Dear Visitor,

TopCISO is a not-for-profit professional membership association committed to serving institutions and individuals globally who stand out as IT Security and Cybersecurity winners by thinking and innovating for a connected world. We strive to provide you information that is correct and updated regularly to ensure accuracy. We understand our responsibilities towards ensuring the security and privacy of your information provided to us during your registration and sign up procedure for the certification program on the website.

TopCISO uses member, candidate, and visitor personal data and information in compliance with the General Data Protection Regulation (GDPR) guidelines that respect and protect an individual's data privacy. The guidelines mentioned in this Privacy Policy detail how (we) TopCISO process the information that could be used to identify an individual. The Privacy Policy is applicable to the Personal Data which is provided to us by you during the registration and sign up process or derived from the data collected by us with the user permission and consent.

a) From the website 

b) From our social media pages

c) From our digital ads

d) From the emails


A. Information Provided by You

  1. Full Name 

  2. Email ID 

  3. Date of Birth 

  4. Gender 

  5. Residence address 

  6. Phone number/ Cell Number

  7. Academic Qualifications and achievements

  8. Identity Verification Information such as Government-issued ID or passport, national ID card and driving license, etc which are permitted by law.

  9. To process exam payments we will need a bank account or credit card details 

  10. Communications with TopCISO via email or any other media including social media which may result in the collection of your communicative information or any other information provided by you 


B. Information Collected Automatically

Custom and geographic locations: While using the TopCISO platform and payment services, it is rather common to automatically collect your geo-location, your IP address, etc.

Device Information: Our website may automatically collect your log data and device information such as hardware and software information, device information, etc. when you access the TopCISO. 


C. Information from Third Parties

As permitted by law, we might receive extra details or information about you, which may consist of fraud detection details and demographic data from the third-party services, or their partners, and correlate them with the previously obtained information about you. This might include receiving background check details (your consent required) or fraud warnings such as identity verification and risk assessments. We could receive certain information about your activities off the platform of TopCISO from our partnerships, or our ad network partners. 




A. TopCISO uses Members, Candidates, and Attendees at our Events Information only for the business purposes listed below:

  • Candidate membership and account management

  • Processing and executing your orders

  • Processing applications and registrations that you submit to us

  • Delivering exam services and administering and scoring examinations

  • Marketing and Management 

  • Scholarship Program Award and Administration

  • Measuring the effectiveness of our products and services

  • Maintaining the online TopCISO Member directory

It is important to note that we will only take on the activities listed with your consent, which will only have a legitimate business interest. You may withdraw your consent at any time by unsubscribing when receiving our communication or at our website. If you unsubscribe, TopCISO will stop processing your Personal Data and Information unless required legally to do so by the relevant authorities. 


B. Right to administer your Personal Information

If you want to update, review, remove, correct or restrict your Personal Data which you provided to us recently or if you wish to receive a copy of your data for other reasons, you may contact us at ( Your requests will be answered as soon as possible.




TopCISO may be forced to unveil your information, including personal information to courts, law enforcement or governmental authorities, or authorized third parties, if any disclosure is reasonably necessary and to the extent as permitted by law:

a) To act per our legal obligations

b) To comply with the legal process 

c) To respond to claims against the Institute

c) To act consistently with the confirmed requests of a criminal investigation or alleged or suspected illegal activity or any other activity that may expose us, you, or any of our consumers to a legal liability

d) To implement and govern our Terms of Service, the Payment Terms or other agreements with Members

e) To protect the rights, property, or personal safety of TopCISO, its employees, its members, or members of the public.

These assertions may be necessary to abide by our legal obligations, for the protection of your or another person's crucial interests or for our or a third party's legitimate interest in keeping TopCISO and its platforms secure, preventing harm or crime, enforcing or defending legal rights, or preventing damage.