JOURNALIS

Privacy Policy

Last Updated: October 24, 2026

1. Who We Are / Data Controller

This Privacy Policy outlines how Journalis, operating under J-Brand Group Ltd (“we”, “us”, “our”), registered in the Republic of Kenya under Enterprise Certificate No. CPR/2026/83912, handles your user data. Our physical headquarters are located at Juja Road, Block 4A, Office 12, P.O. Box 40100, Nairobi, Kenya. You can reach our Data Privacy Office via email at [email protected] or by call at +254 20 555 0198.

2. Scope Of This Policy

This policy details the protocols governing user metrics obtained during registration, newsletter forms, or cookie logs. We align our data collection guidelines strictly with the Kenya Data Protection Act, 2019 and recommendations of the Office of the Data Protection Commissioner (ODPC) in Nairobi.

3. Categories of Information Collected

We collect following data points: (a) Information provided directly through membership forms (including first and last names, corporate email addresses, phone contact logs, billing coordinates); (b) Automatically tracked data logs (browser type, dynamic IP addresses, platform preference settings, cookie telemetry, and site interaction metrics); (c) Information from third-party payment integrations or verified Google analytical frameworks.

4. Objectives & Legal Grounds for Processing

We process your metrics according to clear objectives outlined in the table below:

5. Analytics & Google Consent Mode v2

Our digital platforms leverage advanced Google Consent Mode v2 protocols. Standard analytical cookies, ad storage, and personalization details remain completely disabled by default (marked as “denied”) until you actively choose to enable them using our cookie banner preferences control.

6. Third-Party Disclosures

We do not lease, trade, or transfer your personal metrics to commercial aggregators. Your information is shared exclusively with certified data handlers including secure payment processors, cloud systems hosting our archives, or under legal directives requested by Kenyan regulatory authorities.

7. Cross-Border Metrics Transfers

As we leverage globally-managed server storage systems, some registration files might be held outside of Kenya. However, we guarantee all hosting providers apply appropriate protections matching statutory levels requested under Section 41 of the Kenya Data Protection Act.

8. Retention Terms

Personal subscription variables are retained for the active lifecycle of your membership profile. System logs and analytical tracks are routinely deleted within 12 months from original session times.

9. Your Legal Privileges

Under Section 26 of the Kenya Data Protection Act, you possess the absolute right to: access personal logs, request rectifications, demand complete erasure, limit processing, or file legal complaints directly with the Office of the Data Protection Commissioner (ODPC), Kenya.

10. Children's Data

Our digital journalism programs are optimized for individuals aged 18 and older. We do not deliberately register information belonging to children under the age of 18.

11. Contact Our Privacy Hub

If you wish to enforce your legal right to review, update, or clear any database entries we keep, submit a certified written request to our team at [email protected].