Privacy Policy - The Western News

Last updated: July 16, 2025

1. General Introduction

1.1 Our Commitment to Privacy

We, the owners and operators of www.thewestern.news ("the Site", "we", "us", "our"), respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, protect, and share information when you use our site.

1.2 Scope of Policy

This policy applies to all services, content, and products offered on www.thewestern.news and all its related subdomains. By using our site, you fully agree to this Privacy Policy.

1.3 Basic Definitions

Personal Information
Any information that identifies you, directly or indirectly.
Cookies
Small text files stored on your device.
Third Parties
Companies and entities other than the one operating the Site.
Targeted Advertisements
Ads tailored to your usage profile.
Usage Data
Information about how you use the Site.

1.4 Updates and Changes

We reserve the right to update this policy from time to time. Significant changes will be posted on the site with a prominent notice.

2. Types of Information We Collect

2.1 Information You Voluntarily Provide

2.1.1 Registration Information

When you register for the site (if an option is available), we may collect:

  • Full name
  • Email address
  • Username
  • Encrypted password
  • Date of birth
  • General geographical location
  • Personal content preferences

2.1.2 Profile Information

  • Profile picture
  • Short biography
  • Language preferences
  • Display settings
  • Update notification preferences

2.1.3 Content You Create

  • Comments on articles
  • Forum posts
  • Ratings and reviews
  • Uploaded content
  • Private messages

2.2 Automatically Collected Information

2.2.1 Device and Technical Data

  • IP address
  • Browser type and version
  • Operating system
  • Screen resolution
  • Device language
  • Time zone

2.2.2 Website Usage Data

  • Pages you visited
  • Time spent on each page
  • Links you clicked
  • Searches you performed
  • Interactions with ads

2.2.3 Location Information (Geolocation)

  • General location based on IP address
  • Precise location (only with your explicit consent)

2.3 Information from Third Parties

2.3.1 Social Networks

If you connect using social media accounts:

  • Basic profile information
  • Preferences and interests

2.3.2 Business Partners

  • Information from advertisers
  • Data from analytics companies
  • Information from external service providers

2.4 Sensitive Information - Limited Collection

We do not intentionally collect sensitive information such as medical details, detailed financial information, or political and religious opinions. If such information is received by mistake, it will be deleted immediately.

3. How We Use the Information We Collect

3.1 Primary Purposes

3.1.1 Service Operation

  • Providing access to site content
  • Managing user accounts
  • Providing technical support
  • Securing the site and its users

3.1.2 Improving User Experience

  • Personalizing content and content recommendations
  • Improving load speed and site performance
  • Adapting the user interface

3.1.3 Analytics and Statistics

  • Measuring performance and identifying trends
  • Technical optimization and user research
  • Generating traffic reports

3.2 Advertising and Marketing

3.2.1 Targeted Advertisements

We use your information to display more relevant ads by:

  • Analyzing interests based on pages read
  • Tailoring ads to your demographic profile
  • Tracking ad effectiveness

3.2.2 Sharing with Ad Networks

We may share data with networks such as Google Ads, Facebook Ads, Taboola, and Outbrain.

3.3 Communication and Updates

3.3.1 Content Updates

Sending newsletters, alerts about new content, and notifications about popular articles or live events.

3.3.2 System Notifications

Updates on policy changes, security notifications, and account activity reminders.

3.4 Research and Development

We use data for A/B testing, analyzing new features, and researching audience interests to improve our products.

4. Cookies and Tracking

4.1 What are Cookies

Cookies are small text files stored on your device when you visit a website. They allow the site to "remember" you and improve your browsing experience.

4.2 Types of Cookies We Use

  • Essential Cookies: For managing login, security, and user preferences.
  • Performance Cookies: For analytics, optimization, and testing.
  • Advertising Cookies: For targeting, measurement, and remarketing.
  • Third-Party Cookies: From services like Google Analytics, Facebook Pixel, and YouTube.

4.3 Managing Cookies

On your first visit, you will be asked to consent to the use of cookies. You can manage your preferences at any time through our privacy center or your browser settings.

4.4 Additional Tracking Technologies

We may also use Web Beacons, Local Storage, and device Fingerprinting to improve our service.

5. Sharing Information with Third Parties

5.1 Authorized Business Partners

We partner with providers for analytics, advertising, and technical services.

  • Analytics: Google Analytics, Hotjar
  • Advertising: Google AdSense, Facebook/Meta, Taboola, Outbrain
  • Technical: CloudFlare, Amazon Web Services (AWS), SendGrid/Mailchimp

5.2 Cases Where We Share Information

  • By Law: In response to a court order or criminal investigation.
  • Business Transfers: In case of a sale, merger, or change of ownership.
  • Explicit Consent: When you request us to share information.

5.3 International Data Transfers

Our servers are located in Europe and the United States. We use legal protections like Standard Contractual Clauses (SCCs) to ensure your data is safe when transferred internationally.

6. Data Security

6.1 Technical Safeguards

We employ robust technical measures including HTTPS encryption for all communication, database and backup encryption, advanced firewalls, and regular penetration testing.

6.2 Organizational Safeguards

Our team receives periodic privacy training. Access to sensitive information is restricted and logged, and all employees sign confidentiality agreements.

6.3 Response to Security Incidents

In the event of a security breach, we have a clear protocol for identification, containment, and user notification, adhering to regulatory requirements like the GDPR's 72-hour notification rule.

6.4 Data Retention and Deletion

We retain data only as long as necessary. For example, active account information is kept as long as the account is open, while usage logs are kept for up to 24 months. We have automated processes for secure deletion.

7. Your Rights as a User

Under GDPR and other privacy laws, you have several rights:

  • Right to Access: You can request to see all the information we hold about you.
  • Right to Rectification: You can correct inaccurate or incomplete information.
  • Right to Erasure ("Right to be Forgotten"): You can request the deletion of your information under certain conditions.
  • Right to Restriction of Processing: You can request a temporary halt to the use of your information.
  • Right to Object to Marketing: You can unsubscribe from marketing communications and opt out of targeted ads.
  • Right to Data Portability: You can receive your data in a structured, machine-readable format.
  • Right to Lodge a Complaint: You can file a complaint with us or with your local data protection authority.

7.5 How to Exercise Your Rights

You can exercise your rights through our on-site privacy center or by contacting our privacy team directly at privacy@thewestern.news.

8. Information on Minors

8.1 General Policy

8.1.1 Minimum Age

  • The minimum age for using the site is 13 years.
  • Users aged 13-18 need parental consent.
  • We do not knowingly collect information from children under 13.
  • If we discover such information, it will be deleted immediately.

8.1.2 Special Protections for Minors

  • Limited data collection - only essential information for the service.
  • Tailored ads - no profile-based ads for minors.
  • Suitable content - content is filtered and age-appropriate.
  • Digital parenting - tools for parents to manage the account.

8.2 Parental Rights

8.2.1 Supervision and Control

  • Access to information - parents can request to see information about their children.
  • Rectification and deletion - the right to correct or delete information.
  • Stopping collection - the ability to stop further data collection.
  • Account cancellation - closing the minor's account.

8.2.2 How to Contact

Parents who wish to exercise their rights can contact us with:

  • Parent's ID
  • Proof of family relationship (birth/adoption certificate)
  • Minor's account details
  • Description of the request

8.3 Recognition of Minor's Information

If we discover we have collected information from a minor under 13:

  • We will immediately stop collecting the information.
  • We will delete all existing information.
  • We will notify parents (if identifiable).
  • We will take steps to prevent future collection.

9. Specific Technologies and Services

9.1 Google Analytics

9.1.1 Purpose of Use

  • Analyzing site traffic and usage patterns.
  • Understanding traffic sources and popular pages.
  • Measuring content performance and load speed.
  • Identifying technical issues and areas for improvement.

9.1.2 Information Collected

  • IP address (anonymized).
  • Device and browser data.
  • Pages you visited and time spent.
  • Source of site access.

9.1.3 Data Control

  • Ability to opt-out via Google Analytics Opt-out.
  • Privacy settings in your Google Account.
  • Blocking via browser extensions.

9.2 Facebook Pixel and Meta

9.2.1 Uses

  • Tracking conversions from Facebook ads.
  • Creating remarketing audiences.
  • Optimizing advertising campaigns.
  • Measuring ROI of marketing activities.

9.2.2 Shared Data

  • On-site activity and pages visited.
  • Conversion events (registration, download, etc.).
  • General demographic information.
  • Preferences and interests.

9.2.3 Opting out of Tracking

  • Privacy settings in your Facebook account.
  • Opting out of interest-based ads.
  • Blocking via tracking blocker apps.

9.3 Video Services (YouTube, Vimeo)

9.3.1 Content Integration

  • Embedding videos in articles.
  • Improved video player.
  • Social sharing features.
  • Related content recommendations.

9.3.2 Privacy Policy

Embedded videos may trigger:

  • Cookies from the video services.
  • Tracking of viewing and preferences.
  • Personalized content recommendations.
  • Ads before or during the video.

9.4 Comment Systems

9.4.1 Comment Platforms

  • Disqus - an external comment system.
  • Facebook Comments - comments via Facebook.
  • Internal system - comments in our database.

9.4.2 Information in Comments

  • Comment content and username.
  • General geographical location.
  • Social network profile (if applicable).
  • Comment and message history.

9.5 Newsletter and Email Services

9.5.1 Providers

  • Mailchimp - for managing mailing lists.
  • SendGrid - for sending transactional emails.
  • Constant Contact - for marketing campaigns.

9.5.2 Information on Mailing Lists

  • Email address and name.
  • Content preferences and frequency.
  • Open and click statistics.
  • Campaign history.

10. Data Retention and Deletion Policy

10.1 Retention Principles

10.1.1 Minimization

  • Retaining information only for legitimate purposes.
  • Deleting information that is no longer required.
  • Periodic review of retention needs.
  • Documenting justifications for long-term retention.

10.1.2 Data Lifecycle

  • Collection - information is collected for defined purposes.
  • Active use - the information is used for its purposes.
  • Archive - information is moved to long-term storage.
  • Deletion - information is completely erased.

10.2 Specific Retention Periods

10.2.1 User Account Data

  • Active accounts - as long as the account exists.
  • Inactive accounts - 3 years without activity.
  • Deleted accounts - 30 days for recovery, then complete deletion.
  • Authentication data - up to 6 months after account closure.

10.2.2 Usage and Analytics Data

  • Access logs - 24 months.
  • Site analysis data - 36 months.
  • Aggregated statistical data - no time limit (anonymized).
  • Performance reports - 5 years.

10.2.3 User-Generated Content

  • Comments and posts - as long as the account exists + 1 year.
  • Uploaded content - 2 years after account deletion.
  • Private messages - 1 year after the last deletion.
  • Reading history - 18 months.

10.2.4 Advertising and Marketing Data

  • Campaign data - 3 years.
  • Mailing lists - until unsubscribed + 6 months.
  • Conversion data - 24 months.
  • Advertising profiles - 12 months without activity.

10.2.5 Legal and Compliance Information

  • Customer service communication - 7 years.
  • Complaints and arbitration - 10 years.
  • Processing consents - as long as the data is retained + 3 years.
  • Audit reports - 7 years.

10.3 Automatic Deletion

10.3.1 Automated Systems

  • Daily deletion scripts - for expired information.
  • System admin reminders - for reviewing old data.
  • Deleting old backups - according to a defined schedule.
  • Cleaning cache and temporary files - automatically every 24 hours.

10.3.2 Control and Approval

  • Documentation of every automatic deletion action.
  • Option to suspend in emergencies or litigation.
  • Data integrity check before deletion.
  • Emergency backup before massive deletions.

10.4 Deletion by Request

10.4.1 Response Times

  • Acknowledgement of receipt - within 48 hours.
  • Deletion execution - within 30 days.
  • Confirmation of completion - within 7 days of deletion.
  • Notifying third parties - within 14 days.

10.4.2 Scope of Deletion

  • Deletion from main databases.
  • Deletion from backups and archival storage.
  • Notification to partners and data processors.
  • Deletion from all internal systems.

11. International Data Transfers

11.1 Data Location

11.1.1 Main Servers

  • Europe - main servers in Germany and the Netherlands (GDPR compliant).
  • Israel - backup and development servers in Israel.
  • United States - cloud and data analysis services.
  • Global CDN - for accelerating content loading worldwide.

11.1.2 Data Classification by Location

  • Sensitive data - stored in Europe only.
  • Public content - distributed worldwide via CDN.
  • Analytics data - processed in the United States and returned to Europe.
  • Backups - encrypted replication across multiple continents.

11.2 Legal Protections in Transfers

11.2.1 Standard Contractual Clauses (SCCs)

  • Agreements approved by the European Commission.
  • Binding legal commitments for all processors.
  • Direct enforcement rights for users.
  • Remedy mechanisms in case of a breach.

11.2.2 Additional Protections

  • Data Processing Agreements (DPAs) - with all suppliers.
  • Annual audits - of all data processing parties.
  • Impact assessments - for every new transfer to a new country.
  • Regulatory monitoring - continuous updates on legal changes.

11.3 Rights in Case of Transfers

11.3.1 Transparency

  • Advance notice - of transfers to new locations.
  • Destination details - information about the country and company receiving the data.
  • Purpose of transfer - a detailed explanation of why the transfer is necessary.
  • Transfer duration - how long the information will be stored at the destination.

11.3.2 Right to Object

  • Objection to specific transfers - option to block certain transfers.
  • Service cancellation - stopping the use of services that transfer data.
  • Deletion upon objection - removal of data from the unwanted location.
  • Local alternatives - offering local storage options.

11.4 Impact of Regulatory Changes

11.4.1 Brexit

  • Adaptation to UK-GDPR laws.
  • Special transfer agreements with the UK.
  • Identical rights for British users.
  • Monitoring future trade agreements.

11.4.2 New Data Laws

  • Monitoring legislation - in various countries (Brazil, India, etc.).
  • Adapting systems - to new legal requirements.
  • Training teams - on regulatory changes.
  • Legal advice - continuous consultation with experts.

12. Third Parties and Partnerships

12.1 Categories of Partners

12.1.1 Technical Service Providers

  • Hosting and Storage: Amazon Web Services (AWS), Google Cloud Platform, CloudFlare, Microsoft Azure.
  • Analytics and Measurement: Google Analytics, Hotjar, Mixpanel, New Relic.

12.1.2 Advertising and Marketing Partners

  • Ad Networks: Google Ad Manager, Taboola, Outbrain, Facebook Audience Network.
  • Marketing Tools: Mailchimp, SendGrid, HubSpot, Salesforce.

12.1.3 Content and Communication Services

  • Multimedia: YouTube, Vimeo, Spotify, SoundCloud.
  • Social Networks: Facebook, Twitter, Instagram, LinkedIn.

12.2 Control Over Sharing with Third Parties

12.2.1 Consent Mechanisms

  • Granular consent - the option to choose specific providers.
  • Preference center - managing all partnerships from one place.
  • Updates on new partners - advance notice of additions.
  • Right to withdraw - the option to stop sharing with specific providers.

12.2.2 Transparency in Sharing

  • Full list - all partners are available in the privacy center.
  • Purpose of sharing - a detailed explanation of why each sharing is necessary.
  • Type of information - a precise breakdown of what is shared.
  • Sharing duration - how long the information is held by the partner.

12.3 Requirements for Partners

12.3.1 Protection Standards

All of our partners must meet high security standards, including advanced encryption, limited access, security audits, and employee training.

12.3.2 Legal Obligations

All partners must sign DPA agreements, comply with GDPR, report security breaches, and allow us to audit their compliance.

12.4 Specific Partnerships - Full Details

12.4.1 Google (various services)

We use Google Analytics, Ad Manager, YouTube API, Fonts, and reCAPTCHA. We share anonymized usage data, ad interactions, and technical information. You can control this via your Google Account Settings.

12.4.2 Facebook/Meta

We use Facebook Pixel, Comments, Login, and Instagram API. We share on-site activity, conversion events, and demographic information. You can control this via your Facebook Privacy Settings.

12.4.3 Amazon Web Services

We use AWS for servers, storage, and databases. All site and user data is stored with AWS under the highest security standards, including encryption and restricted access.

13. Changes to the Policy

13.1 Types of Changes

13.1.1 Material Changes

Changes that require new consent, such as adding new data collection purposes or sharing with new third parties.

13.1.2 Technical Changes

Changes that do not require new consent, such as correcting errors or clarifying text.

13.2 Policy Update Process

13.2.1 Preparation and Review

All changes undergo legal, impact, and technical reviews.

13.2.2 User Notification

We provide 30 days' notice for material changes via on-site banners and email. We provide 7 days' notice for technical changes.

13.3 Rights in Case of Changes

13.3.1 Right to Object

If you do not agree to the changes, you may discontinue use of the site and delete your account.

13.3.2 Consent to Changes

Consent may be explicit or implied by continued use, depending on the nature of the change.

13.4 Archive of Previous Policies

All previous versions of this policy are archived and available upon request.

14. Contact and Support

14.1 Privacy Protection Team

14.1.1 Primary Contact Point

Data Protection Officer (DPO): privacy@thewestern.news

14.1.2 Additional Communication Channels

14.2 Types of Inquiries and Responses

14.2.1 Rights Requests

We guarantee a full response within 30 days. We will require information to verify your identity.

14.2.2 Complaints and Issues

We have a structured complaint handling process with a commitment to a full investigation and resolution within 30 business days.

14.3 Self-Management Tools

14.3.1 Site Privacy Center

Our privacy center allows you to view your data, update preferences, download your information, and request deletion.

14.3.2 External Tools

We provide links to industry tools like Your Online Choices and the Digital Advertising Alliance for managing ad preferences.

14.4 Guidance and Resources

We offer guides, FAQs, and a privacy blog to help you understand and manage your privacy.

15. Policy Validity

15.1 Effective Dates

This policy is effective from the date listed at the top. It is reviewed regularly.

15.2 Geographic Applicability

This policy applies globally and is intended to comply with major regulations including GDPR (EU), UK-GDPR (UK), CCPA (California), and others, applying the highest standard to all users.

15.3 Commitment Statement

We commit to complying with all applicable legal requirements, maintaining a high level of protection for your privacy, being transparent about the use of your information, giving you full control over your personal information, and investing in technologies and processes for privacy protection.

This document is an integral part of the terms of use of the www.thewestern.news website and is legally binding.