Welcome to MarcoAnalytica — a research and investigations platform operated by nextOS. This Privacy Policy explains how we collect, use, protect, and disclose information through our website, publications, datasets, alerts, and other products or services (collectively, the “Services”).

Our work combines open-source intelligence (OSINT), document research, and confidential sourcing. We believe privacy and transparency can coexist — and that responsible data practices strengthen investigative integrity.

1) Purpose & Scope

This Privacy Policy applies to all interactions with MarcoAnalytica, including browsing, subscribing, contributing information, or communicating with our team. It covers both our open content (articles, explainers, wikis) and member-only services (dossiers, watch feeds, alerts, datasets).

This Policy does not apply to external websites linked from our content, nor to encrypted communication tools (e.g., ProtonMail, Signal, Threema) once they are active — those services are governed by their own privacy terms.

2) Commitment to Journalistic Freedom

MarcoAnalytica operates under an independent editorial and investigative mandate.

We welcome information, documentation, and testimony from all sources — including public records, researchers, whistleblowers, and individuals acting in the public interest.

Consistent with press freedom norms, we do not discriminate by source type or origin.

We believe journalistic inquiry requires the ability to receive and assess information from any source that advances public understanding.

3) Information We Collect

We collect three categories of information:

(a) Information You Provide

• Account registration details (name, email, login credentials)

• Payment and billing data (processed by secure third parties)

• Voluntary communications (tips, feedback, comments, or inquiries)

• Optional professional details if applying for membership, collaboration, or employment

(b) Automatically Collected Data

When you visit our Services, we collect limited metadata such as:

• Browser type, device information, operating system

• IP address (truncated or anonymized where possible)

• Access timestamps, referral URLs, and interaction logs

  This helps us secure our platform, detect abuse, and improve usability.

(c) Investigative Material

In the course of our work, we may collect, store, or analyze publicly available or lawfully obtained materials — including open-source records, filings, imagery, and datasets.

These materials are archived for verification, provenance, and audit purposes.

4) Tip and Source Protection Policy

MarcoAnalytica is built to protect individuals who share information in the public interest.

Our Tip/Source Protection Policy includes:

• Confidentiality by Default:

  We treat all incoming tips and source materials as confidential unless the sender explicitly waives anonymity or requests attribution.

• Separation of Channels:

  Public submission forms are for general communication only. Sensitive material must not be sent through non-encrypted means.

  Once active, our dedicated secure channels (ProtonMail, Signal, Threema) will include clear safety instructions.

• Limited Access:

  Only authorized investigative and technical staff may access source material. Logs are restricted, and sensitive data is not exposed to analytics systems or third parties.

• Legal Defense of Source Protection:

  Where legally possible, MarcoAnalytica will resist attempts to compel disclosure of confidential sources or communications, in line with recognized press-freedom protections.

5) How We Use Information

We use collected information to:

• Deliver and personalize Services, alerts, and communications

• Maintain account integrity and prevent misuse or fraud

• Analyze engagement trends and improve platform functionality

• Verify submissions and preserve provenance in investigations

• Comply with applicable laws and safety obligations

We do not sell personal information or browsing data.

We do not use personal information for automated profiling or advertising.

6) Data Retention

We retain information for as long as necessary to provide Services, comply with legal obligations, or preserve research provenance.

Investigative records may be archived indefinitely to maintain audit trails, historical accuracy, and verification continuity.

You may request deletion of your personal account data (subject to exceptions for legal or archival necessity).

7) Data Security

We employ technical and procedural safeguards, including:

• Encrypted transport (HTTPS/TLS)

• Secure credential hashing and key management

• Access controls and staff compartmentalization

• Hashing and mirroring of investigative materials for provenance

No system is perfectly secure; we encourage contributors to use our secure channels once available for any sensitive communication.

8) Legal Bases for Processing (EEA/UK users)

If you’re in the EEA or UK, our processing is based on:

• Legitimate interest (journalistic and research purposes)

• Consent (when you voluntarily submit or subscribe)

• Contractual necessity (membership or service delivery)

• Legal obligation (compliance with law or defense of legal claims)

9) Disclosure to Third Parties

We may share data only in limited circumstances:

• With service providers who assist in operations (e.g., hosting, payment, email) under strict confidentiality obligations

• When required by law or court order, after legal review

• To prevent credible threats to life or safety

• With your explicit consent

We do not share or sell member lists, tip data, or browsing activity to advertisers, brokers, or unrelated third parties.

10) International Data Transfers

As a global research operation, some data may be stored or processed across jurisdictions.

We apply equivalent privacy and security standards regardless of where data resides, and use lawful transfer mechanisms (e.g., SCCs) when required.

11) Your Rights

Depending on your jurisdiction, you may have the right to:

• Access, correct, or delete personal data

• Restrict or object to processing

• Export your data in a structured format

• Withdraw consent (where applicable)

Requests should be sent to privacy@marcoanalytica.org or victor@nextos.dev.

12) Children’s Privacy

Our Services are intended for users aged 18 and older. We do not knowingly collect information from minors. If you believe a minor has provided data, contact us for removal.

13) Changes to This Policy

We may revise this Privacy Policy as our methods, tools, or legal obligations evolve.

If changes are material, we will post an updated version with notice on our site and effective date revision.

14) Contact

Questions, requests, or concerns may be directed to:

MarcoAnalytica / nextOS

Email: victor@nextos.dev

Subject line: “Privacy Inquiry”

For sensitive communications, please use our secure channels (ProtonMail, Signal, Threema) once available — never standard email.