Skip to main content
OT/ICS Cybersecurity AssessmentFree Assessment—Is your critical infrastructure protected?Request Now→
TTPSEC SPATTPSEC
Services
About UsBlogAcademyPartner With UsContact
BookRequest Assessment
  2. Privacy Policy
Legal

Personal Data Protection Policy

How we collect, use, store, and protect your personal data.

Last updated: March 8, 2026

1. Data Controller

TTPSEC SpA, RUT 77.547.404-1, with registered address in Coquimbo, Chile, is the controller responsible for processing your personal data. For any inquiries related to this policy, you may contact us at:

  • Email: contacto@ttpsec.com

2. Applicable Legal Framework

This policy is governed by current Chilean legislation on personal data protection:

  • Ley 21.719 — Personal Data Protection Act (amending Ley 19.628).
  • Ley 21.663 — Cybersecurity and Critical Information Infrastructure Framework Law.
  • Supreme Decree No. 83 — Technical Standard on Security and Confidentiality of Electronic Documents.

We also follow international standards such as ISO/IEC 27701 (Privacy Information Management) and the European Union General Data Protection Regulation (GDPR) as a benchmark for best practices.

3. Personal Data We Collect

We collect the following categories of personal data:

3.1 Data provided directly by you

  • Identification data: full name, national ID (RUT), job title, company.
  • Contact data: email address, phone number, mailing address.
  • Professional data: company, job title, industry, area of interest in cybersecurity.
  • Communication data: content of contact forms, emails, and messages.

3.2 Data collected automatically

  • Browsing data: IP address, browser type, operating system, pages visited, time on site.
  • Cookies and similar technologies: as described in our Cookie Policy (see consent banner).
  • Usage data: interactions with our website, document downloads, webinar attendance.

4. Purposes of Processing

Your personal data is processed for the following purposes:

  • Service delivery: managing the contractual relationship, executing contracted cybersecurity services, and providing technical support.
  • Communication: responding to inquiries, sending commercial proposals, and maintaining communication about ongoing projects.
  • Marketing: sending newsletters, event invitations, educational content, and cybersecurity updates (with your prior consent).
  • Service improvement: analyzing the use of our website and services to improve the user experience.
  • Legal compliance: fulfilling legal, tax, and regulatory obligations.
  • Security: protecting our systems, preventing fraud, and ensuring information security.

5. Legal Basis for Processing

The processing of your data is based on:

  • Consent: for sending commercial communications and the use of non-essential cookies.
  • Contract performance: for delivering contracted services.
  • Legitimate interest: for improving our services, system security, and fraud prevention.
  • Legal compliance: for tax, regulatory, and reporting obligations.

6. Data Sharing

We do not sell your personal data. We may share your data only with:

  • Service providers: technology platforms that assist us in delivering services (hosting, email, CRM), under confidentiality agreements.
  • Competent authorities: when required by law, court order, or regulatory authority request.
  • Strategic partners: cybersecurity technology vendors, solely for the execution of contracted services.

7. International Data Transfers

Some of our technology service providers may process data outside Chile. In such cases, we ensure that adequate safeguards are in place, such as standard contractual clauses, security certifications, or that the destination country provides an adequate level of protection under Chilean law.

8. Retention Period

We retain your personal data for as long as necessary to fulfill the purposes described in this policy, and thereafter for the applicable legal retention periods. As a reference:

  • Contractual data: for the duration of the contract and up to 5 years after its termination.
  • Marketing data: until you withdraw your consent.
  • Browsing data: maximum 24 months.
  • Tax data: in accordance with legal periods (generally 6 years).

9. Data Subject Rights (ARCO+)

Under Chilean law, you have the following rights with respect to your personal data:

  • Access: to know what personal data of yours we are processing.
  • Rectification: to request the correction of inaccurate or incomplete data.
  • Erasure: to request the deletion of your data when it is no longer necessary.
  • Objection: to object to the processing of your data for specific purposes.
  • Portability: to receive your data in a structured, commonly used format.
  • Restriction: to request the temporary suspension of processing.

To exercise these rights, send a request to contacto@ttpsec.com stating your name, national ID (RUT), the right you wish to exercise, and supporting documentation. We will respond within the legally established timeframes.

10. Security Measures

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, alteration, or destruction, including:

  • Data encryption in transit (TLS 1.3) and at rest.
  • Role-based access control and the principle of least privilege.
  • Continuous security monitoring and intrusion detection.
  • Periodic security audits and penetration testing.
  • Ongoing staff training on data protection.
  • A personal data security incident response plan.

11. Data of Minors

Our services are directed at organizations and professionals. We do not intentionally collect personal data from individuals under 18 years of age. If we detect that we have received data from a minor, we will delete it immediately.

12. Cookie Policy

We use cookies and similar technologies on our website. For detailed information about the types of cookies we use, their purposes, and how to manage your preferences, please refer to our cookie consent banner displayed when you access the website.

13. Changes to This Policy

We reserve the right to update this policy at any time. Changes will be posted on this page with the date of the last update. In the event of material changes, we will notify you through the contact information we have on file or by means of a prominent notice on our website.

14. Contact and Complaints

For any inquiry, request, or complaint related to the processing of your personal data, you may contact us at:

  • Email: contacto@ttpsec.com
  • Address: Coquimbo, Chile

If you believe that the processing of your data has not been appropriate, you have the right to file a complaint with the Chilean Personal Data Protection Agency (once established pursuant to Ley 21.719) or before the competent courts of justice.

Professional certifications and accreditations

Over 50 professional cybersecurity certifications including CEH, CCISO, CPTS, ISO 27001, and MITRE ATT&CK.
AttackIQ Foundations of AI Security
SCF Architect Certified Individual
CertiProf ISO 27001 Lead Auditor
EC-Council Associate CCISO
CCI Profesional Nivel Negro
USACH Ransomware Cyber Defense Diploma
AttackIQ Intermediate Purple Teaming
MAD20 ATT&CK Cyber Threat Intelligence
AttackIQ Intermediate Breach and Attack Simulation
USACH Critical Infrastructure Standards Diploma
Burp Suite Certified Practitioner
SCF Practitioner Certified Individual
EC-Council Cybersecurity Career Mentor
eCIR Incident Response
EC-Council CTIA Certified
USACH Cybersecurity Auditing Diploma
PECB ISO 27001 Lead Implementer
CertiProf CAIPC Artificial Intelligence
USACH ISO 27035 Incident Response Diploma
eCDFP Digital Forensics
MAD20 ATT&CK Adversary Emulation Methodology
eCTHP Threat Hunting
EC-Council CSA Certified SOC Analyst
USACH Active Directory Windows Hacking Diploma
EC-Council ECIH Certified Incident Handler
CertiProf GAIPC Generative AI
MAD20 ATT&CK Purple Teaming Methodology
EC-Council CEH Master
EC-Council CEH Practical
HackTheBox Certified Bug Bounty Hunter
AttackIQ Intermediate MITRE ATT&CK
USACH Red Team Web Pentesting Diploma
PECB ISO 27032 Cybersecurity Manager
CertiProf CAIEC Expert AI
HackTheBox CPTS Certified Penetration Testing Specialist
AttackIQ Threat-Informed Architecture
USACH Cybersecurity Threat Intelligence Diploma
EC-Council CHFI Certified
AttackIQ Intermediate Purple Teaming
Fortinet NSE 3 Associate
MAD20 ATT&CK Threat Hunting Detection Engineering
Swimlane Administrator Technical
eJPT Junior Penetration Tester
CertiProf ISO 27001 Internal Auditor
USACH ISO 27001 Lead Auditor Diploma
MAD20 ATT&CK Fundamentals
USACH Red Team Campaign Preparation Diploma
EC-Council ECSA Certified Security Analyst
EC-Council CEH Certified Ethical Hacker
EC-Council CSA Certified SOC Analyst
HackTheBox CWES Certified Web Exploitation Specialist
CSA TAISE Trusted AI Safety Expert
MAD20 ATT&CK SOC Assessment
Swimlane Incident Responder Technical
AttackIQ Foundations of AI Security
SCF Architect Certified Individual
CertiProf ISO 27001 Lead Auditor
EC-Council Associate CCISO
CCI Profesional Nivel Negro
USACH Ransomware Cyber Defense Diploma
AttackIQ Intermediate Purple Teaming
MAD20 ATT&CK Cyber Threat Intelligence
AttackIQ Intermediate Breach and Attack Simulation
USACH Critical Infrastructure Standards Diploma
Burp Suite Certified Practitioner
SCF Practitioner Certified Individual
EC-Council Cybersecurity Career Mentor
eCIR Incident Response
EC-Council CTIA Certified
USACH Cybersecurity Auditing Diploma
PECB ISO 27001 Lead Implementer
CertiProf CAIPC Artificial Intelligence
USACH ISO 27035 Incident Response Diploma
eCDFP Digital Forensics
MAD20 ATT&CK Adversary Emulation Methodology
eCTHP Threat Hunting
EC-Council CSA Certified SOC Analyst
USACH Active Directory Windows Hacking Diploma
EC-Council ECIH Certified Incident Handler
CertiProf GAIPC Generative AI
MAD20 ATT&CK Purple Teaming Methodology
EC-Council CEH Master
EC-Council CEH Practical
HackTheBox Certified Bug Bounty Hunter
AttackIQ Intermediate MITRE ATT&CK
USACH Red Team Web Pentesting Diploma
PECB ISO 27032 Cybersecurity Manager
CertiProf CAIEC Expert AI
HackTheBox CPTS Certified Penetration Testing Specialist
AttackIQ Threat-Informed Architecture
USACH Cybersecurity Threat Intelligence Diploma
EC-Council CHFI Certified
AttackIQ Intermediate Purple Teaming
Fortinet NSE 3 Associate
MAD20 ATT&CK Threat Hunting Detection Engineering
Swimlane Administrator Technical
eJPT Junior Penetration Tester
CertiProf ISO 27001 Internal Auditor
USACH ISO 27001 Lead Auditor Diploma
MAD20 ATT&CK Fundamentals
USACH Red Team Campaign Preparation Diploma
EC-Council ECSA Certified Security Analyst
EC-Council CEH Certified Ethical Hacker
EC-Council CSA Certified SOC Analyst
HackTheBox CWES Certified Web Exploitation Specialist
CSA TAISE Trusted AI Safety Expert
MAD20 ATT&CK SOC Assessment
Swimlane Incident Responder Technical
TTPSEC SPA

Center of excellence in industrial cybersecurity. We protect critical infrastructure in Latin America.

Company

  • About Us
  • Certifications
  • Contact
  • Partner With TTPSEC
  • Whistleblower Channel

Services

  • OT/ICS Cybersecurity
  • IT Cybersecurity
  • Ethical Hacking
  • All Services

Academy

  • PurpleTeam Academy
  • TTPSEC AI Development
  • CISO Blog

Legal

  • Information Security Policy
  • Privacy Policy
  • Whistleblower Channel
  • security.txt

TTPSEC SpA — Cybersecurity Engineering

www.ttpsec.cl

ISO

ISO 27001:2022 Certification

In implementation

TTPSEC is AI-First

TTPSEC SpA (RUT 77.547.404-1) expressly declares that artificial intelligence constitutes an integral part of its operational methodology. This declaration is made in compliance with the principles of transparency, accountability, and responsibility established in the OECD Principles on Artificial Intelligence (2019, updated 2024), the UNESCO Recommendation on the Ethics of Artificial Intelligence (2021) and, where applicable, Regulation (EU) 2024/1689 of the European Parliament and of the Council (AI Act) for projects within European scope.

Full Declaration

TTPSEC is a legally incorporated and recognized entity.

Headquarters: Coquimbo, Chile|Branch: Santiago, Chile
RUT: 77.547.404-1|ROL: 345308-1|Registered Trademark: No. 1376754

Business License: Municipality of Santiago de Chile 345308-1

www.ttpsec.comwww.ttpsec.netwww.ttpsec.orgwww.ttpsec.clwww.ttpsecurity.cl
www.purpleteam.clwww.purpleteamacademy.clwww.purpleteamacademy.comwww.purpleteamacademy.netwww.purpleteamacademy.org

© 2022-2026 TTPSEC SpA. All rights reserved.