Effective Date: January 22, 2026
Last Updated: January 22, 2026
Version: 1.0
1. Introduction
Welcome to Miami Business Council ("MBC," "we," "us," or "our"). We respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our member portal and services.
By accessing or using our services, you agree to this Privacy Policy. If you do not agree, please do not use our services.
2.1 Information You Provide
- Account Information: Full name, email address, company name, job title, industry
- Professional Information: LinkedIn profile (optional), professional photo (optional)
- Networking Information: Business opportunities, connection requests, messages, event registrations
2.2 Information We Collect Automatically
- Login timestamps and session data
- Browser type and device information
- IP address (for security purposes only)
- Usage statistics and feature interactions
What We DON'T Collect
- ❌ Social Security numbers
- ❌ Credit card information (payments processed by Stripe)
- ❌ Health information
- ❌ Passwords (we use passwordless authentication)
3. How We Use Your Information
Primary Purposes:
- Account Management: Create and manage your member account
- Networking: Facilitate connections between members and AI-powered business matching
- Communication: Send service announcements, event invitations, and member updates
- Security: Prevent fraud, enforce terms, and protect member safety
- Improvement: Analyze usage to enhance our platform and develop new features
4. How We Share Your Information
4.1 Within the Member Community
Shared with All Members:
- Name, company name, job title, industry
- Professional photo (if uploaded)
- Business opportunities (what you're looking for/offering)
- LinkedIn profile (if provided)
Never Shared:
- Your email address (unless you initiate contact)
- Authentication logs
- Private messages
4.2 Service Providers
We share information with trusted third-party service providers who help us operate our platform:
| Provider |
Service |
Data Shared |
| Supabase |
Database & Authentication |
Account data, profile information |
| Vercel |
Website Hosting |
Usage logs |
| Resend |
Email Delivery |
Email address, name |
| Stripe |
Payment Processing |
Name, email (for memberships) |
All service providers are contractually obligated to protect your data and may only use it for specified purposes.
5. Data Security
Security Measures We Implement:
- ✅ Encryption: All data encrypted in transit (TLS 1.3) and at rest (AES-256)
- ✅ Passwordless Authentication: Magic link system eliminates password theft risk
- ✅ Row-level Security: Database isolation prevents unauthorized data access
- ✅ SOC 2 Certified Infrastructure: Enterprise-grade security (Supabase, Vercel)
- ✅ Daily Backups: Automated backups for disaster recovery
- ✅ Rate Limiting: Protection against automated attacks
- ✅ Security Monitoring: 24/7 monitoring and alerts
Data Breach Notification
In the unlikely event of a data breach affecting your information, we will notify you within 72 hours and explain:
- What happened
- What data was affected
- Steps we're taking
- What you should do
6. Your Privacy Rights
You Have the Right To:
- Access: View your personal information anytime through your profile
- Correction: Update or correct your information in your profile settings
- Deletion: Request deletion of your account and all associated data
- Export: Download your data in a portable format
- Opt-out: Unsubscribe from marketing communications
- Restrict Processing: Request we limit how we use your data
Special Rights by Location:
GDPR Rights (EEA Residents):
- Right to data portability
- Right to withdraw consent at any time
- Right to lodge a complaint with supervisory authority
- Right to object to automated decision-making
CCPA Rights (California Residents):
- Know what personal information is collected
- Know whether personal information is sold (we do NOT sell data)
- Say no to the sale of personal information
- Access your personal information
- Request deletion of personal information
How to Exercise Your Rights:
Email: privacy@miamibusinesscouncil.com
Subject Line: "Privacy Rights Request - [Your Name]"
Response Time: Within 30 days
7. Data Retention
How Long We Keep Your Data:
- Active Members: Duration of membership + 90 days
- Former Members: 1 year after membership ends
- Deleted Accounts: Removed from active database within 30 days, backups cleared within 90 days
8. Cookies and Tracking
Essential Cookies (Required):
- Session authentication
- Security features
We DO NOT use:
- Third-party advertising cookies
- Social media tracking pixels
- Cross-site tracking
9. Children's Privacy
Our services are not directed to individuals under 18. We do not knowingly collect information from children.
10. International Data Transfers
Your information is stored on servers located in the United States (AWS US-East-2). If accessing from outside the US, you consent to this transfer.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email with 30-day notice before taking effect.
Privacy Questions:
Email: privacy@miamibusinesscouncil.com
Mail:
Miami Business Council
Privacy Officer
[Your Address]
Miami, FL [ZIP]
Response Time: 5 business days (acknowledgment), 30 days (full response)
Your Consent
By using our services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.
← Back to Home