1. Introduction

The Mwaniki Report ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website, jonathanmwaniki.co.ke, in accordance with the Kenya Data Protection Act, 2019, the General Data Protection Regulation (GDPR), and other applicable laws such as the California Consumer Privacy Act (CCPA).

2. Information We Collect

We may collect:

• Personal Information: Name, email address, or other details provided via contact forms or newsletter subscriptions.
• Usage Data: IP address, browser type, pages visited, time spent, and referral sources, collected via cookies or analytics tools (e.g., Google Analytics).
• Device Information: Device type, operating system, and unique identifiers.

3. How We Collect Information

We collect information through:

• Direct Input: Forms you complete (e.g., contact or subscription forms).
• Automated Technologies: Cookies, web beacons, and analytics tools. See our Cookies Policy.
• Third Parties: Social media platforms or advertising partners, with your consent.

4. How We Use Your Information

We use your information to:

• Provide and improve our website and services.
• Send newsletters or updates (with your consent).
• Analyze usage to enhance user experience.
• Comply with legal obligations under Kenyan and international laws.

5. Legal Basis for Processing

Under the Kenya Data Protection Act, 2019, and GDPR, we process data based on:

• Consent: For newsletters, cookies, or marketing.
• Legitimate Interests: For analytics to improve our services.
• Legal Obligation: To comply with applicable laws.

6. Sharing Your Information

We may share your information with:

• Service Providers: Analytics or hosting providers (e.g., Vercel, Google Analytics) under strict confidentiality agreements.
• Legal Authorities: When required by law or to protect our rights.
• Third Parties: With your consent, e.g., for social media integrations.

7. Your Rights

Under the Kenya Data Protection Act, 2019, and GDPR, you have the right to:

• Access, correct, or delete your personal data.
• Object to or restrict processing.
• Data portability.
• Withdraw consent at any time (e.g., unsubscribe from newsletters).
• Lodge a complaint with the Office of the Data Protection Commissioner (Kenya) or a supervisory authority (EU).

CCPA (California residents): You have the right to know what personal information is collected, sold, or shared, and to opt out of sales (we do not sell your data).

8. Data Security

We use industry-standard measures (e.g., encryption, secure servers) to protect your data. However, no method is 100% secure, and we cannot guarantee absolute security.

9. Data Retention

We retain personal data only as long as necessary for the purposes outlined or as required by law (e.g., 7 years for tax purposes in Kenya).

10. International Data Transfers

Data may be transferred to servers outside Kenya (e.g., Vercel in the US). We ensure compliance with GDPR and Kenyan law through standard contractual clauses or adequacy decisions.

11. Contact Us

For questions or to exercise your rights, contact us at:

Email: info@jonathanmwaniki.co.ke

Data Protection Officer: Jonathan Mwaniki, The Mwaniki Report, Nairobi, Kenya.