IOOPS

Last Updated: January 2025

The International Operations & Oversight Protocol System (IOOPS) is committed to protecting the privacy and security of personal information provided by operational entities, stakeholders, and website visitors. This Privacy Policy outlines our practices regarding information collection, use, disclosure, and protection.

1. Information We Collect

1.1 Information Provided Directly

IOOPS collects information that you provide directly when:

• Submitting inquiries through our contact forms
• Registering for coordination services or compliance programs
• Participating in training sessions, conferences, or workshops
• Subscribing to updates or newsletters
• Submitting operational documentation for verification

This may include: name, organization affiliation, email address, jurisdiction, role or position, and inquiry or message content.

1.2 Automatically Collected Information

When you visit our website, we may automatically collect certain technical information including:

• IP address and geographic location
• Browser type and version
• Device information and operating system
• Pages visited and time spent on pages
• Referring website or source
• Date and time of access

1.3 Operational Data

For entities subject to IOOPS oversight, we collect operational data necessary for coordination and compliance verification, including transit documentation, compliance certificates, verification records, and coordination acknowledgments in accordance with established protocols.

2. How We Use Your Information

IOOPS uses collected information for the following purposes:

2.1 Operational Coordination

• Processing and verifying operational documentation
• Coordinating multi-jurisdictional operations
• Conducting compliance assessments and verification
• Maintaining operational records and documentation

2.2 Communication

• Responding to inquiries and providing support
• Sending operational updates and protocol notifications
• Providing training and educational information
• Distributing newsletters and announcements (with consent)

2.3 Website Improvement

• Analyzing website usage and performance
• Improving user experience and functionality
• Troubleshooting technical issues
• Ensuring website security

2.4 Legal and Compliance

• Complying with legal obligations and regulations
• Enforcing our terms and policies
• Protecting rights, property, and safety
• Responding to legal requests and processes

3. Information Sharing and Disclosure

IOOPS maintains strict confidentiality regarding collected information. We do not sell, rent, or trade personal information. Information may be shared only in the following circumstances:

3.1 Authorized Jurisdictional Authorities

Operational data may be shared with relevant jurisdictional authorities as required for coordination purposes and in accordance with established protocols and mutual recognition frameworks.

3.2 Service Providers

We may engage trusted third-party service providers to support our operations (e.g., hosting, data analytics, communication services). These providers are contractually obligated to maintain confidentiality and use information only for specified purposes.

3.3 Legal Requirements

Information may be disclosed when required by law, legal process, or in response to valid requests by public authorities, including to meet national security or law enforcement requirements.

3.4 Protection of Rights

We may disclose information when necessary to protect the rights, property, or safety of IOOPS, our stakeholders, or others, including enforcement of our policies and investigation of potential violations.

4. Data Security

IOOPS implements comprehensive security measures to protect information against unauthorized access, alteration, disclosure, or destruction:

• Encryption: Data transmission uses TLS 1.3 encryption; stored data uses AES-256 encryption
• Access Controls: Role-based access with multi-factor authentication for authorized personnel
• Monitoring: Continuous system monitoring and intrusion detection
• Audit Trails: Comprehensive logging of access and modifications
• Physical Security: Secure facilities with restricted access
• Regular Assessments: Periodic security audits and vulnerability testing

While we implement industry-standard security measures, no method of transmission or storage is completely secure. We cannot guarantee absolute security but maintain ongoing efforts to protect information.

5. Data Retention

IOOPS retains information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law.

• Operational Records: Maintained in accordance with protocol requirements (typically 7 years minimum)
• Compliance Documentation: Retained per jurisdictional and regulatory requirements
• Contact Information: Retained while relationship is active or as needed for legitimate purposes
• Website Analytics: Aggregated data retained for analysis; individual data anonymized or deleted

6. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal information:

6.1 Access and Correction

You may request access to personal information we hold about you and request correction of inaccurate or incomplete information.

6.2 Data Portability

You may request a copy of your personal information in a structured, commonly used format.

6.3 Deletion

You may request deletion of your personal information, subject to legal and operational retention requirements.

6.4 Opt-Out

You may opt out of receiving non-essential communications by using the unsubscribe link in emails or contacting us directly.

6.5 Exercising Rights

To exercise these rights, contact our Data Protection Officer at: legal@ioops.org

7. International Data Transfers

IOOPS operates internationally and may transfer information across borders to our coordination offices and authorized jurisdictional partners. We ensure appropriate safeguards are in place through:

• Standard contractual clauses approved by relevant authorities
• Adequacy decisions recognizing equivalent protection
• Binding corporate rules and data transfer agreements
• Encryption and security measures during transmission

8. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to improve functionality and user experience:

Essential Cookies

Required for website operation, including session management and security.

Analytics Cookies

Help us understand website usage and improve performance (used with consent where required).

Managing Cookies

You can control cookie preferences through your browser settings. Note that disabling certain cookies may affect website functionality.

9. Children's Privacy

IOOPS services are directed to operational entities and professional stakeholders. We do not knowingly collect information from individuals under 16 years of age. If we become aware of such collection, we will take steps to delete the information.

10. Changes to This Privacy Policy

IOOPS may update this Privacy Policy periodically to reflect changes in our practices, technologies, legal requirements, or other factors. We will notify you of material changes through:

• Posting the updated policy on our website with the revision date
• Email notification to registered entities and contacts
• Prominent notice on our website for significant changes

Continued use of our services after changes indicates acceptance of the updated policy.

11. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact:

Data Protection Officer
International Operations & Oversight Protocol System
Geneva, Switzerland
Email: legal@ioops.org
General Inquiries: infos@ioops.org

12. Governing Law

This Privacy Policy is governed by Swiss data protection law and applicable international data protection regulations. For jurisdiction-specific rights and requirements, please refer to your local data protection authority.