This Policy is established on the 1st day of July 2025 by the Converged Security Institute, governing the membership program for all program members.

Parties

1. Converged Security Institute, a professional organisation established under European Union law, being the entity responsible for establishing, administering, and enforcing this membership programme policy.
2. Individual Members, being natural persons who have applied for and been accepted into the membership programme in accordance with the eligibility criteria set forth herein.
3. Corporate Members, being legal entities, companies, and organisations operating in the converged security sector that have been accepted into the corporate membership category.
4. Academic Members, being educational institutions, universities, research organisations, and academic entities engaged in converged security education and research.
5. Student Members, being individuals currently enrolled in relevant educational programs and meeting the student membership criteria.
6. Associate Members, being professionals and organisations with interests related to converged security who qualify for associate status.
7. C-CSP Chartered Members, being individuals who have achieved Chartered Converged Security Practitioner certification and maintain the enhanced professional status and obligations associated therewith.

Background

(A) Converged Security Institute has been established to advance the profession of converged security through the promotion of professional standards, education, research, and best practices within the European Union and internationally.

(B) The converged security industry requires qualified professionals who possess comprehensive knowledge and skills across traditional physical security, cybersecurity, information security, and emerging security technologies.

(C) There exists a need for a structured membership program that recognizes different levels of professional engagement, expertise, and commitment to the field of converged security.

(D) The organisation seeks to establish clear pathways for professional development, including the prestigious Chartered Converged Security Practitioner (C-CSP) designation, which represents the highest standard of professional competence and ethical conduct.

(E) This membership programme aims to foster collaboration among individuals, corporations, academic institutions, and other stakeholders committed to advancing converged security practices and standards.

(F) The programme is designed to support continuing professional development, knowledge sharing, networking opportunities, and the maintenance of professional competencies in accordance with evolving industry requirements.

(G) Compliance with European Union regulations, including data protection requirements under the General Data Protection Regulation, and adherence to professional ethical standards are fundamental principles underlying this membership framework.

(H) The establishment of this policy ensures transparent, fair, and consistent administration of membership rights, obligations, and procedures across all membership categories.

1. Definitions

1.1. Academic Member means an educational institution, university, research organisation, or academic entity engaged in converged security education, training, or research that has been accepted into the academic membership category.

1.2. Associate Member means a professional or organisation with interests related to converged security who qualifies for associate status but does not meet the criteria for other membership categories.

1.3. C-CSP means Chartered Converged Security Practitioner, being the professional designation awarded to individuals who have demonstrated advanced competency, experience, and ethical standards in converged security practice.

1.4. Code of Conduct means the ethical and professional standards set forth in Annex B governing the behavior and professional practice of all Members.

1.5. Converged Security means the integrated approach to security encompassing physical security, cybersecurity, information security, risk management, and emerging security technologies and practices.

1.6. Corporate Member means a legal entity, company, or organisation operating in the converged security sector that has been accepted into the corporate membership category.

1.7. EU Law means the applicable laws, regulations, and directives of the European Union, including but not limited to the General Data Protection Regulation.

1.8. Individual Member means a natural person who has applied for and been accepted into the individual membership category.

1.9. Member means any person or entity admitted to membership under this Policy, including all membership categories defined herein.

1.10. Membership Year means the twelve-month period beginning on [MEMBERSHIP YEAR START DATE] and ending on [MEMBERSHIP YEAR END DATE].

1.11. Organisation means Converged Security Institute and includes its governing bodies, committees, and authorised representatives.

1.12. Personal Data has the meaning given to it under the General Data Protection Regulation and includes any personal information of Members processed by the Organization.

1.13. Policy means this membership program policy document and all annexes attached hereto.

1.14. Professional Development means continuing education, training, certification maintenance, and other activities designed to enhance professional competency in converged security.

1.15. Student Member means an individual currently enrolled in a relevant educational program who meets the student membership criteria as defined in this Policy.

2. Membership Categories and Eligibility

2.1. The Organisation recognises the following membership categories, each designed to serve distinct constituencies within the converged security profession and related fields.

2.2. Individual Member eligibility requires applicants to demonstrate professional engagement in Converged Security or related disciplines through employment, consulting, or active practice in the field.

(a) Applicants must possess relevant professional experience, educational qualifications, or demonstrable expertise in physical security, cybersecurity, information security, or emerging security technologies.

(b) Individual Members must maintain professional competency through ongoing Professional Development activities as specified in this Policy.

2.3. Corporate Member status is available to legal entities engaged in the provision of converged security services, products, or solutions within the European Union or internationally.

(a) Corporate applicants must demonstrate legitimate business operations in converged security sectors and compliance with applicable EU Law and regulatory requirements.

(b) Corporate Members shall designate authorised representatives to exercise membership rights and fulfil organisational obligations.

2.4. Academic Member eligibility extends to educational institutions, research organisations, and academic professionals engaged in converged security education, training, or research activities.

(a) Institutional applicants must demonstrate accredited educational programmes, research initiatives, or academic contributions to the converged security field.

(b) Individual academic professionals must hold relevant academic appointments or demonstrate scholarly contributions to converged security disciplines.

2.5. Student Member status is available to individuals enrolled in accredited educational programs related to converged security, cybersecurity, information security, or equivalent disciplines.

(a) Applicants must provide evidence of current enrolment in recognised academic institutions and maintain satisfactory academic standing.

(b) Student membership is subject to annual verification of continued enrolment status.

2.6. Associate Member category accommodates individuals or organisations with interests in converged security but who do not meet the criteria for other membership categories.

(a) Associate Members possess limited voting rights and may be subject to restrictions on certain membership privileges as determined by the Organisation.

2.7. C-CSP Chartered Member represents the highest level of professional recognition, reserved for individuals who have achieved the Chartered Converged Security Practitioner designation.

(a) C-CSP eligibility requires successful completion of the Organisation's certification programme, demonstration of advanced professional competency, and adherence to enhanced ethical standards.

(b) C-CSP Chartered Members must maintain their designation through continuing Professional Development requirements and periodic recertification as specified in the certification framework.

(c) C-CSP status confers enhanced membership privileges, including advanced voting rights, leadership opportunities, and professional recognition benefits.

2.8. All applicants must demonstrate good professional standing, absence of material disciplinary actions, and commitment to upholding the Organisation's Code of Conduct.

2.9. The Organisation reserves the right to verify eligibility criteria, request additional documentation, and conduct due diligence assessments for all membership applications.

(a) Processing of Personal Data for membership verification shall comply with applicable data protection requirements under EU Law.

3. Application Process and Procedures

3.1. All applications for membership must be submitted through the Organisation's official digital platform or by such other means as the Organisation may designate from time to time.

(a) Applications must be completed in full using the prescribed forms appropriate to the relevant membership category and accompanied by all required supporting documentation.

(b) Incomplete applications will not be processed and will be returned to the applicant with notification of the deficiencies to be remedied.

3.2. Required Documentation

(a) Individual Members must provide proof of professional experience, educational qualifications, and current employment or professional status in converged security or related fields.

(b) Corporate Members must submit corporate registration documents, business licences, organisational structure details, and evidence of engagement in converged security activities.

(c) Academic Members must provide institutional accreditation, curriculum details relating to converged security programmes, and authorised representative designation.

(d) Student Members must submit proof of enrolment in recognised educational programmes relevant to converged security disciplines.

(e) Associate Members must demonstrate interest in converged security through professional references or relevant experience documentation.

(f) C-CSP Chartered Member applicants must fulfill all Individual Member requirements plus additional certification criteria as specified in Annex C.

3.3. Data Processing Consent

(a) All applicants must provide explicit consent for the processing of Personal Data in accordance with applicable EU Law and the Organisation's privacy policy.

(b) Applicants have the right to withdraw consent, access, rectify, or request deletion of their Personal Data in accordance with applicable data protection regulations.

3.4. Application Review Process

(a) Applications are reviewed by the designated membership committee or authorized representatives within thirty (30) calendar days of receipt of complete documentation.

(b) The Organisation may request additional information or clarification during the review process, which may extend the review period accordingly.

(c) Applications requiring specialised assessment, particularly for C-CSP designation, may be subject to extended review periods not exceeding ninety (90) calendar days.

3.5. Approval and Notification

(a) Applicants will be notified in writing of the application decision within seven (7) calendar days of the determination.

(b) Approved applicants will receive membership confirmation, payment instructions, and access credentials for member services.

(c) Rejected applicants will receive written explanation of the grounds for rejection and information regarding appeal procedures.

3.6. Payment and Activation

(a) Approved membership becomes effective upon receipt of applicable membership fees within thirty (30) calendar days of approval notification.

(b) Failure to remit payment within the specified timeframe will result in automatic withdrawal of the membership approval.

3.7. Appeals Process

(a) Applicants may appeal rejection decisions by submitting written notice within thirty (30) calendar days of rejection notification.

(b) Appeals will be reviewed by a different panel than the original reviewing body and decided within sixty (60) calendar days.

(c) The appeals decision is final and binding.

3.8. Record Keeping

(a) The Organization maintains confidential records of all applications, supporting documentation, and decisions in accordance with applicable data retention policies and EU Law requirements.

(b) Application records are retained for a minimum period of seven (7) years following the final decision date.

4. Rights and Privileges

4.1. All Members shall have the right to use the appropriate membership designation and logo in accordance with the Organisation's brand guidelines and applicable intellectual property restrictions.

4.2. Individual Members, Corporate Members, Academic Members, and C-CSP Chartered Members shall have full access to all educational resources, research publications, technical documentation, and professional development materials maintained by the Organisation.

4.3. Student Members and Associate Members shall have limited access to educational resources as determined by the Organisation, with priority given to foundational materials and entry-level professional development content.

4.4. All Members shall have the right to participate in networking events, conferences, webinars, and professional forums organised or sponsored by the Organisation, subject to capacity limitations and registration requirements.

4.5. Corporate Members shall have the right to nominate multiple employees for Individual Member benefits and shall receive preferential rates for organisational training programmes and bulk certification services.

4.6. Academic Members shall have the right to access research collaboration opportunities, academic partnerships, and educational programme development initiatives.

4.7. C-CSP Chartered Members shall enjoy enhanced privileges including:

• (a) Priority access to advanced professional development programmes and specialised technical training.
• (b) Eligibility to serve on professional committees, advisory boards, and standards development working groups.
• (c) Authorisation to use the Chartered Converged Security Practitioner (C-CSP) designation and associated credentials.
• (d) Access to exclusive C-CSP networking events and professional forums.

4.8. Individual Members, Academic Members, and C-CSP Chartered Members shall have voting rights in organisational elections and on matters affecting membership policies, subject to good standing requirements.

4.9. All Members shall have the right to receive regular communications, newsletters, industry updates, and notices of organisational activities and opportunities.

4.10. Members shall have the right to access member directories and networking platforms, subject to privacy preferences and data protection requirements under EU Law.

4.11. All Members shall have the right to receive certificates of membership and, where applicable, professional credentials issued by the Organisation.

4.12. Members shall have the right to request information regarding their membership status, benefits utilization, and Professional Development records in accordance with applicable data protection regulations.

4.13. Corporate Members and Academic Members shall have the right to post employment opportunities, research collaborations, and partnership announcements through Organisation channels, subject to content guidelines and approval procedures.

5. Obligations and Responsibilities

5.1. General Member Obligations

(a) All Members shall conduct themselves in accordance with the highest standards of professional integrity and ethical behaviour as outlined in the Code of Conduct.

(b) Members must comply with all applicable EU Law, national legislation, and regulatory requirements relevant to their professional activities within the converged security field.

(c) Members shall maintain current and accurate contact information with the Organisation and promptly notify of any material changes to their professional status or qualifications.

(d) Members must pay all applicable membership fees and charges in accordance with the payment terms specified in this Policy.

5.2. Professional Standards and Competency

(a) Members shall maintain professional competency appropriate to their membership category through ongoing Professional Development activities.

(b) Individual Members, Corporate Members, and C-CSP Chartered Members must complete minimum continuing professional development requirements as specified in the relevant annexes.

(c) Members shall not misrepresent their qualifications, certifications, or membership status in any professional or commercial context.

(d) Members must ensure their professional activities reflect positively on the Organisation and the converged security profession.

5.3. Code of Conduct Compliance

(a) All Members are bound by and must adhere to the Code of Conduct as set forth in Annex B.

(b) Members shall report suspected violations of the Code of Conduct or professional misconduct by other Members to the Organisation.

(c) Members must cooperate fully with any investigations conducted by the Organisation regarding alleged violations of this Policy or the Code of Conduct.

5.4. Data Protection and Privacy Obligations

(a) Members shall comply with all applicable data protection laws, including the General Data Protection Regulation, in their professional activities.

(b) Members must protect and secure any Personal Data or confidential information obtained through their membership or professional activities.

(c) Members shall not use membership lists, contact information, or other Member data for unauthorized commercial purposes.

5.5. Intellectual Property and Confidentiality

(a) Members must respect and protect the intellectual property rights of the Organisation, other Members, and third parties.

(b) Members shall maintain confidentiality of proprietary information, trade secrets, and sensitive data encountered through membership activities.

(c) Use of the Organisation's name, logo, or trademarks requires prior written authorisation and must comply with established usage guidelines.

5.6. Category-Specific Obligations

(a) C-CSP Chartered Members must maintain their chartered status through compliance with continuing professional development requirements and periodic revalidation as specified in Annex C.

(b) Corporate Members shall ensure their designated representatives maintain appropriate professional qualifications and conduct.

(c) Academic Members must maintain their institutional affiliation and contribute to the advancement of converged security education and research.

(d) Student Members must maintain enrolment in an accredited educational programme relevant to converged security.

5.7. Professional Conduct and Public Representation

(a) Members shall not engage in activities that could reasonably be expected to discredit the Organisation or the converged security profession.

(b) When representing themselves as Members, individuals must clearly distinguish between personal opinions and official positions of the Organisation.

(c) Members must avoid conflicts of interest and disclose potential conflicts when participating in Organisation activities.

5.8. Notification and Reporting Obligations

(a) Members must promptly notify the Organisation of any criminal convictions, professional sanctions, or disciplinary actions that may affect their membership eligibility.

(b) Members shall report changes in employment, professional status, or qualifications that may impact their membership category.

(c) Any Member becoming aware of circumstances that may compromise the integrity or reputation of the Organisation must report such matters promptly.

6. Fees and Payment

6.1. Fee Structure: The Organisation shall establish annual membership fees for each membership category as follows: Individual Members, Corporate Members, Academic Members, Student Members, Associate Members, and C-CSP Chartered Members, with fees determined by the Organisation's governing body and published on the official website.

6.2. Payment Currency: All membership fees shall be payable in Euros (EUR) unless alternative arrangements are specifically approved by the Organisation in writing.

6.3. Payment Due Date: Annual membership fees become due and payable upon application approval for new Members or thirty (30) days prior to the commencement of each Membership Year for renewing Members.

6.4. Payment Methods: Members may remit fees through bank transfer, credit card, debit card, or other electronic payment methods as designated by the Organisation, subject to applicable processing fees.

6.5. Late Payment: Members failing to pay fees within thirty (30) days of the due date shall incur a late payment charge of five percent (5%) of the outstanding amount, with membership privileges suspended until payment is received in full.

6.6. Pro-Rata Calculations: Members joining mid-year shall pay fees calculated on a pro-rata basis from the date of membership approval to the end of the current Membership Year.

6.7. Fee Adjustments: The Organisation reserves the right to adjust membership fees annually with ninety (90) days' written notice to all Members, with adjustments taking effect at the start of the subsequent Membership Year.

6.8. Value Added Tax: Where applicable under EU Law, Members shall be responsible for payment of Value Added Tax (VAT) or equivalent taxes on membership fees in accordance with their jurisdiction's tax obligations.

6.9. Refund Policy: Membership fees are non-refundable except in cases of membership termination by the Organization due to administrative error or where required by applicable consumer protection legislation.

6.10. Financial Assistance: The Organisation may, at its discretion, offer reduced fees or payment plans for Student Members or Individual Members experiencing demonstrated financial hardship, subject to annual review and approval.

6.11. Collection Procedures: Outstanding fees may be subject to collection procedures, including engagement of third-party collection agencies, with all associated costs charged to the defaulting Member.

6.12. Membership Termination for Non-Payment: Membership shall automatically terminate ninety (90) days after fees become overdue unless alternative payment arrangements have been agreed in writing with the Organization.

7. Certification and Professional Development

7.1. The Organisation shall establish and maintain a comprehensive Professional Development framework designed to advance knowledge, skills, and competencies in Converged Security practices among all Members.

7.2. The Chartered Converged Security Practitioner (C-CSP) designation represents the Organisation's highest professional certification, recognising exceptional competence, experience, and ethical standards in Converged Security.

• (a) Eligibility for C-CSP certification requires a minimum of five years' relevant professional experience in Converged Security or related fields, completion of prescribed educational requirements, and demonstration of professional competencies as defined by the Organisation.
• (b) C-CSP candidates must successfully complete the Organisation's certification examination and assessment process, including practical evaluation of Converged Security competencies.
• (c) C-CSP certification holders must maintain their designation through annual continuing professional development requirements of not less than 40 hours per Membership Year.
• (d) C-CSP Members shall adhere to enhanced professional standards and serve as exemplars of best practice within the Converged Security profession.

7.3. All Individual Members, Corporate Members' designated representatives, and Academic Members shall complete a minimum of 20 hours of Professional Development activities per Membership Year to maintain active membership status.

• (a) Student Members and Associate Members are encouraged but not required to participate in Professional Development activities.
• (b) Professional Development activities include attendance at Organisation events, completion of approved courses, participation in research projects, publication of professional articles, and other activities recognised by the Organisation.

7.4. The Organisation shall maintain records of all Professional Development activities undertaken by Members in accordance with EU Law requirements for Personal Data processing and retention.

7.5. Members who fail to meet minimum Professional Development requirements may have their membership status suspended until compliance is achieved, subject to the disciplinary procedures set forth in this Policy.

7.6. The Organisation reserves the right to audit Professional Development records and may require Members to provide evidence of completed activities upon reasonable request.

7.7. All certification and Professional Development programmes shall be designed and delivered in accordance with applicable EU Law, including recognition of qualifications across European Union member states where relevant.

8. Governance and Decision-Making

8.1. The Organisation shall be governed by a Board of Directors comprising representatives from different Membership categories to ensure balanced representation across the converged security community.

8.2. The Board of Directors shall consist of:

• (a) Five representatives elected by Individual Members and C-CSP holders;
• (b) Two representatives elected by Corporate Members;
• (c) One representative elected by Academic Members;
• (d) One independent chair appointed by the existing Board.

8.3. Student Members and Associate Members shall have non-voting observer status at general meetings but may participate in discussions and committee work.

8.4. Voting rights shall be allocated as follows:

• (a) Individual Members and C-CSP holders: one vote per Member;
• (b) Corporate Members: voting weight proportional to membership fee tier, with a maximum of five votes per corporation;
• (c) Academic Members: one vote per institution.

8.5. General meetings shall be convened annually, with extraordinary meetings called upon request of at least twenty percent of eligible voting Members or by Board resolution.

8.6. Quorum for general meetings shall require presence of at least thirty percent of eligible voting Members, either in person or through valid proxy representation.

8.7. Decisions affecting membership rights, fee structures, or amendments to this Policy shall require a two-thirds majority of votes cast at a properly convened meeting.

8.8. The Organization shall establish the following standing committees:

• (a) Professional Development Committee responsible for certification standards and C-CSP requirements;
• (b) Ethics and Code of Conduct Committee handling disciplinary matters;
• (c) Membership Committee overseeing applications and category classifications.

8.9. Committee membership shall be open to all Members in good standing, with C-CSP holders given preference for technical and professional standards roles.

8.10. All governance decisions shall comply with EU Law requirements regarding association governance, transparency, and Member rights protection.

8.11. Members shall receive at least thirty days' written notice of any general meeting, including agenda items and proposed resolutions requiring Member approval.

8.12. Electronic voting and remote participation in governance activities shall be permitted where technically feasible and legally compliant under applicable EU Law.

9. Disciplinary Procedures

9.1. Grounds for Disciplinary Action

(a) The Organisation may initiate disciplinary proceedings against any Member for conduct that violates this Policy, the Code of Conduct, professional standards, or brings the Organisation or the profession into disrepute.

(b) Disciplinary action may be commenced for breach of membership obligations, failure to maintain required standards, non-payment of fees, professional misconduct, or violation of EU Law requirements.

(c) For C-CSP Chartered Members, additional grounds include failure to maintain certification requirements, breach of enhanced professional standards, or conduct incompatible with chartered status.

9.2. Investigation Process

(a) All disciplinary matters shall be handled confidentially and in accordance with principles of natural justice and EU fundamental rights.

(b) Upon receipt of a complaint or identification of potential misconduct, the Organization shall conduct a preliminary assessment within thirty (30) days.

(c) If formal investigation is warranted, the Member shall be notified in writing of the allegations, provided with relevant evidence, and given reasonable opportunity to respond.

(d) The Member has the right to be accompanied by a representative during any formal proceedings and to present evidence in their defense.

9.3. Disciplinary Panel

(a) Disciplinary matters shall be determined by an independent panel comprising at least three (3) persons with relevant expertise and no conflict of interest.

(b) The panel shall include at least one C-CSP Chartered Member where the respondent holds chartered status.

(c) Panel members shall be bound by confidentiality obligations and data protection requirements.

9.4. Disciplinary Sanctions

(a) Available sanctions include written warning, mandatory additional Professional Development, suspension of membership privileges, downgrading of membership category, or termination of membership.

(b) For C-CSP Chartered Members, sanctions may include suspension or revocation of chartered status.

(c) Sanctions shall be proportionate to the severity of the misconduct and take into account any mitigating or aggravating factors.

9.5. Decision and Notification

(a) The disciplinary panel shall issue a written decision within sixty (60) days of conclusion of proceedings, stating findings of fact, conclusions, and any sanctions imposed.

(b) The decision shall be communicated to the Member with clear explanation of appeal rights and timeframes.

9.6. Appeals Process

(a) Members may appeal disciplinary decisions within thirty (30) days of notification by submitting written grounds to an independent appeals panel.

(b) The appeals panel shall comprise different individuals from the original disciplinary panel and shall review both the process followed and the substantive decision.

(c) Appeals decisions are final and binding, subject only to applicable EU Law rights and remedies.

9.7. Interim Measures

(a) Where serious misconduct is alleged, the Organization may suspend membership privileges pending investigation, provided the Member is given opportunity for urgent review.

(b) Interim measures shall be proportionate and shall not prejudice the final determination.

9.8. Data Protection and Records

(a) All disciplinary proceedings shall comply with applicable Personal Data protection requirements, including GDPR provisions on processing for legitimate interests.

(b) Disciplinary records shall be retained in accordance with the Organization's data retention policy and legal requirements.

(c) Members have rights of access to their Personal Data held in disciplinary files, subject to legitimate confidentiality considerations.

9.9. Reinstatement

(a) Suspended or terminated Members may apply for reinstatement after the expiry of any specified period, demonstrating rehabilitation and compliance with conditions.

(b) Reinstatement applications shall be considered by the same process as new membership applications, with additional scrutiny of remedial measures undertaken.

10. Data Protection and Privacy

10.1. The Organisation processes Personal Data of Members in accordance with EU Law, particularly Regulation (EU) 2016/679 (General Data Protection Regulation) and applicable national data protection legislation.

10.2. The Organisation acts as data controller for Personal Data collected and processed in connection with membership applications, administration, and related services.

10.3. Personal Data is processed on the following lawful bases:

• (a) Performance of membership obligations and provision of membership services pursuant to this Policy.
• (b) Compliance with legal obligations under EU Law and national legislation.
• (c) Legitimate interests of the Organisation in administering membership programmes, maintaining professional standards, and promoting converged security practices.
• (d) Explicit consent where required for specific processing activities including marketing communications and optional services.

10.4. Members have the following rights regarding their Personal Data:

• (a) Right of access to Personal Data held by the Organization.
• (b) Right to rectification of inaccurate or incomplete Personal Data.
• (c) Right to erasure in circumstances prescribed by EU Law.
• (d) Right to restrict processing where legally applicable.
• (e) Right to data portability for electronically provided Personal Data.
• (f) Right to object to processing based on legitimate interests.
• (g) Right to withdraw consent where processing is based on consent.

10.5. The Organisation implements appropriate technical and organisational measures to ensure Personal Data security, including encryption, access controls, and staff training on data protection requirements.

10.6. Personal Data is retained only for the period necessary to fulfil membership purposes, comply with legal obligations, and maintain professional records, with maximum retention periods specified in the Organisation's data retention schedule.

10.7. Personal Data may be shared with:

• (a) Third-party service providers under appropriate data processing agreements.
• (b) Professional bodies and certification authorities for C-CSP designation verification.
• (c) Regulatory authorities where required by EU Law.
• (d) Other Members in directories and networking platforms where consent has been provided.

10.8. International transfers of Personal Data occur only to countries with adequate protection decisions or under appropriate safeguards including Standard Contractual Clauses approved by the European Commission.

10.9. Members must notify the Organisation of any changes to their Personal Data and may exercise their data protection rights by contacting the designated Data Protection Officer.

10.10. The Organisation maintains records of processing activities and conducts privacy impact assessments for high-risk processing operations.

10.11. Personal data breaches affecting Members are reported to supervisory authorities and affected individuals in accordance with EU Law timeframes and requirements.

10.12. This Policy incorporates the Organisation's Privacy Notice, which provides detailed information about data processing practices and is made available to all Members.

11. Intellectual Property Rights

11.1. The Organisation retains all intellectual property rights in its name, logos, trademarks, service marks, certification marks including C-CSP designation, training materials, publications, research, methodologies, and all other proprietary content developed by or on behalf of the Organisation.

11.2. Members are granted a non-exclusive, non-transferable licence to use the Organisation's intellectual property solely for purposes directly related to their membership activities and in accordance with usage guidelines established by the Organisation.

• (a) Individual Members, Associate Members, and Student Members may use Organisation materials solely for personal professional development and non-commercial purposes.
• (b) Corporate Members and Academic Members may use Organisation materials for internal training and educational purposes within their respective organisations, subject to prior written approval for any broader distribution.
• (c) C-CSP certified Members are granted additional rights to use the C-CSP designation and related materials in accordance with the certification requirements set forth in Annex C.

11.3. Members retain all intellectual property rights in their pre-existing intellectual property and any intellectual property they independently develop outside the scope of Organization activities.

11.4. Any intellectual property created by Members during Organisation sponsored activities, including but not limited to research projects, working groups, or collaborative initiatives, shall be subject to separate written agreements defining ownership and usage rights.

11.5. Members who contribute content to Organisation publications, presentations, or other materials grant the Organisation a perpetual, royalty-free licence to use, reproduce, distribute, and modify such content for Organisation purposes, while retaining their underlying ownership rights.

11.6. Members are prohibited from using Organisation intellectual property for commercial purposes, competitive activities, or in any manner that may damage the reputation or interests of the Organisation without express written consent.

11.7. Upon termination or expiration of membership, all rights to use Organization intellectual property shall immediately cease, except for materials already lawfully incorporated into the Member's work prior to termination.

11.8. Members shall promptly notify the Organisation of any suspected infringement of Organisation intellectual property rights and shall cooperate in any enforcement actions deemed necessary by the Organisation.

11.9. This section shall be interpreted and enforced in accordance with EU Law including applicable directives on intellectual property rights, database rights, and copyright protection.

12. Suspension and Termination

12.1. The Organisation may suspend or terminate any Member's membership for the following grounds:

• (a) Material breach of this Policy or failure to comply with membership obligations.
• (b) Violation of the Code of Conduct or professional ethical standards.
• (c) Non-payment of membership fees after thirty (30) days written notice and opportunity to cure.
• (d) Conduct that brings the Organization or the profession into disrepute.
• (e) Provision of false or misleading information in membership applications or renewals.
• (f) Failure to maintain continuing Professional Development requirements where applicable.
• (g) Criminal conviction directly related to professional competence or integrity.

12.2. Prior to suspension or termination, the Organisation shall provide the Member with:

• (a) Written notice specifying the grounds for proposed action and supporting evidence.
• (b) A minimum of thirty (30) days to respond in writing and remedy any curable breach.
• (c) An opportunity to present their case before an impartial review panel.

12.3. Suspension procedures shall operate as follows:

• (a) Suspension may be imposed for a period not exceeding twelve (12) months.
• (b) During suspension, the Member retains the right to appeal but loses all membership privileges and benefits.
• (c) Suspended Members may apply for reinstatement upon demonstrating compliance with applicable requirements.

12.4. Termination procedures shall operate as follows:

• (a) Termination results in permanent cessation of membership status and all associated rights.
• (b) Terminated Members may reapply for membership after a minimum period of two (2) years.
• (c) C-CSP Chartered Members facing termination shall have their professional designation reviewed separately under applicable certification procedures.

12.5. Members subject to suspension or termination proceedings have the right to:

• (a) Receive all documentation and evidence supporting the proposed action.
• (b) Legal representation or assistance during proceedings.
• (c) Appeal any decision to an independent appeals panel within sixty (60) days of notification.

12.6. Upon suspension or termination:

• (a) All membership privileges, access rights, and use of Organization marks cease immediately.
• (b) The Member must return all Organization property and materials within fourteen (14) days.
• (c) Personal Data shall be processed in accordance with applicable data protection requirements and the Organization's privacy policy.
• (d) Outstanding fees and obligations remain payable.

12.7. Members may voluntarily terminate their membership by providing thirty (30) days written notice to the Organization.

12.8. The Organisation reserves the right to impose immediate interim suspension where continued membership poses imminent risk to the Organisation, other Members, or the public, subject to subsequent formal proceedings.

13. Amendment Procedures

13.1. The Organisation may amend this Policy from time to time in accordance with the procedures set forth in this section.

13.2. Amendments may be proposed by the governing board of the Organisation, or by petition from Members representing at least ten percent (10%) of the total membership across all membership categories.

13.3. All proposed amendments shall be classified as either material amendments or administrative amendments.

• (a) Material amendments include changes to membership categories, rights and obligations of Members, fee structures, disciplinary procedures, or the Code of Conduct.
• (b) Administrative amendments include updates to contact information, procedural clarifications, or corrections that do not affect Member rights or obligations.

13.4. For material amendments, the Organisation shall provide at least sixty (60) days written notice to all Members before implementation.

• (a) The notice shall include the proposed amendment text, rationale for the change, and implementation timeline.
• (b) Members shall have thirty (30) days from the notice date to submit written comments or objections.
• (c) The Organisation shall consider all Member feedback and may modify the proposed amendment accordingly.

13.5. Administrative amendments require thirty (30) days written notice to Members and shall become effective automatically unless objected to by Members representing more than twenty-five percent (25%) of the total membership.

13.6. All material amendments require approval by a two-thirds majority vote of the Organisation's governing board after completion of the Member consultation process.

13.7. Emergency amendments may be implemented immediately without prior consultation when necessary to ensure compliance with EU Law or to address urgent safety or security concerns.

• (a) Emergency amendments shall be communicated to all Members within seventy-two (72) hours of implementation.
• (b) Emergency amendments shall remain in effect for a maximum of ninety (90) days unless formally adopted through the standard amendment procedures.

13.8. All amendments shall be communicated to Members through official channels including electronic notification to registered email addresses and posting on the Organisation's official website.

13.9. Amendments shall not adversely affect the rights of existing Members without providing reasonable transitional arrangements or grandfathering provisions where appropriate.

13.10. The Organisation shall maintain a comprehensive record of all amendments, including consultation feedback, approval documentation, and implementation dates.

13.11. This amendment procedure may only be modified through a material amendment requiring approval by three-quarters majority of the governing board and consent from Members representing at least sixty percent (60%) of the total membership.

14. Dispute Resolution

14.1. Any dispute, controversy, or claim arising out of or relating to this Policy, membership status, obligations, or benefits shall first be addressed through the Organisation's internal dispute resolution procedures.

14.2. Members must notify the Organisation in writing of any dispute within sixty (60) days of the circumstances giving rise to the dispute becoming known or reasonably discoverable.

14.3. Upon receipt of a dispute notification, the Organisation shall appoint an internal review panel comprising three senior members not directly involved in the disputed matter to conduct an initial assessment and attempt resolution within thirty (30) days.

14.4. If internal resolution is unsuccessful, either party may refer the dispute to mediation conducted by a qualified mediator appointed by mutual agreement or, failing agreement, by the relevant professional mediation body in the jurisdiction where the Organization is established.

14.5. Mediation proceedings shall be conducted in English and shall follow the mediation rules of the appointing body, with costs shared equally between the parties unless otherwise agreed.

14.6. Where mediation fails to resolve the dispute within ninety (90) days of commencement, either party may initiate arbitration proceedings under the rules of the International Chamber of Commerce, with the seat of arbitration in the European Union.

14.7. Arbitration shall be conducted by a single arbitrator for disputes involving amounts below €50,000 or matters of membership status, and by three arbitrators for disputes involving higher amounts or complex Professional Development or C-CSP certification matters.

14.8. Disputes involving Code of Conduct violations, disciplinary proceedings, or membership termination may be subject to expedited arbitration procedures with shortened timelines as determined by the arbitrator.

14.9. As a final resort, any unresolved disputes may be brought before the competent courts of the European Union member state where the Organization is established, applying EU Law and relevant national legislation.

14.10. Pending resolution of any dispute, both parties shall continue to fulfill their respective obligations under this Policy unless specifically suspended by arbitral or judicial order.

14.11. All dispute resolution proceedings shall be conducted confidentially, and parties agree not to disclose information obtained during such proceedings except as required by law or regulatory obligation.

15. Force Majeure and Exceptional Circumstances

15.1. For the purposes of this Policy, force majeure events include acts of God, natural disasters, pandemics, governmental actions, civil unrest, war, terrorism, cyber attacks, infrastructure failures, and any other circumstances beyond the reasonable control of the Organisation that materially impede the performance of membership obligations.

15.2. Upon the occurrence of a force majeure event, the Organisation may suspend or modify the provision of membership services, educational programmes, certification processes, and other membership benefits to the extent necessary and proportionate to the circumstances.

• (a) Any suspension or modification of services shall apply equally across all Member categories unless specific circumstances require differentiated treatment for legitimate operational reasons.
• (b) The Organisation shall make reasonable efforts to maintain essential services, including member communications and Personal Data protection measures, in accordance with EU Law requirements.

15.3. The Organisation shall notify all Members of any force majeure event and resulting service modifications within a reasonable timeframe through available communication channels.

• (a) Such notification shall include the nature of the event, expected duration of impact, alternative arrangements where available, and regular updates on recovery progress.

15.4. During force majeure events, membership obligations including fee payments, Professional Development requirements, and Code of Conduct compliance may be suspended or modified at the Organisation's discretion.

• (a) Any suspension of payment obligations shall not automatically extend Membership Year periods unless specifically determined by the Organisation.
• (b) C-CSP certification maintenance requirements may be extended where circumstances prevent normal compliance activities.

15.5. Members experiencing individual hardship due to force majeure events may request specific accommodations regarding membership obligations, which shall be considered on a case-by-case basis.

15.6. The Organisation shall implement recovery procedures to restore normal operations as soon as reasonably practicable following resolution of the force majeure event.

• (a) Priority shall be given to restoring essential member services, data security measures, and certification processes.

15.7. Force majeure events shall not excuse violations of data protection obligations under EU Law where continued compliance remains technically and practically feasible.

15.8. This clause shall not limit Members' rights under applicable consumer protection legislation or EU Law where such rights cannot be contractually excluded.

16. Governing Law and Jurisdiction

16.1. This Policy and all membership relationships established thereunder shall be governed by and construed in accordance with EU Law, including but not limited to relevant directives, regulations, and decisions of the European Union institutions.

16.2. Where EU Law does not provide specific guidance, the laws of the member state in which the Organization maintains its principal place of business shall apply as supplementary governing law.

16.3. All disputes, claims, or controversies arising out of or relating to this Policy, membership status, or the rights and obligations of Members shall be subject to the exclusive jurisdiction of the competent courts of the European Union.

16.4. The Organisation and all Members acknowledge and agree to submit to the jurisdiction of such courts for the resolution of any legal proceedings.

16.5. All Personal Data processing activities conducted under this Policy shall comply with the General Data Protection Regulation (EU) 2016/679 and any successor or supplementary EU data protection legislation.

16.6. Members acknowledge that cross-border data transfers within the European Union and to third countries shall be conducted in accordance with applicable EU data protection requirements and adequacy decisions.

16.7. Any conflict between the provisions of this Policy and mandatory provisions of EU Law shall be resolved in favor of EU Law, with the remainder of this Policy remaining in full force and effect.

16.8. The Organisation shall ensure ongoing compliance with all applicable EU regulations affecting professional membership organisations, certification bodies, and continuing professional development providers.

17. Effective Date and Transitional Provisions

17.1. This Policy shall come into effect on 1st July 2025 ("Effective Date") and shall supersede all previous membership policies, procedures, and frameworks of the Organisation.

17.2. All membership applications submitted prior to the Effective Date shall be processed and determined in accordance with the provisions of this Policy.

17.3. Existing members holding valid membership status immediately prior to the Effective Date shall automatically transition to the equivalent membership category under this Policy without requiring reapplication.

• (a) Individual members shall be reclassified as Individual Members under this Policy.
• (b) Corporate members shall be reclassified as Corporate Members under this Policy.
• (c) Academic institution members shall be reclassified as Academic Members under this Policy.
• (d) Student members shall be reclassified as Student Members under this Policy.
• (e) Members holding equivalent professional certifications shall be assessed for C-CSP Chartered Member status within six months of the Effective Date.

17.4. All existing members shall have a grace period of twelve months from the Effective Date to comply with any new requirements introduced under this Policy, including Professional Development obligations and Code of Conduct acknowledgment.

17.5. Membership fees paid under previous frameworks shall be credited toward obligations under this Policy for the remainder of the current Membership Year.

17.6. Any disciplinary proceedings commenced prior to the Effective Date shall continue under the procedures established by this Policy.

17.7. Personal Data processing activities shall immediately comply with this Policy's data protection provisions and EU Law requirements from the Effective Date.

17.8. Rights and privileges granted to members under previous frameworks shall continue until the expiry of the current Membership Year, after which this Policy shall govern all member entitlements.

17.9. The Organisation shall provide written notice to all existing members regarding the implementation of this Policy and any transitional arrangements affecting their membership status.

18. Annex A: Individual Member Profiles

18.1. Individual Member profile shall encompass natural persons engaged in converged security practice who demonstrate professional competence and commitment to the field.

• (a) Eligibility requirements include minimum three years professional experience in converged security or related disciplines, completion of relevant professional qualifications, and demonstration of continuing professional development commitment.
• (b) Rights include voting privileges in organizational matters, access to professional development resources, networking opportunities, participation in technical committees, and eligibility for professional certifications including C-CSP designation.
• (c) Obligations include payment of annual membership fees, adherence to the Code of Conduct, maintenance of professional competencies through continuing education, and participation in peer review processes when requested.

18.2. Corporate Member profile shall encompass legal entities operating within the converged security sector seeking organisational recognition and industry engagement.

• (a) Eligibility requirements include legal registration within the European Union, demonstrated business activity in converged security services or products, and commitment to industry best practices and ethical standards.
• (b) Rights include designated voting representatives, priority access to industry research and publications, participation in policy development initiatives, promotional opportunities through organisational channels, and preferential rates for organisational events and services.
• (c) Obligations include payment of corporate membership fees, appointment of qualified professional representatives, compliance with organisational standards and Code of Conduct, and contribution to industry knowledge sharing initiatives.

18.3. Academic Member profile shall encompass educational institutions and individual academics contributing to converged security education and research.

• (a) Eligibility requirements include affiliation with recognised educational institutions, demonstration of academic credentials in security-related disciplines, and evidence of research or educational contributions to the converged security field.
• (b) Rights include access to research collaboration opportunities, participation in academic advisory committees, publication opportunities in organizational journals, student placement program participation, and reduced fees for academic conferences.
• (c) Obligations include contribution to educational standards development, participation in curriculum review processes, sharing of research findings with the professional community, and maintenance of academic integrity standards.

18.4. Student Member profile shall encompass individuals currently enrolled in formal education programmes related to converged security disciplines.

• (a) Eligibility requirements include current enrolment in recognised educational programmes at undergraduate, postgraduate, or doctoral level in security-related disciplines, and provision of valid student status documentation.
• (b) Rights include reduced membership fees, access to educational resources and scholarship opportunities, mentorship program participation, student chapter establishment rights, and transition pathways to full membership categories.
• (c) Obligations include maintenance of student status verification, adherence to Code of Conduct, participation in designated student activities, and demonstration of academic progress in security-related studies.

18.5. Associate Member profile shall encompass individuals and entities with interest in converged security but not meeting full membership criteria.

• (a) Eligibility requirements include demonstrated interest in converged security through professional, academic, or business activities, and commitment to organisational objectives and ethical standards.
• (b) Rights include access to selected organisational resources, participation in designated events and activities, networking opportunities with full members, and pathways for advancement to full membership categories.
• (c) Obligations include payment of associate membership fees, compliance with Code of Conduct, and demonstration of continued engagement with organisational activities and objectives.

18.6. C-CSP Chartered Member profile shall represent the highest level of professional recognition for individuals demonstrating exceptional competence in converged security practice.

• (a) Eligibility requirements include minimum five years senior-level experience in converged security, successful completion of C-CSP certification process, demonstration of leadership in professional practice, and commitment to continuing professional excellence.
• (b) Rights include enhanced voting privileges, priority access to advanced professional development programmes, eligibility for organisational leadership positions, professional recognition through C-CSP designation usage, and participation in peer assessment processes.
• (c) Obligations include maintenance of C-CSP certification requirements, adherence to enhanced ethical standards, contribution to professional mentorship programmes, participation in competency assessment activities, and demonstration of continuing professional leadership.

18.7. All member profiles shall be subject to periodic review and may be modified through organisational governance processes to reflect evolving industry requirements and professional standards.

18.8. Member profile transitions between categories shall be facilitated through established procedures ensuring recognition of accumulated experience, qualifications, and contributions to the converged security profession.

19. Annex B: Code of Conduct

19.1. Professional Integrity and Ethical Standards

(a) All Members shall conduct themselves with the highest standards of professional integrity, honesty, and ethical behaviour in all professional activities and interactions.

(b) Members shall not engage in any conduct that brings the Organisation or the converged security profession into disrepute.

(c) Members shall provide accurate and truthful information in all professional communications, reports, and documentation.

(d) Members shall not make false, misleading, or exaggerated claims regarding their qualifications, experience, or capabilities.

19.2. Competence and Professional Development

(a) Members shall maintain and continuously develop their professional competence through ongoing education, training, and experience.

(b) Members shall only undertake work for which they are qualified by education, training, or experience.

(c) Members shall recognize the limits of their expertise and seek appropriate assistance when necessary.

(d) C-CSP Chartered Members shall maintain the highest standards of professional competence and comply with additional continuing professional development requirements.

19.3. Confidentiality and Data Protection

(a) Members shall protect confidential information obtained during the course of their professional activities and shall not disclose such information without proper authorization.

(b) Members shall comply with all applicable data protection laws, including the General Data Protection Regulation, when handling Personal Data.

(c) Members shall implement appropriate technical and organizational measures to ensure the security of confidential information and Personal Data.

(d) Members shall not use confidential information for personal gain or competitive advantage.

19.4. Respect and Non-Discrimination

(a) Members shall treat all individuals with dignity, respect, and fairness regardless of race, gender, age, religion, nationality, sexual orientation, disability, or any other protected characteristic under EU Law.

(b) Members shall not engage in harassment, bullying, or any form of discriminatory behavior.

(c) Members shall foster an inclusive environment that promotes diversity and equal opportunities within the converged security profession.

19.5. Conflicts of Interest

(a) Members shall identify and disclose any actual, potential, or perceived conflicts of interest that may affect their professional judgment or objectivity.

(b) Members shall take appropriate measures to manage conflicts of interest and shall not allow such conflicts to compromise their professional responsibilities.

(c) Members shall not accept gifts, benefits, or favors that could reasonably be perceived as influencing their professional judgment.

19.6. Legal and Regulatory Compliance

(a) Members shall comply with all applicable laws, regulations, and industry standards in their professional activities.

(b) Members shall not engage in any illegal activities or assist others in conducting illegal activities.

(c) Members shall cooperate with legitimate regulatory investigations and enforcement actions.

19.7. Professional Relationships

(a) Members shall maintain professional relationships with clients, colleagues, and other stakeholders based on mutual respect and trust.

(b) Members shall not engage in unfair competition practices or make disparaging comments about other professionals without factual basis.

(c) Corporate Members and Academic Members shall ensure their employees and representatives comply with this Code of Conduct.

19.8. Information Security and Technology

(a) Members shall implement and maintain appropriate information security measures in their professional activities.

(b) Members shall not engage in unauthorized access to computer systems, networks, or data.

(c) Members shall report security incidents and vulnerabilities in accordance with applicable procedures and legal requirements.

19.9. Reporting and Whistleblowing

(a) Members shall report violations of this Code of Conduct, illegal activities, or unethical behavior to the appropriate authorities within the Organization.

(b) The Organization shall protect Members who report violations in good faith from retaliation or adverse treatment.

(c) Members shall cooperate with investigations into alleged violations of this Code of Conduct.

19.10. Compliance and Enforcement

(a) All Members are required to acknowledge and comply with this Code of Conduct as a condition of membership.

(b) Violations of this Code of Conduct may result in disciplinary action, including suspension or termination of membership.

(c) The Organization reserves the right to investigate alleged violations and impose appropriate sanctions in accordance with the disciplinary procedures set forth in this Policy.

20. Annex C: C-CSP Chartered Member Requirements

20.1. Eligibility Criteria

(a) Applicants must hold Individual Member status with the Organization for a minimum period of two years immediately preceding application.

(b) Applicants must demonstrate a minimum of five years professional experience in converged security, cybersecurity, physical security, or related security disciplines.

(c) Applicants must possess relevant educational qualifications at bachelor's degree level or equivalent professional certifications as recognized by the Organization.

(d) Applicants must provide evidence of continuing professional development activities totaling not less than 120 hours over the three years preceding application.

20.2. Professional Competency Requirements

(a) Candidates must demonstrate comprehensive knowledge across physical security, cybersecurity, information security, and risk management domains.

(b) Candidates must exhibit proficiency in security governance, compliance frameworks, and regulatory requirements applicable within the European Union.

(c) Candidates must show evidence of leadership experience in security projects, teams, or organizational security functions.

(d) Candidates must demonstrate ability to integrate traditional and emerging security technologies into cohesive security strategies.

20.3. Assessment and Certification Process

(a) Candidates must successfully complete the C-CSP professional examination administered by the Organization or approved assessment providers.

(b) Candidates must submit a comprehensive portfolio demonstrating practical application of converged security principles in professional contexts.

(c) Candidates may be required to participate in professional interviews or peer review processes as determined by the Organization's certification board.

(d) The certification process must be completed within eighteen months of initial application acceptance.

20.4. Continuing Professional Development Obligations

(a) C-CSP Chartered Members must complete a minimum of 40 hours of approved Professional Development activities annually.

(b) Professional Development activities must cover technical competencies, regulatory updates, ethical considerations, and emerging security technologies.

(c) At least 20% of annual Professional Development hours must relate to European Union regulatory developments and compliance requirements.

(d) C-CSP Chartered Members must submit annual Professional Development reports to maintain charter status.

20.5. Professional Conduct and Ethical Standards

(a) C-CSP Chartered Members must maintain exemplary professional conduct and adhere strictly to the Code of Conduct.

(b) C-CSP Chartered Members must act as ambassadors for professional standards within the converged security community.

(c) C-CSP Chartered Members must report any conflicts of interest, criminal convictions, or professional disciplinary actions to the Organization within 30 days of occurrence.

(d) C-CSP Chartered Members must participate in peer mentoring and professional development activities as requested by the Organization.

20.6. Charter Maintenance and Renewal

(a) C-CSP charter status requires annual renewal subject to compliance with continuing professional development requirements and Code of Conduct obligations.

(b) Charter renewal applications must be submitted with supporting documentation no later than 60 days prior to expiration.

(c) Failure to meet renewal requirements may result in suspension or revocation of C-CSP charter status following due process procedures.

(d) Reinstatement of lapsed charter status requires completion of additional Professional Development activities and payment of applicable reinstatement fees.

20.7. Professional Recognition and Privileges

(a) C-CSP Chartered Members are entitled to use the designated post-nominal letters and official C-CSP logo in accordance with brand guidelines.

(b) C-CSP Chartered Members receive priority access to advanced training programs, research publications, and industry networking events.

(c) C-CSP Chartered Members may serve on Organization committees, advisory boards, and professional standards development panels.

(d) C-CSP Chartered Members are eligible for reduced fees on Organization services, publications, and continuing education programs.