Privacy Policy
Last updated: June 2026
Dresdner Sinfoniker e.V., the operator of this website, takes the protection of your personal data very seriously. We process personal data exclusively in accordance with applicable data protection law, in particular the General Data Protection Regulation (GDPR) and the German Telecommunications-Telemedia Data Protection Act (TTDSG). This Privacy Policy explains what data we collect, how we use it, and what rights you have.
1. Data Controller
| Dresdner Sinfoniker e.V.
Glacisstrasse 30/32 01099 Dresden Germany
Email: hello@dresdner-sinfoniker.de Website: www.europasinfonie.eu |
2. General Information
SSL/TLS Encryption
This website uses SSL/TLS encryption to protect the security and confidentiality of data transmitted through it. You can recognise an encrypted connection by the ‚https://‘ prefix in your browser’s address bar and the padlock icon. When encryption is active, any data you transmit to us cannot be read by third parties.
3. Hosting
This website is hosted by:
| Strato AG
Otto-Ostrowski-Strasse 7 10249 Berlin Germany Website: www.strato.de |
When you visit our website, Strato AG processes connection data (IP address, date and time of access, browser type, referring URL) on our behalf as a data processor. All data is stored on servers within the European Union. A data processing agreement in accordance with Art. 28 GDPR is in place with Strato AG.
Legal basis: Art. 6(1)(f) GDPR — our legitimate interest in operating a reliable and secure website.
4. Server Log Files
Our hosting provider automatically collects and stores information in server log files, which your browser transmits to us automatically. This includes:
- Browser type and version
- Operating system
- Referring URL (the page you visited before ours)
- Hostname of the accessing device
- Date and time of the request
- IP address
This data is not combined with other data sources and cannot be used to directly identify you.
Legal basis: Art. 6(1)(f) GDPR — our legitimate interest in ensuring the security and stable operation of the website.
Retention period: Log files are deleted after seven (7) days at the latest, unless they are required for longer as evidence in connection with a specific incident.
5. Cookies and Consent Management
5.1 What are cookies?
Cookies are small text files stored by your browser on your device. They allow certain settings and information to be retained between visits. We distinguish between technically necessary cookies, which may be set without consent (Section 25(2) TTDSG), and non-essential cookies, for which we obtain your consent (Section 25(1) TTDSG).
5.2 Consent management: Complianz
We use the WordPress plugin Complianz | GDPR/CCPA Cookie Consent to manage your cookie preferences. When you first visit our website, a consent banner allows you to select which cookie categories you wish to enable. Complianz stores your preferences on our hosting server and does not share this data with third parties.
Complianz sets the following functional cookies to record your choices:
| Cookie name | Duration | Purpose |
| cmplz_functional | 365 days | Stores your consent for functional cookies |
| cmplz_statistics | 365 days | Stores your consent for statistics cookies |
| cmplz_preferences | 365 days | Stores your consent for preference cookies |
| cmplz_marketing | 365 days | Stores your consent for marketing cookies |
| cmplz_banner-status | 365 days | Records whether the cookie banner has been shown |
| cmplz_policy_id | 365 days | Stores the ID of the accepted cookie policy |
| cmplz_consented_services | 365 days | Stores the list of services you have consented to |
Legal basis: Art. 6(1)(c) GDPR in conjunction with Section 25(1) TTDSG — legal obligation to obtain consent for non-essential cookies.
Withdrawing consent: You may withdraw or change your consent at any time by clicking the „Cookie Policy“ link in the footer of our website. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
5.3 Technically necessary cookies
The following cookies are set without consent as they are strictly required for the technical operation of the website (Section 25(2) TTDSG):
| Cookie name | Provider | Duration | Purpose |
| wpEmojiSettingsSupports | WordPress | Session | Stores browser capabilities for emoji rendering |
| wordpress_test_cookie | WordPress | Session | Checks whether cookies can be set |
| wp_lang | WordPress | Session | Stores language preferences |
| wp-settings-* | WordPress | Persistent | Stores individual WordPress settings (logged-in users only) |
| wordpress_logged_in_* | WordPress | Persistent | Keeps logged-in users authenticated (logged-in users only) |
5.4 Preference cookies (with consent)
| Cookie name | Provider | Duration | Purpose |
| _wpfuuid | WPForms | 11 years | Stores a unique user ID to prevent duplicate form submissions |
6. Contact
If you contact us by email (hello*at*dresdner-sinfoniker.de), the data you provide — your email address, the content of your message and, where applicable, your name — will be stored solely for the purpose of handling your enquiry and will not be passed on to third parties.
Legal basis: Art. 6(1)(b) GDPR (pre-contractual or contractual relationship) or Art. 6(1)(f) GDPR (legitimate interest in responding to enquiries), depending on the nature of your request.
Retention period: Data is deleted once your enquiry has been fully resolved and no statutory retention obligations require further storage.
7. Competition Submissions — Europasinfonie Composition Competition
The submission form for the Europasinfonie Composition Competition is provided through the WordPress plugin WPForms. When submitting an entry, we collect and process the following personal data:
- Name and email address
- Submitted score (PDF) and, where applicable, a MIDI file
- Written statement
- Declarations regarding eligibility, rights assignment and anonymisation
This data is used exclusively to administer the competition, including pre-selection, jury evaluation and communication with applicants. Submitted scores are handled anonymously throughout the evaluation process.
Legal basis: Art. 6(1)(b) GDPR (pre-contractual relationship) and, for voluntary disclosures, Art. 6(1)(a) GDPR (consent).
Retention period: Personal data is deleted upon conclusion of the competition, unless statutory retention obligations (e.g. under tax law) require longer storage.
Data processing: WPForms stores submission data on our hosting server (Strato AG, see Section 3). Data is not transmitted to WPForms servers. No separate data processing agreement with WPForms is required, as all data remains on the Strato server covered by the existing agreement.
8. Embedded Videos
8.1 YouTube
This website embeds videos via YouTube. The service is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA).
We use YouTube with privacy-enhanced mode enabled (youtube-nocookie.com). In this mode, YouTube does not set tracking cookies until you actively play a video. Once you start playback, your browser establishes a connection to YouTube’s servers and the following data may be transmitted:
- IP address
- Date and time of access
- Information about the page you are viewing
- Device and browser information
- If you are logged into YouTube: association with your Google account
YouTube videos are only loaded after you have given your consent via the cookie banner.
| Cookie name | Duration | Purpose |
| GPS | Session | Stores location data |
| VISITOR_INFO1_LIVE | 6 months | Used for ad delivery and retargeting |
| YSC | Session | Records user interactions with videos |
| PREF | 8 months | Stores user preferences |
Legal basis: Art. 6(1)(a) GDPR — your consent via the cookie banner. Without consent, YouTube content is not loaded.
International transfer: Personal data may be transferred to the USA. Google LLC is certified under the EU-US Data Privacy Framework (DPF) adequacy decision pursuant to Art. 45 GDPR.
YouTube / Google Privacy Policy: https://policies.google.com/privacy
8.2 Vimeo
This website also embeds videos via Vimeo. The service is operated by Vimeo LLC, 555 West 18th Street, New York, NY 10011, USA.
When you play an embedded Vimeo video, your browser connects to Vimeo’s servers. This may result in the transmission of your IP address, device and browser information, and the URL of the page you are on. If you are logged into Vimeo, this data may be linked to your account.
Vimeo videos are only loaded after you have given your consent via the cookie banner.
| Cookie name | Duration | Purpose |
| __utmt_player | 10 minutes | Measures audience reach |
| vuid | 2 years | Stores the user’s viewing history |
Legal basis: Art. 6(1)(a) GDPR — your consent via the cookie banner.
International transfer: Personal data may be transferred to the USA on the basis of Standard Contractual Clauses adopted by the European Commission pursuant to Art. 46(2)(c) GDPR.
Vimeo Privacy Policy: https://vimeo.com/privacy
9. Maps (Mapbox)
This website uses the map service Mapbox. The service is operated by Mapbox, Inc., 50 Beale Street, Suite 600, San Francisco, CA 94105, USA.
When map content is loaded, your browser establishes a connection to Mapbox servers. Technical connection data — including your IP address and information about map interactions — may be transmitted to Mapbox.
| Name | Purpose |
| mapbox.eventData:* | Records map interactions (scrolling, clicks, zoom) |
| mapbox.eventData.uuid:* | Unique session ID for map interaction tracking |
Legal basis: Art. 6(1)(f) GDPR — our legitimate interest in providing interactive map functionality.
International transfer: Personal data may be transferred to the USA on the basis of appropriate safeguards in accordance with Art. 46 GDPR.
Mapbox Privacy Policy: https://www.mapbox.com/legal/privacy
10. Your Rights
Under the GDPR, you have the following rights with respect to your personal data:
Right of access (Art. 15 GDPR)
You have the right to obtain confirmation as to whether we process personal data about you and, if so, to receive a copy of that data along with information about the processing (purposes, categories of data, recipients, retention periods, etc.).
Right to rectification (Art. 16 GDPR)
You have the right to request the correction of inaccurate personal data or the completion of incomplete data without undue delay.
Right to erasure (Art. 17 GDPR)
You have the right to request the deletion of your personal data where the conditions of Art. 17 GDPR are met — for example, where the data is no longer necessary for the purpose for which it was collected.
Right to restriction of processing (Art. 18 GDPR)
Under the conditions of Art. 18 GDPR, you have the right to request that processing of your personal data be restricted.
Right to data portability (Art. 20 GDPR)
Where processing is based on consent or a contract and carried out by automated means, you have the right to receive your personal data in a structured, commonly used and machine-readable format and to transmit it to another controller.
Right to object (Art. 21 GDPR)
You have the right to object at any time, on grounds relating to your particular situation, to processing of your personal data carried out on the basis of Art. 6(1)(f) GDPR (legitimate interests). We will then cease processing your data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms.
Right to withdraw consent (Art. 7(3) GDPR)
Where processing is based on your consent, you have the right to withdraw that consent at any time with effect for the future. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.
10.1 Exercising your rights
To exercise any of the rights described above, please contact us at:
| Dresdner Sinfoniker e.V.
Email: hello@dresdner-sinfoniker.de
We will respond to your request within one month as required by Art. 12(3) GDPR. We reserve the right to verify your identity before processing your request. |
11. Right to Lodge a Complaint
You have the right to lodge a complaint with a supervisory authority if you consider that the processing of your personal data violates the GDPR (Art. 77 GDPR). The competent supervisory authority for Dresdner Sinfoniker e.V. is:
| Der Saechsische Datenschutz- und Transparenzbeauftragte (SDTB)
(Saxon Data Protection and Transparency Commissioner) Devrientstrasse 5 01067 Dresden Germany Website: www.sdtb.sachsen.de |
12. No Automated Decision-Making
We do not engage in automated decision-making or profiling as defined in Art. 22 GDPR.
13. Updates to this Privacy Policy
This Privacy Policy was last updated in June 2026. We may update it from time to time to reflect changes to our website or applicable law. The current version is always available at https://europasinfonie.eu/privacy-policy/.
Funded by the European Union. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or the European Education and Culture Executive Agency (EACEA). Neither the European Union nor EACEA can be held responsible for them.
