). Personal Data collected by Eventbrite: only collects is the registration information that you provide when you register for ISACA London Chapter events in order to attend educational events. This event registration information is used by and its service provider and venue hosts to provide following services:- Issue event ticket, authenticate on arrival, provide with a name badge, record evidence of entry and attendance to the event to ensure compliance with security, health and safety requirements. If you are an ISACA member, your ISACA membership number and duration of the event will be passed on to ISACA International to update your central CPE records. For audit purposes, the information collected during this registration will be retained by ISACA- London Chapter for a maximum of five (5) years. If you are not an ISACA member, your registration data collected by will be erased within sixty (60) days of the event. If you are a member of a partner organisation, by virtue of which you are entitled to attend an ISACA event free of charge, we may pass on your event registration details to the participating Partner organisation. For any queries on how Eventbrite processes or use your personal information please consult Eventbrite Privacy Policy (Eventbrite Privacy Policy) Partners holding an event that you attended If you are a member of attending our partner events, participating partner may share your registration detail including ISACA Membership number, which we in turn would pass on to ISACA International to update your central CPE records. For audit purposes, the information collected during this registration will be retained by ISACA- London Chapter for a maximum of five years. Our legal basis for processing for the personal data: Due to (ILC) affiliation with ISACA International, ILC is required to process ISACA London Chapters members (subjects) data in order to provide membership services under its by-laws (affiliation agreement) with ISACA International. ISACA International is responsible for managing the consent directly. Please note that if you are fully paid up member of ISACA International or then please contact ISACA

Page: 3 of 5 International to withdraw your consent for processing of personal identifiable data by. You can withdraw consent directly using ISACA International website (www.isaca.org) Any legal obligation that is required to meet being a UK registered company; You can choose to opt out of ILCs newsletters and other communications by clicking the unsubscribe link at the bottom of our emails communication. If you wish to change your contact details or preferences please contact ISACA International. Security employs a risk based variety of technical and organisational measures to keep personal data safe and to prevent unauthorised access to, or use or disclosure of it. respect your personal data and will never sell your personal data to third parties. International Transfers The may use service providers who are based on non-eu countries. In such cases ISACA London Chapter will inform members and ISACA International list of sub-processors based in non-eu countries. currently uses following named organisations based in third country (non EU) as service providers and share your least amount of personal information to provide services to you outlined in previous sections. Third country (non- EU)/international organisation Eventbrite Mailchimp Safeguards in place to protect your personal data Privacy Shield. https://www.privacyshield.gov/partic ipant?id=a2zt0000000tnl5aag&stat us=active https://www.privacyshield.gov/partic ipant?id=a2zt0000000to6haag&stat us=active Retrieve a copy of the safeguards in place here: Eventbrite Privacy Policy Eventbrite, Inc. EU-U.S. Privacy Shield Notice Mailchimp Privacy Policy TRUSTe

Page: 4 of 5 Retention period will continue to process personal data of members whilst they are fully paid up members of ISACA International and. For information collected as part of event registration (via Eventbrite) process data for sixty (60) days and will store the personal data for up to five (5) years. We remove most information provided to us by members as soon as memberships are ceased, and data will cycle out of long-term backups up to six months later. We store logs of outbound emails for up to twelve (12) months after the email is sent for the purposes handling abuse complaints and compliance monitoring. We will continue to store limited information about our members (including transaction records?) for seven (7) years plus the current calendar year for accounting, audit, record keeping and administrative purposes. If we consider there is a need to store records for longer (for example, the transaction has been the subject of a dispute or claim) then we will retain the data for as long as is necessary. Your rights as a data subject You have a number of rights in relation to your personal information under data protection law. In relation to certain rights, we may ask you for information to confirm your identity and, where applicable, to help us to search for your personal information. Except in rare cases, we will respond to you within 30 days after we have received this information or, where no required, after we have received your request. At any point while we are in possession of or processing your personal data, you, the data subject, have the following rights:- Right of access you have the right to request a copy of the information that we hold about you. Right of rectification you have a right to correct data that we hold about you that is inaccurate or incomplete. Right to be forgotten in certain circumstances you can ask for the data we hold about you to be erased from our records. Right to restriction of processing where certain conditions apply to have a right to restrict the processing. Right of portability you have the right to have the data we hold about you transferred to another organisation. Right to object you have the right to object to certain types of processing such as direct marketing. Right to object to automated processing, including profiling you also have the right to be subject to the legal effects of automated processing or profiling. Right to judicial review: in the event that refuses your request under rights of access, we will provide you with a reason as to why. You have the right to complain as outlined in section below. All of the above requests will be forwarded on should there be a third party involved in the processing of your personal data.

Page: 5 of 5 Please note that since most of your personal data is shared with by ISACA International, we would suggest that you raise your queries with International as well in order to exercise your subject rights with ISACA International as well. Modifications to this Privacy Notice We keep our privacy notice under regular review. From time to time, may need to update or modify this Privacy Notice, to reflect changes in our business practices, data collection practices or organization. We reserve the right to amend this Privacy Notice at any time, for any reason, without notice to you, other than the posting of the amended Privacy Notice on the Sites, or, if you have provided your email address to us, sending you an email notifying you of the amended Privacy Notice. Questions or Concerns If you have any questions or concerns about this Privacy Notice, please contact ISACA s London data protection resource at: dataprivacy@isaca-london.org. Complaining to the UK data protection regulator You have the right to complain to the Information Commissioners Office (ICO) if you are concerned about the way we have processed your personal information. Please visit the ICO s website for further details.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback