Effective date: 9 November 2025
Applies to: orbitbrief.com, our emails/newsletters, and any official mobile or web experiences operated by us (collectively, the “Services”).
Quick summary: We collect limited information to run a fast, secure news site, measure readership, and—if you opt in—send updates. We do not sell your personal information. You can opt out of cookies, analytics, and marketing at any time.
1) Who we are
OrbitBrief (the “Publisher”, “we”, “our”, “us”).
Legal owner: Get Connected Orbit Brief
Contact: press@orbitbrief.com | privacy@orbitbrief.com
If you live in the EEA/UK, we process your data as a “controller” under GDPR/UK GDPR. If you live in California, your rights are under the CCPA/CPRA. This policy explains how we collect, use, disclose, and protect personal data.
2) What we collect
We collect the minimum needed to operate a news website. The types of data we may collect are:
A. Information you provide directly – Contact & feedback: name, email, and message contents when you email us or use a contact form. – News tips & attachments: the contents and metadata in any files you send. Please remove sensitive data if not needed. – Newsletter sign‑ups: email address and your marketing preferences. – Account details (if enabled later): username, password, and profile info. (We currently do not require accounts to read our site.)
B. Information collected automatically – Usage & device data: IP address, browser type, device type, OS, referring/exit pages, timestamps, and pages viewed. – Cookies & similar tech: cookies, local storage, and pixels used for analytics, performance, security, and (if you consent) advertising personalisation. – Approximate location: derived from your IP to show relevant content/ads and for security.
C. From third parties (when you interact with them through our Services) – Analytics & measurement (e.g., Google Analytics) and ad partners (e.g., Google AdSense/Ezoic) provide aggregated metrics and, if enabled, advertising identifiers. – Social embeds (e.g., YouTube, X/Twitter, Facebook, Instagram) may set their own cookies and receive data about your viewing.
We do not intentionally collect special categories of data (e.g., health, religion, union membership). Please do not include such information in tips or forms unless strictly necessary.
3) Why we use your data (purposes & legal bases)
We process personal data only when we have a valid reason:
- Provide & operate the Services (site delivery, load balancing, caching, bug fixes). Legal basis: legitimate interests / contract.
- Security & abuse prevention (detect DDoS, spam, fraud; maintain logs). Legal basis: legitimate interests / legal obligation.
- Analytics & performance (measure readership, improve layout and content). Legal basis: legitimate interests (or consent where required).
- Content distribution (send newsletters you requested). Legal basis: consent; you may unsubscribe at any time.
- Advertising (serve contextual ads; if you consent, personalize ads and measure performance). Legal basis: consent (where required) or legitimate interests.
- Compliance & enforcement (respond to lawful requests, enforce our Terms, protect rights). Legal basis: legal obligation / legitimate interests.
4) Cookies and similar technologies
We use first‑party and third‑party cookies for: – Essential (security, load balancing, consent storage) – Performance/Analytics (understand usage, fix issues) – Advertising (show ads; if you consent, personalize ads and measure reach)
Manage cookies: Use our on‑site cookie banner/settings to accept, reject, or fine‑tune categories at any time. You can also clear cookies in your browser settings or use private browsing modes.
Ad personalisation: You can toggle personalised ads off in our cookie settings. Some partners also offer their own controls.
Do Not Track: There is no industry standard for DNT signals; we currently do not respond to DNT.
5) Sharing & disclosure
We share data only as needed: – Service providers (processors): hosting/CDN, DDoS protection, email delivery (newsletter), analytics, ad tech, error monitoring, caching (e.g., LiteSpeed), and support tools—bound by confidentiality and data processing terms. – Legal & safety: to comply with law, court orders, or requests from competent authorities; to protect our rights, users, or the public. – Business transfers: in a merger, sale, or reorganisation, data may transfer consistent with this policy.
We do not sell personal information for money. Under California law, “sharing” for cross‑context behavioural advertising may occur with your consent; you can opt out at any time (see Section 10).
6) International data transfers
We may transfer data to countries that may not provide the same level of protection as your home country. Where required, we use safeguards such as Standard Contractual Clauses, and we assess partner practices to help protect data during transfer.
7) Data retention
We keep data only as long as needed for the purposes in this policy: – Server logs & security events: ~90 days (unless needed for investigations) – Contact form/tips: typically 12 months after resolution (longer if needed for legal reasons) – Newsletter records: until you unsubscribe or your address bounces – Analytics data: typically 14–26 months (partner configuration) – Account data (if enabled later): while your account is active + a short period for backup/archival
When data is no longer needed, we securely delete or anonymise it.
8) Your rights
Your rights depend on where you live, but may include:
EEA/UK (GDPR/UK GDPR) – Access, correction, deletion, restriction, portability, and objection to processing based on legitimate interests – Withdraw consent at any time (doesn’t affect prior processing) – Lodge a complaint with your local data protection authority
California (CCPA/CPRA) – Know what categories of personal information we collect, use, disclose – Access and delete certain information – Correct inaccurate information – Opt out of “sale” or “sharing” for cross‑context behavioural advertising – Limit use/disclosure of sensitive personal information (we do not intentionally collect SPI)
How to exercise: Email privacy@orbitbrief.com. We will verify your request and respond within the time required by law. You may use an authorised agent where permitted.
9) Opt‑out controls
- Cookie preferences: adjust via our on‑site cookie banner/settings at any time.
- Newsletter: click Unsubscribe in any email or email privacy@orbitbrief.com.
- Ads personalisation: turn off in our cookie settings; some ad partners also provide their own opt‑outs.
- Push notifications (if offered): disable in your browser or device settings.
If you are a California resident, we will provide a “Do Not Sell or Share My Personal Information” link in the footer (or cookie banner).
10) Children’s privacy
Our Services are not directed to children under 13. We do not knowingly collect personal data from children. If you believe a child has provided personal data, contact us to delete it. For EEA/UK users under 16, we obtain consent from a parent or guardian where required.
11) Security
We use reasonable technical and organisational measures (HTTPS, access controls, logging, backups, DDoS/firewall/CDN, malware scanning). No method of transmission or storage is 100% secure; please use strong, unique passwords for any accounts you maintain.
12) Third‑party links & embeds
Articles may link to other sites or include embedded content (videos, posts). Those services may collect data about you, use cookies, or track your interaction if you have an account with them. Their processing is governed by their own privacy policies.
13) Caching & CDN
To deliver pages quickly, we may use caching (e.g., LiteSpeed Cache) and a CDN (e.g., Cloudflare). These systems temporarily store copies of pages and may log IP addresses for performance and security.
14) Changes to this policy
We may update this policy from time to time. If changes are material, we will provide a prominent notice (e.g., on the site or by email for subscribers). The “Effective date” at the top shows when the latest version took effect.
15) Contact us
Email: privacy@orbitbrief.com (primary)
Press & newsroom: press@orbitbrief.com
If you are in the EEA/UK and wish to contact a representative or data protection officer (if appointed), please email privacy@orbitbrief.com and we will provide details.
