Skip to content

Personal information collection statement

The Professional Information Security Association (PISA) respects the privacy of individuals. We do our best to ensure the collection, usage, storage, transfer and disclosure of your personal data according to the Personal Data (Privacy) Ordinance. This Statement explains our practices on handling personal data.

Purposes of Collection

By participating in various activities and events, providing your personal data, and receiving receipts, we will utilize your information for relevant purposes. These include gathering user feedback, conducting analyses, and sending promotional news and information related to our organized and/or supporting activities and events. If you prefer not to receive such promotional content, you can express your objection to the Association at any time. Please note that providing personal data marked with asterisks (*) is mandatory. Failure to provide complete and accurate personal data may impede our ability to provide updates on activities and events, which could potentially lead to deferral or rejection.

Transfer data

The personal data you provide will be accessible to individuals working within the Association or those designated on a need-to-know basis. The Association maintains strict confidentiality and does not rent, sell, transfer, or disclose your personal information to external parties or non-affiliated companies, except under the following circumstances:

  1. When engaging agents or co-organizers who provide administrative or other services to the Association in connection with its business operations.
  2. With your explicit prior consent.
  3. When we believe it is necessary to share information to investigate, prevent, or take action against illegal activities, suspected fraud, or situations involving potential threats to the physical safety of any person.
  4. To comply with applicable laws, regulations, legal processes, enforceable governmental requests, and administrative requirements.

Access to and Update Personal Data

In the event of any changes to your personal information, it is important to update it with us. Failure to do so may hinder the Association’s ability to provide the requested services. To request updates, please complete the Data Access Request Form (OPS003), available from the Office of the Privacy Commissioner for Personal Data (https://www.pcpd.org.hk/english/publications/files/Dforme.pdf), or submit a written request to info@pisa.org.hk. When processing such requests, the Association will verify the identity of the requester to ensure they are legally entitled to make data access or correction requests. We will respond to your request within 40 days after receiving the same. However, please note that the Association may refuse to comply with a data access request under circumstances specified in section 20 of the Personal Data (Privacy) Ordinance. For example, the requestor may fail to provide the necessary information to the Association.

PISA Website: https://pisa.org.hk
Email: info@pisa.org.hk
Facebook messenger: https://m.me/pisahkg