Request A Consultation

Privacy Policy

CISO Privacy Policy


We appreciate the trust you have placed in us and continually strive to satisfy you, our members, and others who buy our products and services. We work toward making every experience with CISO Global (CISO) enjoyable and beneficial for you. That’s why we are pleased to provide product or service offers from us, our affiliates, and other companies with which we work. These offers might include savings and discounts on a variety of products and services related to Security, Risk Management and Compliance.

Respecting the privacy and security of your personal information is important to us. This Privacy Policy describes the online and offline practices of CISO. It is designed to inform you of the types of information we collect, how we use that information and the circumstances under which we may share it with affiliated and non-affiliated third parties. Please take the time to read this Privacy Policy and familiarize yourself with our practices and the choices provided to you as a CISO visitor.

Collection of Personal Information

We collect personal information about you from the following sources:

  • From you, and other users of CISO services, on applications and other forms at events, via the Internet, by telephone, and when you register for CISO products or services. Examples of this type of information include your name, address, telephone number, and personal demographics (age, gender, etc.).
  • From transactions with us or with others. Examples include your inquiries, and other transaction records.
  • From third parties such as our CISO affiliates and other third parties, including products or services you may have purchased through another CISO organization or our partners.

CISO does not knowingly collect information from children under the age of 13 and does not target its website to children under 13. We encourage parents and guardians to take an active role in their children’s online activities and interests.

How We Use Your Information

We limit how we use the information you provide to us to ensure you receive the full benefit of your relationship with CISO.

We primarily use your information to:

  • Provide the products and services you have requested.
  • Provide your customer service.
  • Provide services such as processing a transaction (e.g., making an inquiry, fulfilling a request for information, or completing a product order).
  • Send marketing materials and communications to you about CISO products and services or those of our strategic marketing partners.
  • Perform market research via surveys to better serve your needs and to improve our websites, and our various types of communications, advertising campaigns, and promotional activities, or otherwise, conduct business.
  • We will not sell your personal information.

Also, the data we receive from third-party providers helps us verify the information you have given us or to add demographic or other information to help us better understand your potential needs for additional products or services.

Some of these uses require us to share your information with third-parties, including companies whose purpose is to support CISO marketing activities, as well as our trusted partners who may provide other services to you. Also, we may share your information (including non-public personal identification information) to ensure our compliance with reporting and other legal requirements or in other manners permitted or required by law, including without limitation to respond to subpoenas, search warrants, court orders, or legal process.

As a CISO visitor or customer, you have choices whether we use your information for marketing purposes or whether your non-public personal information is shared with our CISO affiliates or those third-party partners. Those choices are describedin “The Choices You Have” section below.

Cookies and Clear GIF

We may capture your IP address and place cookies on all website visitor hard drives to collect information on your visits to our site and the pages viewed. We aggregate this information with that of other visitors to analyze website activity to help us improve your online experience. This data is not personally identifiable to you and is used primarily to identify return visitors to the site and understand from what website you came to our site and the site you next visit upon leaving the CISO site, including when you link to our partner sites to explore the products and services they provide. Also, when you initially visit, a persistent cookie is used to capture your zip code for marketing purposes.

The use of persistent cookies enables us to capture and link to other information you have provided us online once you choose to identify yourself. This capability allows us to view your activity on our site for a specified period to match your interests and needs to the best product and service information available and send it to you. CISO also uses clear gif tracking images on some of its pages and in our HTML emails to determine open rates.

You may opt out of cookies at any time by following the instructions on your browser.

CISO may partner with reputable companies, to provide additional services to you. If you choose to use any of the links, we caterto these member companies, sponsors, and other third-party resources; youwill be leaving our website and going to a new website. Protection of your privacy at those other sites will be governed by the privacy policyat that site. We’ve taken special care in selecting our partner companies to try to ensure that they respect your privacy as we do, but please take the time to read the privacy policies at their respective websites.

The Choices You Have

Receipt of CISO Marketing; you may choose to opt out of direct mail marketing and telemarketing phone calls from CISO. We ask you to provide your complete name and ID to help us locate your record in our files to apply your opt-out to the name and address or telephone number to which the opt-out applies. You may continue to receive direct marketing communications at other names, telephone numbers, or addresses we have in our records. You may also receive non-marketing member communications or satisfaction surveys via telephone or mail.

You may also contact our Privacy Team by phone or mail. Please refer to the “Contact Us” section at the end of this Privacy Policy.

We at CISO understand our customers need for information, as well as for our products and services, may change over time. Toconsider your future needs, we limit the length of time your marketing opt-outs will remain active. Direct mail opt-outs will be honored for three years or until you change your name or address, or request information. Telemarketing opt-outs will be acceptedfor tenyears as required by law or until you change your telephone number.

Receipt of CISO Email; you may choose to opt out of email marketing and other email communications by visiting

You may also unsubscribe from a specific email list by clicking on “Unsubscribe from this list” at the bottom of the emailor click on your email address at the bottom of the email to access the Preferences page.

How You Can Review and Update Your Information

Generally, you have the right to review the information we have about you. As a CISO member, you may reviewyour personal information by visiting and logging in to your online account. You may also edit your personal information and your contact preferences in your online account, and a variety of other requests and changes. You will have access only to the information you provided us in the course of requesting information or conducting business with CISO Global (CISO).

Both clients and visitors may also review personal information with a signed request made in writing. The request must include your full name, address, telephone number, and member number, if applicable. We will provide you access only to the information you provided to us in the course of requesting information or conducting business with CISO. If you would like to update your name, address, phone number, email address, or privacy choices (such as whether you want to receive marketing from us or have us share your information with our partners), you may contact us to request a correction. You may send your request to the address provided in the “Contact Us” section of this Privacy Policy. We will respond in writing to your request within 30 days and keep copies of all correspondence in our files.

Safeguarding Member Information

We only grant access to non-public personal information about you to employees and service providers so they can provide or offer products or services to you, process and service your accounts and administer the business. Our internal policies require us to keep your non-public personal information confidential. Even if you are no longer our client, we will continue to safeguard your non-public personal information. Also, we maintain physical, electronic, and procedural safeguards to protect this non-public personal information. We continually assess new technology for protecting information and upgrade our systems when appropriate.

Security, Intrusion, and Detection

For site security purposes, and to ensure that this service remains available to all users, all network traffic is monitored in order to identify unauthorized attempt to upload or change information, or otherwise cause damage or conduct criminal activity. Unauthorized attempts to defeat or circumvent security features, to use the system for other than intended purposes, to deny service to authorized users, to access, obtain, alter, damage, or destroy information, or otherwise to interfere with the system or its operation are prohibited. Evidence of such acts may be disclosed to law enforcement authorities and result in criminal prosecution under the Computer Fraud and Abuse Act of 1986 (Pub. L. 99-474) and the National Information Infrastructure Protection Act of 1996 (Pub. L. 104-294), (18 U.S.C. 1030), or other applicable criminal laws. Anyone using or accessing this system expressly consents to such monitoring.

California Consumer Privacy Act (CCPA) and General Data Protection Regulations (GDPR)

  • We will not sell your data.
  • You have the right to know what data we collect about you.
  • The right to know if your personal data is sold or disclosed and to whom.
  • Opt-Out to the sharing or sale of your personal data.
  • Have the right to access your data.
  • You have the right to have your personal data erased with 30 days.
  • You have the right to be notified of a breach within 72 hours of discovery if this can result in adverse action.
  • Receive the same services, pricing and attention regardless of whether you exercise your rights without penalty.

Visitors’ California Privacy Rights

California law provides that California residents have a right to request that businesses tell them how their personally identifiable information has been shared with third parties for those third parties’ direct marketing purposes. However, there is an exception to this requirement for businesses that have adopted and disclosed, in their privacy policy, a policy of not disclosing a person’s personally identifiable information to third parties for those third parties’ direct marketing purposes if that person has exercised an option to opt-out of the disclosure of their personally identifiable information to third parties for such purposes.

CISO has adopted a policy of allowing Visitors to opt-out of the disclosure of Visitors’ personally identifiable information to third parties for their direct marketing purposes and thus falls within this exception. Instructions for opting out can be found in the section entitled found in the Choice and Opt-Out section above.


Certain trademarks, service marks, trade names, images, logos, design, text, graphics and pictures on this web site are proprietary to CISO. They may NOT be copied, reproduced, republished, posted, transmitted or distributed in any way. The user may print, in hard copy, portions of the web site only in connection with placing or having placed an order with CISO. The use of any such material for any other reason, on any other web site, or the modification, distribution or republication of this material without prior written permission from CISO is strictly prohibited. Except as may be expressly provided, nothing contained herein shall be construed as conferring any license, software or right under copyright or other intellectual property rights. CISO owns and operates this web site.

US-EU Privacy Shield Compliance

CISO complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. CISO has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit

CISO Global (the “Company”) is a leading pure-play managed services provider designed for compliance with legal regulations and business-based standards that offers support, configuration, management, security assessment, detection and prevention services that help companies, governments and organizations safeguard their computer networks and systems. Protecting consumer privacy is important to the Company. We may receive business-related information and contact information related to individual representatives of customers, resellers, and other business partners. For example, CISO may collect names, job titles, addresses, work phone numbers, work email addresses in connection with business transactions and other business relationships. Some of our customers may not be incorporated and may provide their home address when requesting information for our services.

CISO may share personal data to service providers and other contractors, who may process such data on our behalf and subject to confidentiality restrictions. We also may disclose personal data with other third parties for the purposes for which we receive the data (e.g., performance of contractual obligations) and as required or permitted by law. CISO may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.

Recipients of marketing e-mails may opt-out of receiving further e-mail marketing communications from CISO by following opt-out instructions that are contained in each marketing e-mail. Residents of the EU whose personal data CISO has directly collected may request access to, and the opportunity to correct, amend, or delete such personal data. To submit such requests or raise any other questions, please contact us. CISO reserves the right to take appropriate steps to authenticate an applicant’s identity, charge a reasonable fee before providing access and deny requests, except as required by the Privacy Shield principles.

CISO remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process the personal data on its behalf do so in a manner inconsistent with the Principles, unless CISO proves that it is not responsible for the event giving rise to the damage. CISO is subject to the investigatory and enforcement policies of the Federal Trade Commission.

In compliance with the Privacy Shield Principles, CISO commits to resolve complaints about our collection or use of your personal information. Individuals in the European Union (EU) with inquiries or complaints regarding our Privacy Shield policy should first contact CISO.

CISO has further committed to cooperate with EU data protection authorities (DPAs) about unresolved Privacy Shield complaints concerning human resources data transferred from the EU in the context of the employment relationship. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact the EU DPAs for more information or to file a complaint. The services of EU DPAs are provided at no cost to you.

Finally, as a last resort and in limited situations, EU individuals may seek redress from the Privacy Shield Panel, a binding arbitration mechanism.

Changes to This Policy

If we make any changes to this policy, we will post the effective date of the changes on this Privacy Policy. If we make material changes to this Privacy Policy (such as how we use or share your personal information), we will provide current clients with a notice describing our new practices. You may contact us with any questions or comments, as well as requests to review and update your personal information. Please refer to the “Contact Us” section at the end of this Privacy Policy.

Contact Us

If you have any questions about this Privacy Policy, or to opt out of unsolicited direct mail marketing or telemarketing phone calls from CISO, please contact us by phone or mail.

Please include your full name and address or telephone number to which the opt-out applies in any correspondence:

CISO Global

Attn: Privacy Processing
6900 E. Camelback Road, Suite 900
Scottsdale, Arizona 85251 
Phone: 480-389-3444

Please allow approximately 12 weeks for your direct mail opt-out to become effective. Telemarketing opt-out requests will be honoured within 31 days