Privacy Policy and Data Governance Statement

Effective Date: April 19, 2026

Introduction and Affirmation of Privacy Rights

This Privacy Policy and Data Governance Statement outlines the rigorous protocols implemented by Miami Worth It to ensure the protection, confidentiality, and integrity of the personal information of our global audience. We recognize that privacy is a fundamental human right. Our operations are architected under the “Privacy by Design” and “Privacy by Default” principles, ensuring that data protection is not an afterthought but a core component of our digital infrastructure.

This document serves as a binding disclosure for visitors residing in the United States, Canada, the European Economic Area (EEA), the United Kingdom, and other jurisdictions with stringent data protection mandates. To understand the editorial mission and the values driving this platform, we invite you to visit our About Us page. For transparency regarding the expertise and background of the individuals behind our content, please refer to our About The Author page. For any legal or privacy-related inquiries, our Contact Us page is available for direct communication.

Global Regulatory Compliance Framework

Miami Worth It operates a multi-jurisdictional compliance model. We continuously monitor and align our practices with the evolving landscape of global data protection laws, including:

  • The General Data Protection Regulation (GDPR) (EU 2016/679): Applicable to visitors within the European Union.
  • The UK Data Protection Act 2018 (UK GDPR): Ensuring compliance with the post-Brexit regulatory environment in the United Kingdom.
  • The California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA): Providing specific protections for residents of California.
  • The Personal Information Protection and Electronic Documents Act (PIPEDA): Governing the collection of data from our Canadian audience.
  • Emerging US State Laws: Including the Virginia Consumer Data Protection Act (VCDPA) and the Colorado Privacy Act (CPA).

Your use of this website is also subject to our Terms of Use and our Editorial Policy, which together establish the legal framework for our relationship with our readers.

Categories of Data Collected and Processing Methodology

Voluntarily Provided Data (Active Interaction)

When you engage with our community features, such as subscribing to our newsletter, signing up for travel alerts, or utilizing our contact forms, we collect Personal Identifiable Information (PII).

  • Identifiers: Full name, email address, and communication preferences.
  • Purpose of Processing: To deliver curated travel insights, Miami-specific news, and administrative updates.
  • Legal Basis (GDPR/UK GDPR): Explicit Consent. You may revoke this consent at any time via the “Unsubscribe” link in our correspondence.

Technical and Behavioral Data (Passive Collection)

To maintain the technical health and relevance of Miami Worth It, we collect non-identifiable technical data automatically.

  • Infrastructure Logs: IP addresses (obfuscated), browser type, version, language settings, and Internet Service Provider (ISP) details.
  • Device Data: Hardware model, operating system, and unique device identifiers.

Advanced Analytics: Google Analytics 4 (GA4) Protocols

We utilize Google Analytics 4 (GA4) to understand how our audience interacts with our content. Unlike legacy analytics, GA4 utilizes an event-based data model.

  • Event Tracking: We monitor specific events such as “first_visit,” “scroll_depth,” “outbound_clicks,” and “form_submission.”
  • Granular Location Data: GA4 provides city-level location data based on anonymized IP addresses; however, we do not store precise GPS coordinates.
  • Retention and Deletion: User-level and event-level data are retained for a duration of 14 months. After this period, data is automatically purged from Google’s servers.

Advertising Disclosures: Google AdSense and Third-Party Networks

This website is monetized through Google AdSense. This partnership allows us to provide high-quality, professional travel content at no cost to our readers.

The DART Cookie and Behavioral Targeting

Google, as a third-party vendor, uses cookies to serve ads on Miami Worth It. Google’s use of the DART cookie enables it to serve ads based on your visit to this site and other sites on the internet.

  • Personalization: For users in the EEA and UK, we serve non-personalized ads unless explicit consent is granted through our Consent Management Platform (CMP).
  • Control Mechanisms: You may opt out of personalized advertising by visiting the Google Ad Settings or utilizing the Your Online Choices portal for European residents.

Third-Party Web Beacons

Our advertising partners may use web beacons (clear GIFs) to track the effectiveness of ad campaigns. Miami Worth It does not have access to, or control over, these cookies used by third-party advertisers. We encourage you to review our Cookie Policy for a comprehensive list of advertising partners.

Comprehensive Cookie Governance

Cookies are small text files stored on your device to enhance site functionality and analyze traffic. We categorize our cookies as follows:

  • Strictly Necessary: Essential for core site navigation and security.
  • Performance and Analytics: Primarily GA4 cookies used to improve our Editorial Policy based on user demand.
  • Functional Cookies: To remember settings such as language or region.
  • Targeting/Advertising: Deployed by AdSense to provide relevant promotional content.

For a detailed list of every cookie utilized by Miami Worth It, its duration, and its specific purpose, please consult our dedicated Cookie Policy.

International Data Transfers and Cross-Border Protection

As Miami Worth It is hosted on global infrastructure, your personal information may be transferred to, and processed in, countries outside of your residence, including the United States.

  • Safeguards: For transfers originating in the EU or UK, we rely on Standard Contractual Clauses (SCCs) and the UK Addendum as approved by the European Commission and the ICO.
  • Equivalency: These mechanisms ensure that your data receives a level of protection essentially equivalent to that guaranteed within the EEA.

Data Security, Integrity, and Breach Response

We employ industry-standard technical and organizational measures to safeguard your data against unauthorized access, disclosure, or accidental loss.

  • Encryption: All data transmission is secured via SSL/TLS 1.3 encryption protocols.
  • Access Control: Access to back-end user data (such as newsletter lists) is restricted to the Data Controller and authorized personnel under strict confidentiality agreements.
  • Breach Protocol: In the event of a significant data breach, we are committed to notifying the relevant Supervisory Authorities within 72 hours of discovery. Affected users will be notified via email if the breach poses a high risk to their individual rights and freedoms.

Detailed Statutory Rights by Jurisdiction

European Union and United Kingdom (GDPR/UK GDPR)

You are entitled to the following rights:

  • Right of Access: Request a copy of your personal data.
  • Right to Rectification: Mandate the correction of inaccurate or incomplete information.
  • Right to Erasure: The “Right to be Forgotten” allows you to request data deletion.
  • Right to Restriction: Limit how we process your data under specific circumstances.
  • Right to Data Portability: Request the transfer of your data to another service provider.

California (CCPA/CPRA) and US State Laws

California residents have the right to:

  • The Right to Know: Disclosure of what personal information is collected and shared.
  • The Right to Delete: Request deletion of personal information collected from the consumer.
  • The Right to Opt-Out of Sale or Sharing: We do not “sell” personal information for monetary gain. However, we do “share” information for cross-context behavioral advertising.
  • The Right to Correct: Request correction of inaccurate personal information.

Canada (PIPEDA)

Canadian users are guaranteed:

  • Meaningful Consent: We ensure that the purposes for collecting data are clear and understandable.
  • Accountability: Our Data Controller is responsible for ensuring the platform’s compliance with fair information principles.

Editorial Integrity and Affiliate Disclosures

In alignment with our Editorial Policy and FTC regulations, Miami Worth It maintains total transparency regarding our revenue streams.

  • Separation of Interests: Advertising banners and sponsored links do not influence our editorial rankings or travel advice.
  • Affiliate Links: Some articles may contain affiliate links. If you make a purchase through these links, we may receive a small commission at no extra cost to you. This is disclosed at the point of interaction.

Protection of Minors (COPPA/GDPR-K)

Our content is curated for an adult audience interested in travel and lifestyle. Miami Worth It does not knowingly collect, solicit, or maintain personal information from individuals under the age of 16. If we become aware that a minor has provided us with PII, we will execute immediate deletion protocols.

Data Retention Policy

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected.

  • Marketing Data: Retained until you unsubscribe.
  • Analytics Data (GA4): 14-month rolling retention.
  • Legal Data: Retained for as long as required by statutory law (e.g., for tax or litigation purposes).

Contact Information and Data Controller

The Data Controller for Miami Worth It is Gustavo Bueno Simchen. We have established a dedicated privacy office to handle any concerns regarding this policy.

  • Primary Contact: Gustavo Bueno Simchen
  • Email: contact@miamiworthit.com
  • Digital Inquiry Channel: Contact Us
  • Response Time: We acknowledge all privacy requests within 48 hours and provide a full resolution within the statutory 30-day window.