Privacy Statement

What is ISMA?
The International Security Management Association (ISMA) was founded in 1983 to be the association of choice for senior security executives who are responsible for helping the world’s leading businesses navigate risk and prosper. Its mission is to provide members with a global, trusted, and unrivalled peer information sharing network, a forum for robust thought leadership, and relevant professional development.

ISMA takes your privacy very seriously and will only use your personal information to administer your ISMA account and provide the membership services from the Association that you have requested from us.

What we need
ISMA holds personal data on members and prospects, including name, professional title, telephone number(s), business address(es), and email address(es).

Why we need it
The information is used to manage the day-to-day activity and operation on ISMA, including but not limited to distributing communications about ISMA operations and events, facilitating communication between members, allowing members to access contact details for fellow members, and general administration of the association (including collection of fees for dues and events, and tracking of attendance at events). We will not collect any personal data that we do not need in order to provide and oversee association services.

What we do with it
All the personal data we process is processed by our staff in the US and UK and held on servers located in the United States. Third parties required for IT and payment processing support have access to platforms that hold members’ personal data. These parties are currently:

  • MemberClicks - website hosting company

  • Microsoft – internal/staff technology platforms

  • RSM McGladrey – Microsoft support vendor

  • Quickbooks – accounting software provider and PCI compliant credit card payment processing vendor

  • Payroc – PCI compliant credit card payment processing vendor

How long we keep it
Your personal information used for the purposes of general association and membership services will be kept with ISMA for as long as you are a member of the association, or until you notify us that you no longer wish for us to retain your data. After you leave the ISMA membership, your information will be retained under our retention policy for three (3) years, or until you notify us that you no longer wish for us to retain your data. More information on our retention schedule can be found on our website.

What are your rights?
If at any point you believe the information we process on you is incorrect, you may request to see this information and have it corrected or deleted. If you wish to raise a complaint on how we have handled your personal data, you can contact our Executive Director, Liz Chamberlin, who will investigate the matter. If you are not satisfied with our response or believe we are processing your personal data in contravention of the law you may seek advice/lodge complaints with your country’s local supervisory authority.