Welcome to OSINTsights.com (“we,” “our,” or “us”). Your privacy is important to us, and this Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website.
1. Who We Are
Our website address is: https://osintsights.com. OSINTSights is published by Nubivance.
2. Information We Collect
a. Automatically Collected Information
When you visit OSINTsights.com, certain standard traffic information may be collected automatically through our infrastructure providers:
- IP address
- Browser type and version
- Operating system
- Referral URLs
- Pages viewed
- Date and time of visit
This data is collected by Cloudflare (our content delivery and security provider) as part of standard web traffic handling. We also use Google Analytics and Google Tag Manager, loaded via Cloudflare Zaraz, to analyze aggregate visitor trends and improve the site experience.
b. Information You Provide
If you contact us via email or submit a privacy request, we collect the information you voluntarily provide, such as your name and email address.
3. Use of AI-Generated Content
Our website uses AI tools — including Cloudflare Workers AI, OpenAI, and image generation models — to generate article content and featured images. AI-generated content is based on publicly available news sources and does not process user-submitted data. Each article attributes its source material and links to the original reporting.
Editorial content published under “Tim's Take” is written by a human author and clearly identified as such.
4. Cookies and Tracking Technologies
We use cookies and similar technologies, including:
- Functional cookies— to remember your theme preference (light/dark mode) and other site settings. These are stored in your browser's localStorage.
- Analytics cookies — Google Analytics and Google Tag Manager (loaded via Cloudflare Zaraz) are used to understand aggregate site-usage patterns.
- Consent management — Cloudflare Zaraz displays the cookie consent banner, remembers your preferences, and manages the loading of third-party tags (analytics and advertising alike) based on your choice.
- Admin session — a
csrf_tokencookie is set only when an administrator signs in to the admin area. It is not set for regular readers. - No advertising cookies. OSINTSights does not use any third-party advertising network. No ad-tech cookies are set on your device by this site.
You can manage your cookie preferences through your browser settings or through our cookie consent controls. For more details, see our Opt-Out Preferences page.
5. Embedded Content from Other Websites
Articles on this site may include links to or embedded content from external websites. Embedded content from other sites behaves as if the visitor has visited the external site, which may collect data, use cookies, and track interactions. We are not responsible for the privacy practices of third-party sites.
6. Who We Share Your Data With
- Cloudflare — content delivery, security (WAF), edge compute (Workers), edge database (D1), and privacy-friendly web analytics (Cloudflare Web Analytics, loaded alongside Google Analytics via Zaraz). Cloudflare processes standard request data (IP address, user-agent, referrer) on our behalf as part of serving the site.
- Google Analytics and Google Tag Manager — for aggregate visitor analytics. Loaded via Cloudflare Zaraz.
- Sponsor destinations — when you click a sponsor card, you are redirected via a first-party link (
/go/<id>) to the sponsor's own website. At that point your browser communicates directly with the sponsor's domain and they will see whatever your browser normally sends (IP, user-agent, referrer). We do not push click or impression data to sponsors via server-to-server calls.
Sponsor placements on OSINTSights are first-party.Sponsor cards are rendered from our own database and served from our own domain. When a sponsor card is at least 50% visible for one continuous second, your browser sends an impression record to our own endpoint (/api/placement/impression). That record contains: the sponsor campaign id, the placement slot (e.g. in_feed), the page path (e.g. /some-article-slug), your country code (derived by Cloudflare from your IP), your region (e.g. us-west), a unix timestamp, and a short deduplication hash. The deduplication hash is a SHA-256 of non-identifying fields (campaign id, placement, page path, country, and the current minute) — your IP address, user-agent, and cookies are never hashed or stored, so the hash cannot be reversed to identify you.
When you click a sponsor card's call-to-action, your browser is redirected via a first-party link (/go/<id>) to the sponsor's destination URL. At the same time we write a click record to the same placement_events table containing the campaign id, the page path you came from (query strings and fragments are stripped), your country code, your region, a unix timestamp, and a randomly-generated unique identifier for the click. As with impressions, no IP address, no user-agent, no cookies, and no personal identifiers are stored in the click log, and no third-party ad network is involved.
We do not sell or rent personal data. We may disclose certain information to third parties under circumstances that might be deemed a “sale” or “sharing” under applicable state privacy laws. You may opt out of such arrangements through our Opt-Out Preferences page.
7. Data Retention
Analytics data is retained in accordance with the retention policies of our analytics providers (Cloudflare, Google). In addition, we store sponsor-placement impression and click records (campaign id, page path, country, region, timestamp, deduplication hash — no personal identifiers) in our own Cloudflare D1 database to measure sponsor performance. These records are aggregate and non-personal.
If you submit a privacy request or contact us, we retain your correspondence for as long as necessary to fulfill the request and for our records.
8. Your Privacy Rights
Depending on your location, you may have rights under privacy laws such as GDPR (EU), CCPA/CPRA (California), and other state privacy regulations. These rights may include:
- Requesting access to or deletion of your personal data
- Opting out of personalized advertising
- Requesting portability of your data
- Limiting the use of sensitive personal information
- Managing cookie preferences
To exercise your rights, please visit our Opt-Out Preferences page or contact us at privacy-support@osintsights.com.
9. Data Security
OSINTsights.com is protected by Cloudflare's Web Application Firewall (WAF), DDoS protection, and TLS encryption to safeguard data in transit. Our infrastructure uses scoped API tokens with least-privilege access, and all server access is restricted by IP-based firewall rules.
10. Children's Privacy
OSINTSights is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will take steps to delete it.
11. International Data Transfers
Our site is served globally through Cloudflare's network. Your data may be processed in data centers located in various countries. By using the site, you consent to the transfer of your information to countries outside of your country of residence, which may have different data protection rules.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Last Updated” date. Continued use of the site after changes constitutes acceptance.
13. Contact Us
For any questions or concerns regarding this policy, please email privacy-support@osintsights.com.
OSINTSights
500 Westover Dr #9816
Sanford, NC 27330
United States