Privacy Policy

This privacy policy has been compiled to better serve those who are concerned about how their “Personally Identifiable Information” (PII) is being used online. PII is information that can be used on its own or with other information to identify, contact, or locate a single person or to identify an individual in context. Please read our privacy policy carefully for a clear understanding of how we collect, use, protect, or otherwise handle your PII in accordance with our website.

What personal information do we collect from the people who visit our website?

When registering on our website, as appropriate, you may be asked to enter your name, email address, phone number, mailing address, or other details to help you with your request and experience.

When do we collect information?

We collect information when you fill in a form, subscribe to a newsletter, or respond to a survey on our website.

How do we use your information?

We may use your information and/or the PII we collect when you register, make a payment, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:

  • To personalize the user’s experience.
  • To improve our website to serve you better.
  • To allow us to better respond to your customer service requests.
  • To administer a contest, promotion, survey, or other site feature.
  • To send periodic emails regarding our services.

How do we protect visitor information?

To help protect your personal information entered and submitted via our website, we use an SSL (Secure Sockets Layer) certificate to encrypt this information and robust security measures, including limited access to the administration area.

We utilize SSL (Secure Sockets Layer) encryption to secure the transmission of personal information. This cryptographic protocol ensures that the data exchanged between your browser and our website remains confidential and protected against potential interception by malicious third parties.

Our website’s administration area, where some information is processed and stored, is accessible only to authorized personnel with specific administrative privileges. This restricted access helps prevent unauthorized individuals from tampering with or gaining unauthorized entry to sensitive data.

Do we use “cookies”?

Yes. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your web browser (if you allow) that enable the site or service provider’s systems to recognize your browser and capture and remember certain information. They are also used to help us understand your preferences based on previous or current site activity, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about site traffic and interaction to offer better site experiences and tools in the future.

We use cookies to:

  • Understand and save user’s preferences for future visits.
  • Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Some well-known browsers are Google Chrome™, Firefox®, Safari®, Internet Explorer®, etc. Each browser is different, so look at your browser’s help menu to learn how to modify your cookies.

If users turn off cookies in their browser:

Disabling cookies in your browser will turn off some of the features that make your website experience more efficient, and some of our services will not function properly.

Third-Party Disclosure

We do not sell, trade, or otherwise transfer your personally identifiable information to outside parties unless we provide you with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or servicing you, provided those parties agree to keep this information confidential. We may also release your information when we believe it is appropriate to comply with the law, enforce our website policies, or protect our or others’ rights, property, or safety.

However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

Third-Party Links

Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third-party websites have separate and independent privacy policies. We, therefore, have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our website and welcome any feedback about these sites.


Google Analytics

We use Google Analytics on our website to learn about our site visitors, including implementing demographics and interest reporting.

We, along with third-party vendors, such as Google, use first-party cookies (such as Google Analytics cookies) and third-party cookies or other third-party identifiers to compile data regarding user interactions with impressions and other analytics service functions related to our website.

To learn how to opt out of Google Analytics, visit the Google Analytics Opt-out Browser Add-on website.

Google Signals

We also use Google Signals, a feature provided by Google LLC that allows us to collect and process certain user data from our website or application, including data related to signed-in users who have enabled personalized ads, cross-device data, and aggregated demographic information from users with Google accounts.

Through Google Signals, we may collect the following types of data:

  1. Device Information: We may collect information about the device you are using to access our website or application, including the device type, operating system, browser type, and unique device identifiers.
  2. Web Analytics Data: Google Signals enables us to gather anonymized and aggregated data about user interactions with our website or application. This data includes page views, clicks, and other interactions that help us improve our services.
  3. Cross-Device Data: Google Signals allows us to combine data from different devices used by the same individual, providing us with a more comprehensive view of user behavior.
  4. Demographic Information: We may receive aggregated demographic data from Google, which does not personally identify any individual user.

We use the data collected through Google Signals for the following purposes:

  1. Improve User Experience: The data helps us understand how users interact with our website or application, enabling us to enhance user experience and tailor content to user preferences.
  2. Advertising Personalization: We may use Google Signals data to personalize advertising and marketing communications based on user’s interests and behavior.
  3. Cross-Device Tracking: The data allows us to better track user engagement across various devices, ensuring a seamless user experience.
  4. Aggregated Analysis: The demographic information we receive from Google is used for aggregated analysis, helping us identify general trends and preferences of our user base.

We may share data collected through Google Signals with the following parties:

  1. Google: As the provider of Google Signals, Google will have access to the data collected through this feature in accordance with its privacy policy.
  2. Third-Party Service Providers: We may engage third-party service providers to help us analyze and process data collected through Google Signals. These providers will be subject to confidentiality obligations and will only use the data as directed by us.

Users have certain rights and controls over the data collected through Google Signals. These include:

  1. Opting Out: Users can opt out of personalized ads by adjusting their Google ads settings at Google’s My Ad Center website.
  2. Device-Level Settings: Users can control certain device-level settings related to data collection and cross-device tracking through their device settings.

Google reCAPTCHA

We utilize Google’s reCAPTCHA service on our website to enhance security and prevent automated spam and abusive activities. This service is provided by Google LLC.

Purpose and Functionality

Google’s reCAPTCHA is employed to distinguish between human users and automated bots attempting to submit forms or access certain areas of our website. By implementing this service, we aim to ensure the integrity of interactions with our website and protect against potential misuse.

How it Works

The reCAPTCHA algorithm analyzes various behavioral cues and user interactions to determine whether a request is likely coming from a human or a bot. This may include the way users move their mouse, their typing patterns, and other factors that help identify legitimate users.

Legal Basis under GDPR

Under the General Data Protection Regulation (GDPR), our legal basis for processing personal data through the use of Google’s reCAPTCHA relies on consent.

By interacting with our website, you are providing consent for the utilization of reCAPTCHA for security purposes. You have the ability to manage your cookie preferences, including reCAPTCHA, through your browser settings.

More Information

For more details on how Google handles the data collected by reCAPTCHA, please refer to Google’s Privacy Policy. By using our website, you acknowledge and agree to the terms outlined in this statement.

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

We do not specifically market to children under 13.

Fair Information Practices

In order to be in line with Fair Information Practices, we will take the following responsive action should a data breach occur:

We will notify the users via email (only for users subscribed to our newsletter):

  • Within seven business days.

We will notify the users via in-site notification:

  • Within seven business days.


The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out strict penalties for violations.

We collect your email address in order to:

  • Respond to inquiries, send information, and/or other requests or questions.

To be in accordance with CAN-SPAM, we agree to the following:

  • To not use false or misleading subjects or email addresses.
  • To identify the message as an advertisement in some reasonable way.
  • To include the physical address of our business or site headquarters.
  • To monitor third-party email marketing services for compliance if one is used.
  • To honor opt-out/unsubscribe requests in a timely manner.
  • To allow users to unsubscribe by using the link at the bottom of each email.


We take reasonable measures to protect the data collected through our website from unauthorized access, disclosure, or alteration.

We conduct regular security audits to identify and address potential vulnerabilities in our systems. These proactive measures aim to uphold the integrity of our website and ensure a secure environment for our visitors.

While we take these precautions to protect your information, it’s important to note that no method of transmission over the Internet or electronic storage is entirely secure. Therefore, we cannot guarantee absolute security, but we continuously strive to employ best practices in maintaining a secure online experience. Users acknowledge and accept the risks associated with data transmission over the Internet.

Changes to this Policy

We may update this privacy policy to reflect changes in our data practices or for other operational, legal, or regulatory reasons. When we make changes, we will update the “Revised” date at the end of this document.

Contact Us

If you have any questions, concerns, or requests regarding this privacy policy or our website data practices, please contact us at:

City of Winter Park
401 South Park Avenue
Winter Park, Florida 32789

Revised 1/2024

Our Vision

Winter Park is the city of arts and culture, cherishing its traditional scale and charm while building a healthy and sustainable future for all generations.