Privacy Policy (POPIA Compliant)
Last Updated: February 21, 2026
1. Who We Are / Data Controller
Skyward Standard Journalism Ltd is a registered news organization in South Africa (Registration Number: 2020/654321/07). We act as the "Responsible Party" under the Protection of Personal Information Act (POPIA). Our primary business address and contact variables remain uniform across all communication channels:
Registered Address: 54 Melrose Boulevard, Melrose Arch, Johannesburg, 2076, South Africa
International Affiliate Address: 351 King Street East, Suite 1600, Toronto, Ontario M5A 0N1
Hotline Telephone: +27 11 416 5855
Compliance Email: [email protected]
2. Scope of this Policy
This Privacy Policy applies to any visitor or subscriber accessing our internet portal, sign-up forms, mobile versions or general content hubs. By feeding your statistics on our structures, you consent explicitly to storage limits defined within this reference guide.
3. Categories of Data Collected
To deliver quality investigative journalism outputs and run analytical frameworks safely, we collect:
- Directly Supplied Data: Name, personal or corporate email address, telephone contact sequences, and physical letter statements offered when submitting anonymous newsroom leaks, story ideas, or general news requests.
- Automatically Supplied Data: Device hardware profiles, client browser strings, geographic markers, diagnostic storage units, cookie properties and referral URLs tracking site journeys.
- Third-Party Elements: General marketing trends, payment service records (if processing subscriber fees) and advertiser network telemetry tokens.
4. Purposes and Lawful Bases for Processing
To adhere to regulatory precision, the table below maps our processing motives:
| Processing Purpose | Data Elements Affected | Lawful Basis (POPIA / GDPR) |
|---|---|---|
| Managing newsletters and feedback forms | Name, Phone, Email and Text submissions | Explicit Consent of Data Subject |
| Securing the website against DDoS/Abuse | IP Address, Technical user-agent string | Legitimate Interest of Responsible Party |
| Targeting advertising and performance analytics | Cookie indicators and visual page events | Opt-in user consent (Consent Mode v2) |
5. Cookies & Google Consent Mode v2
We leverage advanced Google Consent mode mechanics to protect individual privacy by keeping all promotional tracking turned off by default. Only strictly functional services are pre-activated. Non-essential storage categories apply only after user activation.
6. Data Sharing & Third-Parties
We do not Sell, Rent or Distribute user identities to anyone. We share elements strictly with authorized tech systems, infrastructure suppliers, map interfaces and legal bodies when ordered by local South African courts.
7. Cross-Border Data Transfers
Some diagnostic servers or analytics nodes reside outside South Africa or the EU. These channels utilize standard contractual rules and secure encryption guidelines to secure incoming telemetry under strict privacy standards.
8. Data Retention Thresholds
Contact request forms, newsletter profiles and support messages are kept for up to twenty-four (24) months or as mandated by financial bookkeeping laws of South Africa, whichever is longer.
9. Your Legal Rights & Supervisory Authority
Under POPIA regulations, you hold the legal right to ask for a record of your data, correct records, object to marketing uses, and claim damages. You may lodge a complaint with the South African Information Regulator (JD House, 27 Stiemens Street, Braamfontein, Johannesburg - [email protected]).
10. Integrity & Protection of Minors
We do not purposefully request details from individuals under the age of 18 without parental or official guardian consent. If such records are exposed, we delete them immediately upon discovery.