Terms and Conditions
1. Introduction
We are The Chartered Institute of Information Security (“CIISec/we/us/ours”), established in England by Royal Charter on 12 December 2018. Our registered address is Haddonsacre, Station Road, Offenham, WR11 8JJ. Our contact email is membership@ciisec.org.
“You/yours” refer to (i) an individual who reads and agrees to be bound by these Terms and/or (ii) if you access the website on behalf of a legal entity, to that entity. If you are using the website on behalf of any entity you represent and warrant that you are authorized to accept these Terms on such entity’s behalf and, by accepting these Terms, you are hereby binding such entity to the Terms.
2. Our products
2.1 “Corporate Membership”. We may offer different tiers of Corporate Membership for legal entities, from time to time, which differ depending on your annual turnover. For more information on the different tiers of Corporate Membership, and the associated fees, please visit https://www.ciisec.org/corporate-membership/.
2.2 “Individuals under Corporate Membership”. A Corporate Member has the right to nominate an agreed number of staff for individual membership of CIISec. We retain discretion whether to accept that person for membership of CIISec. Individuals will be signed up to Affiliate membership, unless they already hold an active membership at another grade, and are transferring it under the Corporate Membership. The period of such person’s membership shall be co-extensive with the membership term of the Corporate Member. The annual fee of such person’s membership shall be covered by the Corporate Member under Contract (as defined below). Such individual shall be required to comply with these terms and conditions of membership. Such individual’s membership shall be personal to the nominee and non-transferable whether or not such nominee changes employment during the membership year (any person changing employment who wishes to keep a membership active, would need to apply for Individual Membership or their new employer would need to hold a Corporate Membership).
2.3 “Individual Membership”. We may offer different tiers of Individual Membership for non-corporate entities, from time to time, which differ depending on your knowledge, experience and accreditations. For more information on the different tiers of Individual Membership and the associated fees, please visit https://www.ciisec.org/individual-membership/.
2.4 “Courses and Events”. We may also offer various courses and events on our website from time to time which you can apply for in accordance with the instructions/form on the relevant webpage.
3. How a contract is formed
3.1 A “Contract” is formed between you and us incorporating these Terms for the supply and purchase of one of our products: (i) in respect of applications for Individual Membership and/or courses/events, when we send you email confirmation that your application has been accepted; or (ii) in respect of Corporate Memberships upon mutual signature of an order form setting out the commercial details of membership (“Order Form”).
3.2 The application form (once accepted by us) or Order Form (as applicable), and these Terms apply to and form part of the Contract between you and us. They supersede any previously issued terms and conditions between you and us. If you are a Corporate Member signing an Order Form, then you agree that you are responsible for your individual members’ compliance with these Terms and liable for their actions under the Contract.
3.3 No terms or conditions endorsed on, delivered with, or contained in your purchase conditions, order, offer, confirmation of order, specification or other document shall form part of the Contract.
3.4 Each application for our products submitted by you via our website shall be an offer by you to purchase such products subject to these Terms and application form. We may accept or reject such an offer at our discretion. An offer shall not be accepted, and no binding Contract shall arise, until we send you a confirmation email.
3.5 We may amend or change the Terms at any time to reflect changes to our business or changes in the law. Unless otherwise notified to you, the modified Terms will be accessible on our website and will be effective ten (10) days after posting, and your continued relationship with us thereafter shall constitute your acceptance of such changes.
4. Membership
4.1 Full details of each Membership type, including eligibility requirements (“Eligibility Requirements“), available resources and materials (“Membership Resources“), and the applicable fees (“Membership Fee“), are set out on the relevant page of our website, as updated from time to time. All Members must agree to our Code of Conduct & Ethics and the requirements of the UK Cyber Security Council, “UKCSC”, (if applicable depending on your professional registration status).
4.2 To apply for a Membership, you must: (a) meet the Eligibility Requirements for the selected Membership type; (b) complete and submit the relevant form; and (c) pay the applicable Membership Fee.
4.3 Use of Membership Resources. If you have an active Membership, you may use the Membership Resources in accordance with these Terms and any additional conditions set out when you access the relevant resources.
4.4 The minimum term for any Membership is one year, however if you cease to meet the Eligibility Requirements, then we may terminate the Membership upon notice, without refund.
4.5 We reserve the absolute right to refuse, cancel or change your Membership, the Memberships we offer, including (without limitation) if we know or have reason to believe that any information you submitted is incorrect, or you failed to notify us of any changes to or inaccuracies in any information you submitted in your application.
4.6 We reserve the right to admit you to the most appropriate category of membership in accordance with the Eligibility Requirements, notwithstanding that you have applied for a different category of membership. Some members may be required to register with the UKCSC or other bodies (in which case we shall notify you of the additional fees).
4.7 You agree to undertake annual CPD requirements that are applicable to you. You agree to update us with regards to your annual CPD undertaking, and respond promptly to any queries we may have.
4.8 For those holding a UKCSC professional registration title, failure to submit CPD records by the submission date, unless otherwise agreed, will result in the loss of professional title and remove from the UK Cyber Security Council’s register.
5. Courses and Events
5.1 To participate in (i) a course and access its content or (ii) an event, you must apply using via the relevant website form and inserting details for payment of the relevant fee for the chosen course or event. Submitting a registration form commits you to completing payment of the applicable fee upon our written acceptance of your application (at our discretion).
5.2 Courses may include assessments designed to test your understanding of the principles you have learned and training you have been given as part of the selected course (“Assessment“). You are required to complete any Assessment which is included in a course, to the standard determined by us. We will issue you a digital certificate where you have successfully completed a course (passing the Assessments and meeting the attendance requirements).
5.3 We operate a zero-tolerance policy in relation to inappropriate behaviour of course participants. Abusive or violent behaviour directed at our staff and instructors and unfair or dishonest practices, including but not limited to, cheating, bullying, libel, or defamation will not be tolerated under any circumstances. We may, at our reasonable discretion, and without liability or an obligation to refund fees, refuse to accept you for a course, and we may remove from a course a participant whose participation would, in our reasonable opinion, be undesirable or whose behaviour we reasonably consider is or may be in breach of these Terms.
6. Renewal of Membership
6.1 Your Membership does not automatically renew, unless you have set up a direct debit. Before the end date of your Membership, we will notify you how to renew your Membership and the appropriate Membership Fee which will be due if you wish to renew.
6.2 These reminders will specify the amount of the Membership Fee (and if relevant, the applicable UKCSC annual fee due on renewal).
6.3 If the necessary Membership Fees are not paid by the renewal date, your Membership shall be deemed to have lapsed and access to associated benefits will be restricted or terminated.
7. Fees and Payment
7.1 All Membership Fees are paid annually, in advance and are non-refundable. Some Members may qualify for professional registration with the UKCSC or other bodies (in which case we shall notify you of the additional fees payable by you).
7.2 You shall pay the fees for the course or event as specified on our website or the relevant application form, unless a different price has been agreed by us in writing. Failure to pay such fees will result in you not being able to participate in that course or event.
7.3 We do not charge VAT on Membership Fees. However, VAT and other applicable taxes may be due in respect of fees for courses and events. If VAT is due, it will be set out in the relevant application form.
7.4 We offer two methods for payment of Membership Fees:
7.4.1 upon acceptance by us of your Membership application or signature of an Order Form, we will invoice you for the relevant Membership Fee. Any such invoice is payable within 30 days of receipt; or
7.4.2 upon acceptance by us of your Membership application or signature of an Order Form, you may set up a direct debit for payment of the relevant Membership Fee. Where you elect this method of payment, the account linked by the direct debit will be automatically debited once per year at the start of each renewal, unless you cancel your Membership before the renewal, in accordance with these Terms. Where you choose this method of payment, you also agree to the provisions contained in Schedule 1.
7.5 If we are unable to collect any payment you owe us, we charge interest on the overdue amount at the rate of four percent (4%) a year above the Bank of England base rate from time to time. This interest accrues daily from the due date until the date of actual payment of the overdue amount, whether before or after judgment.
8. Termination of Contracts
8.1 You can cancel your Membership at any time by providing us with thirty (30) days’ written notice. However, you will not receive a refund for any Membership Fees already paid if you cancel, and if you have not yet paid, such Membership Fees shall remain due and payable.
8.2 You may cancel participation in a course or event at any time, but you will be liable for cancellation fees as follows:
- more than 20 Business Days prior to the first day of the course/event: full refund;
- less than 20 but more than 10 Business Days prior to the first day: 75% refund, 25% payable;
- less than 10 Business Days prior to the first day: no refund, full fee payable.
No refund/full fee payable for non-attendance. “Business Day” means any day which is not a weekend or bank/national holiday in the UK.
8.3 Cancellation notices must be sent to: membership@ciisec.org.
8.4 You must return or delete (at our request) any Membership Resources and/or any course content (and must not retain any copies in any form of such materials) you may have received from us upon effective termination of a Contract. Any rights you are granted under these Terms in connection with any Membership Resources and/or course content are immediately rescinded when a Contract ends.
8.5 Cancellation and/or termination of your Membership or participation in any course for whatever reason, will result in a cessation of any rights under these Terms to use our logo or post-nominal designations granted by us.
9. Intellectual Property Rights
9.1 We and our third-party providers and licensors retain all rights, title and interest in and to our website content, Membership Resources and any course content.
9.2 Provided you have paid all relevant fees in full, we grant you a royalty-free, non- exclusive, non-transferable, non-assignable, non-sublicensable licence to:
9.2.1 use Membership Resources solely to the extent reasonably necessary for you to advance your career or develop your skills; and
9.2.2 use course content solely to the extent required for you to participate in the corresponding course and complete any training and / or examination included within the corresponding course. The Membership Resources and course content is licenced under the Creative Commons Licence CC BY-NC-ND 4.0. For the avoidance of doubt, you are not entitled to use the Membership Resources and/or any course content for any commercial purpose. No derivative works may be shared and attribution is required.
9.3 Provided you are a Corporate Member have paid all relevant fees in full, we grant you a royalty-free, non- exclusive, non-transferable, non-assignable, non-sublicensable revocable licence to use the mark “Chartered Institute of Information Security” (the “Mark”) on your business materials solely to reflect your Membership status, in accordance with our brand guidelines, subject to these Terms. Individuals are not permitted to use the Mark without our prior written consent but may use their CIISec digital badge to show a membership level.
9.4 By being a Corporate Member, you grant us a royalty-free, non-exclusive, non-transferable, non-assignable, non-sublicensable revocable right to use, reproduce, and / or publish (without any payment being due to you) your name and logo in accordance with your brand guidelines. We acknowledge that you own all intellectual property rights in your name and logo.
10. Liability
10.1 We will perform each Contract using reasonable care and skill, and in compliance with applicable law. Subject to the previous sentence, the Membership Resources, any course content, documentation, and any website information are provided and made available to you on an “as is” and “as available” basis, and without any representation, warranty, guarantee or condition of any kind whatsoever, whether express, implied or statutory, all of which are hereby disclaimed by CIISec and its licensors.
10.2 Our entire aggregate liability to you for any claims that you may have against us in contract, tort (including negligence) or otherwise arising out of or in connection with these Terms or the Contract shall be limited to the amount of the fees which have been paid, or are payable, by you under the Contract that is the subject of the claim. Neither Party will be liable to the other for any loss of profits, loss of use, increased operating costs, loss of business, loss of business opportunity, or goodwill or any consequential or indirect loss of any nature, whether arising in tort or on any other basis.
10.3 Notwithstanding any other provision of these Terms, we do not exclude or limit our liability for death or personal injury caused by our negligence, fraud or fraudulent misrepresentation, or any matter for which it would be illegal to exclude liability.
11. Personal Information
We will process personal data provided by you in accordance with our privacy policy. If you are a Corporate Member, then you hereby warrant that you have the necessary permissions for us to process the personal details of your individual members in accordance with our privacy policy and these Terms.
12. General Terms
12.1 Notices. All notices given by you to us must be sent to CIISec, at membership@ciisec.org. We may give notice to you at either the email or postal address you provide to us when entering into a Contract. Notice will be deemed to have been received and properly served 24 hours after an email is sent, or 3 days after the date of posting of any letter.
12.2 Transferring rights and obligations. We may transfer our rights and obligations under these Terms to another organisation. We will contact you to let you know if we plan to do this. You may not transfer, assign, charge or otherwise dispose of any rights or obligations which arise under these Terms unless we agree to this in writing.
12.3 Third party rights. This contract is between you and us. No other person shall have any rights to enforce any of its terms.
12.4 Delay. If we fail, at any time to insist that you perform any of your obligations under these Terms, or if we do not enforce any of our rights against you, or we delay in doing so that will not mean we have waived our rights against you and will not mean you do not have to comply with those obligations.
12.5 Severability. Each clause of the Terms operates separately. If any court or relevant authority decides that any of them are unlawful or unenforceable, the remaining clause remains in full force and effect.
12.6 Governing Law. These Terms and any dispute or claim arising out of or in connection with a Contract or its subject matter or formation (including non-contractual disputes or claims) shall be governed and construed in accordance with English law and subject to the exclusive jurisdiction of England.
12.7 Force Majeure. We shall not be in breach of these Terms or liable for delay in performing, or failure to perform, any of our obligations under a Contract if such delay or failure result from events, circumstances or causes beyond our reasonable control.
12.8 Questions. If you have any questions or complaints, contact us:
Telephone: 0330 390 7535 lines are open Mon-Fri 9.00am-5.30pm (ex. public holidays).
Email: membership@ciisec.org
Post: Chartered Institute of Information Security, Haddonsacre Business Centre, Station Road, Offenham, Worcestershire WR11 8JJ
12.9 Entire Agreement. The Contract represent the entire agreement between CIISec and you with respect to the subject matter hereof and supersedes and replaces all prior and contemporaneous oral and / or written agreements, understandings and statements between you and CIISec with respect to such subject matter. You acknowledge and agree that in entering this contract you have not relied on any statement or representation (whether negligently or innocently made) not expressly set out in these Terms.
Schedule 1 – Direct Debit Provisions
- You agree that you are the signatory of a UK bank account which is linked to the direct debit and understand that the direct debit guarantee only applies in the United Kingdom.
- To switch your existing Membership to direct debit, we must receive your request to switch at least ten (10) Business Days before your next Membership Renewal Date. “Business Days” means any day which is not a Saturday or Sunday, Christmas Day, Good Friday or a bank holiday in any part of the United Kingdom.
- To change the bank account that your existing direct debit is drawn from, you will need to update your bank details directly with your bank and then notify us at membership@ciisec.org
- If we cannot collect payment, or if you cancel your annual direct debit, we may immediately suspend/cancel your Membership at our sole and absolute discretion.
- You understand that GoCardless Ltd administers the annual direct debit service on behalf of CIISec. For the avoidance of doubt, GoCardless Ltd is a third-party direct debit administration provider and is not affiliated with CIISec. You may receive emails from GoCardless Ltd in connection with the service.