Privacy Policy - Asia-ISAC

Home
About
Who We Are
Code of Behavior
Excom
Join Us
Membership
Membership Interest Form
Partnership
Events
Events
Resources
News
Cyber Threat Intelligence
Leadership Podcasts
Webinars
- Home
- About
  Who We Are
  Code of Behavior
  Excom
- Join Us
  Membership
  Membership Interest Form
  Partnership
- Events
  Events
- Resources
  News
  Cyber Threat Intelligence
  Leadership Podcasts
  Webinars

Home
About
Who We Are
Code of Behavior
Excom
Join Us
Membership
Membership Interest Form
Partnership
Events
Events
Resources
News
Cyber Threat Intelligence
Leadership Podcasts
Webinars
- Home
- About
  Who We Are
  Code of Behavior
  Excom
- Join Us
  Membership
  Membership Interest Form
  Partnership
- Events
  Events
- Resources
  News
  Cyber Threat Intelligence
  Leadership Podcasts
  Webinars

Privacy Policy
Asia-ISAC Privacy Policy
Effective Date: 29 AUG 2025
Last Updated: 13 JAN 2026
Asia Information Sharing and Analysis Center Limited, operating as Asia-ISAC (“Asia-ISAC”, “we”, “our”, or “us”), is committed to protecting your personal data and respecting your privacy.
This Privacy Policy explains how we collect, use, disclose, store, and protect personal data when you access or interact with https://www.asia-isac.org (the “Site”) and participate in our programs, events, and services.
This Policy is designed to comply with applicable data protection laws in the Asia-Pacific region, including the Singapore Personal Data Protection Act (PDPA).
1. Personal Data We Collect
We may collect the following categories of personal data:
Name, job title, organization, and professional role
Email address, phone number, and other business contact details
Information submitted through contact forms, event registrations, membership or partnership applications
Professional interests, preferences, and areas of engagement
Website usage data such as IP address, browser type, device information, pages visited, and timestamps
We do not knowingly collect sensitive personal data unless required for legitimate organizational or legal purposes and subject to appropriate safeguards.
2. How We Use Personal Data
We use personal data for legitimate organizational purposes, including to:
Respond to inquiries and communications
Manage memberships, events, working groups, and collaborative initiatives
Share newsletters, research updates, and event-related communications
Improve our website, services, and community experience
Conduct analytics and performance measurement
Comply with legal, regulatory, and governance obligations
As part of Know-Your-Customer ("KYC") or Know-Your-Business ("KYB") compliance requirements, we may conduct KYC checks on companies who subscribe and avail of our services or join as members.
We process personal data only where there is a lawful basis to do so, including consent, contractual necessity, legitimate interests consistent with Asia-ISAC’s mission, or compliance with legal obligations, as permitted under applicable data protection laws.
2A. Consent
Where consent is required by applicable law, we obtain consent before collecting or processing personal data. You may withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice.
Withdrawal of consent may affect our ability to provide certain services or communications.
3. Disclosure of Personal Data
We do not sell personal data.
We may disclose personal data to:
Trusted service providers and partners who support our operations (such as website hosting, communications tools, and event platforms), under confidentiality and data protection obligations
Government authorities or regulators, only where required by applicable law or lawful process
Successor entities in the event of a corporate restructuring, merger, or organizational transfer, subject to continued protection of personal data
All third parties are required to process personal data only for authorized purposes and to implement appropriate safeguards.
4. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required or permitted by law.
Personal data may be securely deleted, anonymized, or archived once it is no longer required.
5. Your Rights
Subject to applicable laws, you may have the right to:
Access your personal data
Request correction or updating of inaccurate data
Withdraw consent for specific processing activities
Unsubscribe from communications
Request deletion or restriction of processing, subject to legal and operational limitations
We will respond to verified requests within a reasonable timeframe and in accordance with applicable laws.
5A. Complaints and Concerns
If you believe your personal data has been mishandled, you may contact us using the details below. We will investigate and respond in a timely manner.
6. Security Measures
We implement reasonable and appropriate technical, organizational, and administrative measures to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure.
Our website incorporates physical, electronic, and administrative procedures to safeguard the confidentiality of your personal information, including Secure Sockets Layer ("SSL") for all transactions through the Site. We use industry-standard SSL/TLS connection, with a minimum of 128-bit encryption to protect your personal information online. A multiple-layer security architecture is implemented to help protect against cyber risks.
While we strive to protect personal data, no system or transmission over the internet is completely secure, and we cannot guarantee absolute security.
7. International Data Transfers
Personal data may be transferred to or processed in jurisdictions outside your country of residence.
Where cross-border transfers occur, we take reasonable steps to ensure that personal data is protected in accordance with applicable data protection laws, including contractual and organizational safeguards.
8. Analytics and Cookies
We may use cookies and third-party analytics tools to understand website usage and improve performance. These tools may collect information such as IP addresses, browser details, and interaction patterns.
You may manage cookie preferences through your browser settings.
9. Minors
Asia-ISAC does not knowingly collect personal data from individuals under the age of 13. Our programs and services are intended for professionals and organizations.
If you believe personal data of a minor has been inadvertently collected, please contact us so appropriate action can be taken.
10. Updates to This Policy
We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised effective date.
Your continued use of the Site after updates constitutes acknowledgment of the revised Policy.
11. Contact Us
For questions or requests relating to this Privacy Policy, please contact:
Email: help@asia-isac.org
Website: https://www.asia-isac.org
11A. Data Protection Contact
Asia-ISAC has designated a point of contact responsible for data protection matters.
Privacy-related inquiries may be directed to the contact details above with the subject line “Data Protection / Privacy Inquiry.”
12. Governing Law
This Privacy Policy shall be governed by applicable laws in the jurisdictions where Asia-ISAC operates, including Singapore, without prejudice to mandatory data protection rights under local laws.
This Privacy Policy supersedes all prior privacy statements or policies published on asia-isac.org.

Home