External Privacy and Data Protection

1. Introduction
ISACA Amman Chapter (We, Us or our) is strongly committed to protect personal data. This privacy
policy describes why and how we collect and use personal data within ISACA Amman Chapter, and
also provides information about individual’s rights in relation to the use of their personal data.
This Privacy Policy applies only to information collected by ISACA Amman Chapter. It does not apply
to information collected or used by ISACA International (“ISACA”) websites, including (www.isaca.org,
for the ISACA International Privacy Policy, please visit http://www.isaca.org/pages/Privacy.aspx). This
Privacy Policy also does not cover the practices of ISACA Chapter business partners (such as vendors,
sponsors, or advertisers), nor does it apply to personally identifiable information that we collect from
or about our employees, consultants, contractors, vendors, sponsors, or advertisers.
By providing personal information to us, you acknowledge you have read this privacy policy, and, to
the extent your consent is necessary and valid under applicable law, you consent to the collection, use
and disclosure of such personal information by ISACA Amman Chapter and any third party recipients
in accordance with this privacy statement.

2. Security
We take the security of all of the data we hold seriously, ISACA Amman Chapter uses reasonable
measures to safeguard sensitive personally identifiable information. These measures are appropriate
to the type of information maintained, and follows applicable laws regarding to safeguard confidential
information, including personal information about you, from loss, misuse or destruction, including
unauthorized, accidental or unlawful disclosure or processing of your personal information.

3. Collection of Personal Data

The primary sources of ISACA Amman Chapter’s obligations in connection with privacy and data
protection is ISACA global requirements for privacy and data protection.

4. Minimum Privacy and Data Protection Requirements

ISACA Amman Chapter collects and maintains a variety of personally identifiable information,
including:
 First name;  Email address;
 Last name;  Gender;
 Company;  ISACA membership number;
 Job title;  National Number;
 Work/home Address;  Copy of the National ID;
 Phone number;  Certificate of Non-Conviction.

23 May 2019
1
ISACA Amman Chapter collects information directly from you through, for example offline
registration forms, and through exam or event registration forms. Information is
collected and maintained from.
Personal data will be collected for the following data subjects (individuals from whom
information is collected) such as: members, exam candidates, those who have been
certified by ISACA, applicants, event attendees, speakers, participants in ISACA Chapter
programs, purchasers of ISACA Chapter products and services, survey respondents, and
others.
To the extent that information requested is not required for your participation in a given
ISACA Amman Chapter program, you will be told which information is optional. Should
you fail to provide optional information, certain ISACA Amman Chapter programs or
features may not be available to you.
ISACA Amman Chapter may also maintain information about you that you do not directly
provide, whether it is information received from third parties, such as business partners
who provide exam administration services, or information ISACA Amman Chapter collects
about your activities. For example, ISACA Chapter keeps track of which events you have
attended, which exams you have taken, which boards and committees you have served
on, and which offices you have held.

5. Use, Sharing and Retention of Personally Identifiable

Information
ISACA Chapter uses personally identifiable information for the purposes described at the
time of collection or as otherwise described to you; to process your requests; to report to
others about whether you are certified or not; as permitted by law to provide you with
information about ISACA Amman Chapter, our products and services or other products
and services in which we believe you may be interested; or for other legitimate ISACA
Amman Chapter business purposes, including order processing, processing of certification
or membership applications, or registering you for event or training programs.
We may also use your personally identifiable information to tailor your experience at our
sites, to compile and display content and information that we think you might be
interested in, and to provide you with content according to such preferences. ISACA
Chapter also publishes the names, titles, country and business affiliations of officers,
committee members and others who have assisted with initiatives or projects.
ISACA Chapter may share personally identifiable information with third parties for
legitimate business purposes, including the following reasons or in the following
circumstances:
 To third-parties who provide ISACA Amman Chapter with sponsorships otherwise act
on behalf of or at the direction of ISACA Amman Chapter, which third parties include,

23 May 2019
2
 for example, exam testing agencies and training providers and partners, product-
fulfillment companies, third-party event hosts, other third parties who may provide
services on websites that are accessible from links on one of our Site, and credit card
companies processing payment;
 To ISACA Chapter volunteers and board members;
 To ISACA and other ISACA chapters, the IT Governance Institute, and if you participate
in our “Enterprise Participation Program,” your information will be shared with your
organization’s program coordinator;
 If you are an event attendee, speaker, or sponsor, certain information will be included
in the event roster, which will be publicly disclosed, and may also be shared with third-
party event sponsors and exhibitors;
 To investigate potentially fraudulent or questionable activities;
 When we believe it is necessary to cooperate with law enforcement or in response to
a government request, including if specifically requested or required, as otherwise
permitted by law, and for other valid ISACA Amman Chapter business purposes.
ISACA Chapter retains personally identifiable information for as long as necessary for its
legitimate business purposes, and as otherwise permitted by applicable law.

6. Individuals’ Rights and How to Exercise them

You may have certain rights under your local law in relation to the personal information
we hold about you. In particular, you may have a right to:
 Request a copy of personal information we hold about you;
 Ask that we update the personal information we hold about you, or correct such
personal information that you think is incorrect or incomplete;
 Ask that we delete personal information that we hold about you, or restrict the way in
which we use such personal information;
 Restrict or object to our processing of your personal information;
 Request a copy or transfer of your data (data portability); and/or withdraw your
consent to our processing of your personal information (to the extent such processing
is based on consent and consent is the only permissible basis for processing).
To exercise your rights, you may make one request each year by emailing us at
nabdelhadi@amman.isacachapter.org or writing us at the address listed in the “How to
Contact ISACA Amman Chapter and Modify Your Information Preferences” section below.
Indicate in your letter that you are making a “Shine the Light” inquiry. Responses to

23 May 2019
3
requests sent to this email address or the mailing address listed below will be provided
within 30 days.

7. How to Contact ISACA Amman Chapter and Modify Your

Information or Preferences
Questions regarding this Privacy Policy should be directed to Mr. Nawwar Abd Elhadi by
email at nabdelhadi@amman.isacachapter.org . If you would like to modify the types of
marketing email messages you receive from ISACA Chapter, you may do so by following
the instructions within the body of any email message that you receive from us.
To help us keep your personal information up to date, or to request access to the personal
information ISACA Amman Chapter maintains about you, you may contact us at
info@amman.isacachapter.org

23 May 2019
4