Cybersecurity Marketing Society — Community Standards and Policies

Last Updated: June 8, 2026

Section 1: Introduction

The Cybersecurity Marketing Society ("CMS" or the "Society") is a community of marketing professionals and consultants in the cybersecurity industry. The Society brings together its members through private Slack channels, virtual meetups, regional in-person gatherings, educational resources, and other community offerings. These Community Standards and Policies (the "Community Standards") set forth the expectations, rules, and guidelines that govern all members' participation in the Society's community spaces, whether online or offline.

By joining, accessing, or participating in any CMS community space, event, or platform, you acknowledge that you have read, understood, and agree to abide by these Community Standards. CMS reserves the right to update or modify these Community Standards at any time, and members are expected to adhere to the most current version in effect.

Section 2: Applicability

These Community Standards apply to all CMS activities, events, and spaces, including but not limited to: online events such as virtual meetups, webinars, roundtables, and workshops; offline events such as regional in-person gatherings, conferences, and networking sessions; virtual spaces, including CMS's Slack workspace, social media channels, and any other collaborative or communication platforms operated by or on behalf of CMS; and any communication, whether digital or analog, carried out in the context of CMS business or community activity.

These Community Standards apply to all individuals who engage with the CMS community, including but not limited to: CMS staff, leadership, and advisors; all members, whether under a complimentary legacy membership or a paid annual membership; partners, sponsors, and supporters; speakers, presenters, and panelists; volunteers, contractors, and event guests. In general, these Community Standards apply to individuals and their behavior. However, if an individual's actions are made on behalf of or in representation of their company or employer, CMS may enforce these Community Standards against both the individual and the company.

Section 3: Community Values

CMS is built on a foundation of trust, professional respect, and shared purpose. CMS strives to create an environment where every member feels welcomed, feels that they belong, and is respected as a professional. When members feel welcome and safe, they are more comfortable sharing their experiences and knowledge, asking questions, and acknowledging what they do or do not know. To that end, we ask all members to uphold the following core values:

Respect. Communicate with empathy, kindness, and openness. Treat others as you would like to be treated, and create a space where people lift each other up and encourage each other's work.

Professionalism. Maintain the integrity of the community as a space for collegial, constructive exchange among cybersecurity marketing professionals. Members should use professional expression in all community interactions.

Curiosity. Approach conversations with humility and a desire to learn. Seek out new knowledge, ask questions, and support others in their learning journey.

Authenticity. Be truthful about yourself and your work. Members should accurately represent their professional affiliations, whether in the capacity of employment, consulting, or investment, and be truthful about the work they have done. Use your real name, company name, and an accurate profile in the CMS Slack community and other community platforms.

Transparency. Share insights honestly and credit sources and affiliations when appropriate. Strive to contribute more to the community than you receive from it, as the strength of our community lies in collective effort and shared knowledge.

Welcome Different Perspectives: Differences in perspectives, backgrounds, and opinions add to  individual learning, growth, and for promoting innovation and creativity within the Society and the cybersecurity marketing profession as a whole.

Section 4: Healthy Engagement and Communication

CMS does not expect its members to agree on everything. Healthy tension in collegial discussion can contribute to community growth, but unhealthy conflict can have a chilling effect. Members are expected to aim for positive, civil discourse that is constructive and informative, with the understanding that diversity of thought strengthens the community.

Listen, Bring Others Along, and Be Kind. Those in our community should be ready to listen and engage. Be mindful of preconceived judgments or assumptions, and ask questions in order to learn. Encourage others to participate by bringing them into the conversation and creating space for them to share their ideas. Avoid dominating conversations or engaging in behaviors that prevent others from participating.

Practice Proper Messaging Etiquette. Members should ensure their questions and contributions are carefully considered. In Slack and other messaging platforms, send your question in a single message, use threads to keep discussions organized, and post in the appropriate channels. Do not seek extra attention by tagging individuals, double-posting, or bumping your message by sending to the channel. Stay on-topic within each channel and follow any channel-specific guidelines.

Default to Public Channels.  Members are encouraged to keep interactions public in CMS community spaces. If someone is directly messaging you in a way that does not uphold the values of the community or that makes you uncomfortable, you are encouraged to report it to CMS.

Engage Authentically

Members should respond to posts and discussions in their own voice. AI tools may be useful for drafting or refining ideas, but they should not be used to mass-generate replies, automate engagement, or create the appearance of personal participation. Community conversations work best when responses are thoughtful, relevant, and genuinely human.

Section 5: Confidentiality and Privacy

Due to the nature of the cybersecurity industry and the trust that underpins this community, confidentiality is of paramount importance to CMS.

Community Content Is Confidential. Content and discussions shared within the community are for members only and may not be copied, reproduced, or distributed outside the community without express permission from CMS. When communicating with other members in a members-only space, such as CMS's private Slack channels, information discussed should remain within that space and not be shared externally, unless explicit permission is granted.

Member Personal Information. CMS maintains a high level of confidentiality regarding its members' personal information, recognizing that cybersecurity professionals and marketers may be subject to unique professional sensitivities. Member information, including contact details, employer, titles, and membership status, should be treated as confidential and may only be shared with the express consent of the individual member. Without consent, you may not share personal information of other members.

Employer Confidential Information. Members are responsible for ensuring that they have the right to share any information they post within the community. Members must not disclose confidential information belonging to their employers or other third parties. CMS is not liable for disclosures made by members.

No Screenshots or Recordings. Members may not take or share screenshots,      screen recordings, or audio transcripts or recordings of CMS virtual or in-person events, Slack channels, website pages, or other online communication spaces without the express consent of CMS.

Discuss Scenarios Generally. When discussing professional matters, do not mention names of clients, firms, or colleagues by name. Instead, discuss scenarios generally and anonymize identifying details.

If there is uncertainty about the confidentiality expectations in any CMS event, discussion, or space, members should seek clarification from CMS staff.

Section 6: Prohibited Conduct

CMS is committed to supporting a productive and safe environment for everyone. The following conduct is prohibited in all CMS community spaces, events, and activities:

Harassment, Bullying, Threats, and Violence

Members shall not engage in harassment, bullying, threatening, or violent behavior of any kind. Harassment includes but is not limited to: making disrespectful or hurtful comments about someone's gender, sexual orientation, disability, appearance, age, race, religion, or other protected characteristics; making threats of violence or encouraging violence against anyone; intentionally intimidating others; stalking or persistently following someone; continuously disrupting conversations; sharing private messages without consent; making unwelcome remarks about someone's lifestyle choices; and using one's status or power to intimidate or coerce someone else to agree or comply.

Sexual Harassment

Unwelcome sexual or romantic attention, contact, behavior, or advances are inappropriate in all CMS spaces. This includes comments about someone's appearance, touching someone without consent, suggestive sexual comments, making sexual gestures, and any nonconsensual sexual contact. CMS also prohibits unwanted expressions of attraction, desire, requests for romantic relationships, marriage proposals, sexual advances, innuendo, or lewd remarks within its community spaces.

Hate Speech and Discrimination

CMS does not tolerate hateful, demeaning, or discriminatory speech or behavior. Prohibited conduct includes discrimination, offensive comments, epithets, slurs, or negative stereotyping based on race, color, caste, ethnicity, immigration status, national origin, religion or faith, sex or gender identity, sexual orientation, disability or medical condition, socioeconomic status, age, weight or size, pregnancy, veteran status, marital status, political affiliation, educational background, or any other protected class as determined by applicable law.

No Solicitation, Self-Promotion, or Sales Pitching

The CMS community exists for the professional development and peer connection of cybersecurity marketing professionals. It is not a platform for lead generation, sales, or commercial promotion. Members must not solicit other members for services, products, or business opportunities, whether inside or outside the CMS platform, if the relationship originated through CMS. Members must not post self-promotional products, services, or sales-focused content unless specifically authorized by CMS in designated channels or areas. Members must refrain from sending unsolicited comments or direct messages for business or sales purposes. Any vendors, recruiters, or individuals found soliciting members in violation of this provision may be permanently banned from the community.

No Use of Community Information for External Purposes

Members are prohibited from using information gained inside the Society to sell externally or to otherwise exploit for commercial gain outside the community. This includes leveraging member contact information, discussions, proprietary insights, or any other community-sourced information for purposes outside the scope of genuine peer-to-peer professional engagement within the Society.

Inauthentic Behavior

The following behaviors are considered inauthentic and may result in enforcement action: impersonating another individual or role; falsely claiming to work for an organization with which you have no affiliation; taking credit for someone else's ideas or work, including plagiarism; sharing or making copies of someone else's work product without approval or consent; misrepresenting your relationship with CMS, such as claiming to be a speaker, sponsor, or official representative when you are not; and implying support or endorsement from CMS of yourself, your work, or your company without authorization.

Disruptive Behavior

Members shall not inhibit the normal flow of community activity with disruptive behavior. This includes spamming, posting excessive or gratuitously repetitive content, disregarding channel guidelines or community etiquette, and engaging in any activity that disrupts or hinders other members' experience or enjoyment of CMS events and spaces.

Illegal or Unethical Behavior

Members shall not engage in illegal or unethical behavior and must comply with all applicable laws and regulations when engaging in CMS events, activities, and spaces. Illegal content or behavior is strictly prohibited on CMS's communication platforms and workspaces. Members must not post or share anything that contains software viruses, malicious code, or any other harmful material that could put other members, the CMS platform, or CMS's services at risk.

Sharing of Harmful, Offensive, or Illegal Content

Members must not share content that is excessively gruesome, shocking, sadistic, or gratuitously graphic. Content depicting or promoting violence, criminal activity, self-harm, drug abuse, or exploitation of any kind is strictly prohibited. The sharing of sexually explicit content or nudity within CMS community spaces is prohibited.

Section 7: Intellectual Property

CMS owns all CMS-created materials, including materials created in partnership with members, such as templates, courses, recordings, slides, and other educational or community resources. Members may not redistribute, copy, or commercially exploit CMS-created materials without the express written consent of CMS.

Members retain ownership of the content they post within the community, subject to a non-exclusive, worldwide, royalty-free, sublicensable, and transferable license granted to CMS to use, copy, modify, distribute, and publish such content for the purposes of operating, promoting, and improving the Society and its offerings. This license survives termination of a member's membership with regard to content provided prior to termination.

Members must not violate the intellectual property rights of others, including copyrights, patents, trademarks, trade secrets, or other proprietary rights. Members must not copy or distribute the posts or other content of fellow members without the express permission of the content owner.

Section 8: Employer Compliance

CMS does not have insight into codes of conduct or other compliance requirements imposed by members' employers or professional affiliations. Members who engage with CMS are responsible for ensuring that they never engage in activity that could put their employer or employment at risk. CMS encourages all members to read, understand, and comply with their employer's policies, including antitrust policies, data use policies, and privacy policies. Members must not reveal or exchange information that could violate terms of employment, such as sharing trade secrets or internal-only documentation that has not been approved for external circulation.

Section 9: Compliance with Laws and Antitrust

Members must comply with all applicable laws, including privacy laws, intellectual property laws, anti-spam laws, export control laws, and all other applicable laws and regulatory requirements.

CMS does not play a role in the competitive decisions of its members, sponsors, or partners. Members shall not share information, collude, or encourage any particular business practice that could constitute an antitrust violation. This includes any messages or discussions that encourage or facilitate agreements on price fixing, boycotts, market allocation, or other conduct intended to restrict free trade. Members who become aware of activity that could constitute an antitrust violation must bring it to the attention of CMS immediately.

Section 10: USMCA Digital Trade Compliance

CMS operates as a cross-border digital community with members located world wide. CMS's operations and members' participation in the Society's digital platforms are subject to, without limitation, the digital trade provisions set forth in Chapter 19 of the United States-Mexico-Canada Agreement ("USMCA"), which entered into force on July 1, 2020.

Personal Information Protection. Consistent with USMCA Article 19.8, CMS is committed to protecting the personal information of its members in accordance with applicable legal frameworks governing data privacy in the United States, Mexico, and Canada. CMS's collection, use, and processing of members' personal information shall adhere to the key data protection principles recognized under USMCA Article 19.8(3), including: limitation on collection; choice; data quality; purpose specification; use limitation; security safeguards; transparency; individual participation; and accountability. CMS shall publish information on the personal information protections it provides to members, including how a member may pursue a remedy and how CMS complies with applicable legal requirements, consistent with USMCA Article 19.8(5). Members located in Mexico and Canada are advised that their personal information may be transferred to, stored in, and processed in the United States in connection with CMS's operation of its digital platforms and community spaces, and that such cross-border transfers are conducted in accordance with the provisions described herein.|

Cross-Border Data Transfers. In accordance with USMCA Article 19.11, CMS supports the free flow of information across the borders of its member countries and shall not impose unnecessary restrictions on the cross-border transfer of information by electronic means where such transfer is for the conduct of the Society's activities. Members acknowledge that participation in CMS's digital platforms, including Slack, email communications, and virtual events, necessarily involves the cross-border transfer of data, including personal information, between the United States, Mexico, and Canada. Any restrictions on cross-border flows of personal information shall be necessary and proportionate to the risks presented, consistent with the principles set forth in USMCA Article 19.8(3).

Data Localization. Consistent with USMCA Article 19.12, CMS does not require members or service providers to use or locate computing facilities in any particular USMCA member country's territory as a condition for participation in the Society. CMS's digital infrastructure, including its Slack workspace, website, and other platforms, may utilize computing facilities located in any USMCA member country or elsewhere, and members' data may be stored and processed in any such location.

Cybersecurity. In accordance with USMCA Article 19.15, CMS recognizes that threats to cybersecurity undermine confidence in digital trade and in the Society's digital community. CMS shall endeavor to employ risk-based approaches that rely on consensus-based standards and risk management best practices to identify and protect against cybersecurity risks and to detect, respond to, and recover from cybersecurity events affecting its platforms and members' data. CMS encourages all members to adopt similar risk-based cybersecurity practices in connection with their participation in the Society's digital spaces, including the use of strong passwords, two-factor authentication, and vigilance against phishing and social engineering attacks.

Unsolicited Commercial Communications. Consistent with USMCA Article 19.13, CMS shall adopt and maintain measures to limit unsolicited commercial electronic communications sent to its members. Members shall not use CMS's platforms to send unsolicited commercial electronic messages to other members, and CMS reserves the right to take enforcement action against members who violate this provision, in addition to any applicable penalties under the anti-solicitation provisions set forth in Section 6.4 of these Community Standards.

Compatibility of Privacy Regimes. CMS recognizes that the United States, Mexico, and Canada maintain different legal approaches to protecting personal information. Consistent with USMCA Article 19.8(6), CMS shall endeavor to develop and maintain practices that promote compatibility between these different data protection regimes, including by reference to international frameworks such as the APEC Cross-Border Privacy Rules system. Members who are subject to the data protection laws of Mexico (including the Ley Federal de Protección de Datos Personales en Posesión de los Particulares) or Canada (including the Personal Information Protection and Electronic Documents Act, or PIPEDA) are responsible for ensuring that their participation in CMS's digital platforms complies with the requirements of such laws.

Section 11: Security Notice

CMS's communication platforms, including Slack, email, and other digital tools, may not support end-to-end encryption. Members should not share documents or information that require end-to-end encryption through CMS's communication platforms. Members are responsible for exercising appropriate judgment regarding the sensitivity of information they share within CMS spaces.

Section 12: Reporting Violations CMS is committed to maintaining the integrity of its community and takes all reports of violations seriously. If you experience or witness behavior that violates these Community Standards, or if you have any related concerns, you are encouraged to report it to CMS.

How to Report. Violations may be reported to any CMS staff member via email at Heythere@cybersecuritymarketingsociety.com, Slack direct message, or in person at a CMS event. Reports should include the name of the person who allegedly committed the violation (if known), a description of what happened, and, if available, any documented evidence such as screenshots, photos, or links. The person reporting may be a witness, bystander, or the individual directly affected.

Confidentiality. CMS will keep confidential the identity of the person reporting, if requested. Anonymous reports are permitted; however, CMS's ability to investigate fully may be limited when a report is made anonymously.


Investigation.
Upon receiving a report of a potential violation, CMS will review the incident to determine whether these Community Standards were violated. If the violation occurred on Slack, email, or another platform with written documentation, CMS will review the available evidence. If the violation occurred in person, CMS may speak with the person who reported the incident, witnesses, and the individual who allegedly committed the violation. The determination will be made by CMS staff and/or advisory board.

Section 13: Enforcement and Consequences

CMS has sole discretion in determining whether these Community Standards have been violated and in selecting the appropriate enforcement action. Enforcement actions are graduated and may include any of the following, depending on the severity, frequency, and nature of the violation:

Verbal or Written Warning. For violations that cause discomfort or are inappropriate but do not cause physical harm, lasting mental anguish, or material damage to CMS, the member will be informed that their behavior is not acceptable and asked to refrain from such conduct. A written summary of the warning will be provided via email. Where possible, the member will be given an opportunity to rectify the situation, such as deleting an offending post or issuing an apology.

Content Removal. CMS reserves the right to remove, modify, or restrict the visibility of any content that violates these Community Standards, at any time and without prior notice.

Temporary Suspension. Following repeated violations or a single serious violation, a member may be temporarily suspended from specific CMS events, activities, or spaces, including Slack access. The duration of such suspension will be determined by CMS in its sole discretion.

Permanent Ban. If a member has multiple violations or if a single violation is sufficiently severe—including where the member's actions or behavior caused physical harm, mental anguish to others, or material damage to CMS—CMS may permanently ban the member from all CMS events, spaces, and activities.

Membership Revocation. CMS may revoke a member's membership as a consequence of serious or repeated violations. If membership is revoked, the individual will be removed from CMS's member database, all membership benefits will be forfeited, and access to all CMS community spaces will be terminated. CMS is not obligated to provide a refund of membership fees in the event of a membership revocation for cause.

Third-Party Reporting. CMS may report a member's violation to the member's employer if the violation involves or is undertaken on behalf of the member's company. CMS may also report certain actions or behavior to law enforcement or other authorities if the conduct is illegal, harmful to others, or creates a liability for CMS.

All determinations regarding violations and enforcement are made at CMS's sole and absolute discretion and are final, subject only to the appeals process described below.

Section 14: Retaliation Prohibited

Retaliation against any person who reports a potential violation of these Community Standards is strictly prohibited and will itself constitute a violation of these Community Standards. It is also against CMS policy to report an incident in bad faith. CMS will take action against any person found to be engaging in retaliation or making a willful bad-faith report.

Section 15: Appeals Process

If a member believes that the determination of a violation or the enforcement consequence imposed was unwarranted, they have the right to submit one appeal. The appeal must be submitted in writing to CMS via email at heythere@cybersecuritymarketingsociety.com and must include an explanation of why the member believes the determination was incorrect or the consequence was disproportionate. Appeals will be reviewed by at least one CMS staff member or advisor who was not involved in the initial investigation and determination. The decision on appeal is final and binding.

Section 16: Preventing Violations and Rebuilding Trust

CMS is a community built on trust. In some cases, violations may be made unintentionally or with positive intent. However, all community members must be held accountable for their actions, regardless of intent.

Members can take the following steps to ensure compliance and to rebuild trust if a violation has occurred: review these Community Standards and ensure they are fully understood, and if there is any confusion, seek clarification from a member of CMS staff; if it is not clear whether specific behavior is appropriate, reach out to CMS staff before acting; and if a violation has occurred, take steps to understand the cause, repair any potential damage (such as deleting a post or acknowledging the violation), and continue healthy engagement in the community. Trust can be rebuilt through healthy engagement over time.

Section 17: Disclaimer

The information shared within CMS community spaces, including Slack channels, events, and forums, contains personal opinions and views of individual members. Opinions expressed by members are not necessarily condoned, approved, or reflective of the official views of CMS. CMS is not liable for the content posted by its members within the community.

These Community Standards are not a complete list of all rules and regulations applicable to CMS community participation. CMS reserves the right to take action against any member whose conduct, in CMS's sole judgment, is detrimental to the community, its members, or the reputation or mission of the Cybersecurity Marketing Society, regardless of whether such conduct is specifically addressed herein.

Section 18: Contact Us

If you have any questions about these Community Standards, please contact us at heythere@cybersecuritymarketingsociety.com.