Privacy Policy



Welcome to CITSAP.


This Privacy Policy governs your visit to (“Site”) and explains how we collect, safeguard, and disclose information that results from your use of our website or any other products or services offered by us (“Services”). By providing information to us, you agree to the terms and conditions of this Privacy Policy and that your visit and use of CITSAP’s Services, and any dispute directly arising out of your use or misuse, shall be governed by this Policy.



As a global cyber security compliance professional services firm, Certified IT Security Assurance Professionals ("CITSAP", "we", “our”, or "us") is committed to maintaining levels of protection of Personal Data aligned to best practices in the industry which, as a minimum, comply with the requirements of the Applicable Data Protection Legislation and CITSAP’s contractual obligations.


Information Collection and Use

While using our site and Services, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you. Personally identifiable information may include, but is not limited to, your email address, name, phone number and postal address (“Personal Information”). CITSAP collects Personal Information about you that is limited to the kind of information that can be found on a typical business card: first name, last name, job title, employer/company name, work address, work email, and work phone number. In some cases, we may ask you to provide additional professional information such as the size of the company you work for, and industry type. We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences. We will normally collect personal data from you only (i) where we have your consent to do so, (ii) where we need the personal data to perform a contract with you, or (iii) where the processing is in our legitimate interests and not overridden by your rights.


We will only use your personal information when the law allows us to. Generally, we will use your personal information where we need to answer your enquiries, to confirm your identity, to perform the contract we enter into with you and to process payments, to comply with a legal or regulatory requirement, where it is necessary for our legitimate interests (or those of a third party) and when your interests and fundamental rights do not override those interests. With your consent, we may also use your information to advertise our products and services to you, and to optimise your experience on our Site.

If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal data).


Log Information

This Site collects information that your browser sends whenever you visit our Site (“Log Data”).  We collect and store log data automatically using cookies and similar technologies, including IP addresses, the region or general location of a computer or device accessing the internet, browser type, operating system, page view history, the time and date of your visit, the time spent on those pages, and other usage information.



Cookies are small text files placed on your computer by websites that you visit, which may include an anonymous unique identifier, and is stored on your computer’s hard drive. Cookies are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site. Cookies help your browser navigate a website and the cookies themselves cannot collect any information stored on your computer or your files.


Generally, we use cookies to collect information to enable us to improve your experience of visiting our site, particularly with customized content, tell us which parts of the websites the users have visited, keep track of your preferences while you are using our services, provide enhanced services, provide general internal and customer analytics, and support security measures. Some of this data will be aggregated or statistical, which means that we will not be able to identify you individually. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Services.


Service Providers

We may employ third party companies and individuals to facilitate our Services, to provide the Services on our behalf, to perform related services or to assist us in analyzing how our Services is used. Such third parties have access to your Personal Information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.


Marketing Communications

We may use your Personal Information to contact you with newsletters, marketing or promotional materials and other information that we feel may be of interest to you. You will only receive marketing communications from us if you have requested information from us or purchased our services, and you have not opted out of receiving that marketing. You may opt out of receiving any, or all, of our communications by clicking on the ‘unsubscribe’ link or instructions provided in any email sent by us.


Compliance With Laws

We will disclose your Personal Information where required to do so by law or sub-poena or if we believe that such action is necessary to comply with the law and the reasonable requests of law enforcement or to protect the security or integrity of our Services.  We shall strive to comply with relevant laws and regulations with regard to the protection of Personal Information, and also constantly review its implementation of the Policy, and strive to make further improvements.



The security of your Personal Information is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is completely secure and as such, no network or system (including ours) can be guaranteed to be 100% secure against destruction, loss, alteration, unauthorized disclosure of, or access to information we collect and store. While we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.

Moreover, we are not responsible for the security of information you transmit to us over networks that we do not control, including the internet and wireless networks, or the data that is stored on your device. You should only access the services within a secure environment.   


Secure Sockets Layer (SSL) technology protects Data on Our Site using both server authentication and data encryption, ensuring that user data is safe, secure, and available only to authorized persons. If your browser supports SSL, and if you entered our site via our secure server access, then transmission of any sensitive data will be protected. If your browser does not support SSL, we recommend that you upgrade to the latest version of any browser to enhance the security of further transactions, otherwise the transmission of your personal data may not be protected and CITSAP disclaims any responsibility in this regard.


If you believe your information may not be secure for any reason, please contact us using the form on the contact page of our website


International Transfer

Your information, including Personal Information, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.


Your consent to this Privacy Policy followed by your submission of such information represents your agreement to such transfer of information mentioned hereinabove.


Links To Other Sites

Our Services may contain links to other sites that are not operated by us. If you click on a third party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every website you visit. We have no control over, and assume no responsibility for the content, privacy policies or practices of any third party websites or services.


Changes To This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.


Contact us

For all data privacy inquiries and any questions or concerns you have about this Privacy Policy or its implementation, please contact us using the form on the contact page of our website


Last updated: 27th of November, 2023