Log in
Register
Sign In

Privacy Policy

Updated: 12 November 2025
1. Introduction
2. Information about us as Controller
3. How data is processed
4. User data processing
5. Google Analytics legal notice
6. Video, audio and photo recordings
7. Advertisement booking and Contact form
8. Payment processing and invoicing
9. Cookies, plugins and external content
10. Classical:NEXT App
11. Your rights as a data subject

 

Introduction

Classical:NEXT understands and respects the data you share with the company. In this privacy policy, we will share with you why and how we collect, use, disclose, communicate, and use your personal data or official information when you use our website or App to browse, register or create an account with us, or, submit a proposal via our call for proposals website, and the rights you have and own over your data.

This privacy policy applies to all processing of personal data carried out by us, both in the context of providing our services and, in particular, on our websites, in mobile applications, and within external online presences, such as our social media profiles (hereinafter collectively referred to as “online offer”).

Information about us as Controller
The party responsible for these websites (the “controller”) for purposes of data protection law is

Classical:NEXT GmbH
Friedelstrasse 40
12047 Berlin, Germany
Phone: +49 30 2145 942 34
next@classicalnext.com

How data is processed

GENERAL INFORMATION ON DATA PROCESSING

We process personal data in accordance with the relevant data protection regulations, in particular the GDPR and the BDSG. Data processing by us is only carried out on the basis of legal permission. In order to be able to offer you our website and the services associated with it, we process personal data based on the following legal principles:

  • Consent (Art. 6 para. 1 lit. a GDPR)
  • Fulfillment of a contract to which you are a party, or at your request to implement pre-contractual measures (Art. 6 para. 1 lit. b GDPR)
  • Based on our legitimate interests (Art. 6 para. 1 lit. f GDPR)
  • To fulfil a legal obligation (Art. 6 para. 1 lit. c GDPR)


We will refer to the relevant terms in connection with the respective processing so that you can classify on which basis we process personal data.

If personal data is processed on the basis of your consent, you have the right to revoke this consent at any time with effect for the future.

If we process data on the basis of a weighing up of interests, you as the person concerned have the right to object to the processing of personal data, taking into account the provisions of Art. 21 GDPR.

DELETION OF DATA

As a matter of principle, we delete personal data when there is no need for further storage. A requirement can exist in particular if the data is still needed to fulfill contractual services. In the case of statutory storage obligations, deletion shall only be considered after the expiry of the respective storage obligation.

SERVICE PROVIDERS

Data that you provide to us will not be passed on to third parties. Classical:NEXT has never sold or will ever sell your personal data including your name and contact information – to external or third parties for their own marketing purposes.

However, we may engage service providers to support the operation of this website or to assist in delivering our other products or services. In such cases, it is possible that a service provider obtains knowledge of personal data. We select our service providers carefully – especially with regard to data protection and data security – and take all measures required by data protection law for permissible data processing.

DATA PROCESSING OUTSIDE THE EUROPEAN UNION

Insofar as personal data is processed outside the European Union, this can be seen from the concrete explanations.

AUTOMATED DATA PROCESSING OF THE SERVER

In the case of purely informative use of our website, general information is initially stored automatically, which your browser sends to our server. This includes by default: browser type/version, operating system used, page accessed, the page previously visited (referrer URL), IP address, date and time of the server request, and HTTP status code.

The collected data is stored temporarily, and is not linked to any other personal data about you.

The processing is carried out to protect our legitimate interests and is based on the legal basis of Art. 6 para. 1 letter f) GDPR. This processing serves the technical management and security of the website.

The IP address will be deleted within no more than 180 days unless continued storage is required for evidentiary purposes. In such a case, all or part of the data will be excluded from deletion until the investigation of the relevant incident is finally resolved.

User data processing

REGISTRATION FOR CLASSICAL:NEXT/C:N CONNECT

A business account is automatically created or updated upon confirmation of registration for Classical:NEXT or C:N Connect. When you register as a Delegate for an edition of Classical:NEXT or if you register for C:N Connect membership, you have to create an account with us, where we collect your personal and business information.

Individuals or companies/institutions who book a stand at the Classical:NEXT Expo (Exhibitors) and Delegates participating in a shared stand or “Umbrella”-stand (Co-Exhibitors) may have their company name (or person name if no company name was given) and stand number included in various print materials related to the Expo, such as the Expo chapter in the Classical:NEXT Guide or printed maps.

Any data provided beyond the required registration information is optional. Any data you choose to add will be saved in your account and profiles.

PROCESSED DATA TYPES

Inventory data (e.g. name, addresses), contact data (e.g. email, phone number), payment information (e.g. bank details, invoices, payment history).

PURPOSES OF PROCESSING

We use the information provided by you to verify and respond to your requests, suggestions, and questions, including providing you with any requested information about our products and services. We also save your data for invoicing, billing, and tax purposes and of course, to communicate better with you.

We process this information to improve the Classical:NEXT and C:N Connect platforms, services and our customers’ experience with it, and where it is necessary for the adequate performance of our services and events. Your information is used to connect you with other members for networking purposes and create potential new business developments, to create additional value for our community and us, which is one goal of our business.

LEGAL BASIS

  • to fulfil our agreement obligations (Art. 6 Abs. 1 lit. b GDPR)
  • our legitimate interests (Art. 6 para. 1 lit. f GDPR)


Google Analytics legal notice

This website uses Google Analytics, a web analysis service from Google Inc. (“Google”). Google Analytics utilises what are known as “cookies”, text files which are saved on the visitor’s computer and used to analyse the use of this website. Information created about your use of this website through the cookie (including your IP address) is transferred and saved to a Google server in the USA. Google uses this information to analyse your use of this website, to compile reports on website activity for the website operator, and additionally to render services related to website and internet use. If necessary, Google will transfer this information to a third party if required by law or if the party in question is commissioned by Google to work with this information. Under no circumstances will Google connect your IP address with other data from Google. You may prevent cookie installation by setting your Internet browser software to do so. However, should you choose to do this, you may not be able to use all functions of this website fully. By using this website, you declare yourself in agreement with the processing of data generated by you through Google in the previously described manner for the purposes stated above.

Video, audio, and photo recordings

During our events (on site and/or virtual) we make audiovisual and photographic recordings. These are used exclusively for the following purposes:

  • Presentation on our website
  • Advertising
  • Press coverage, as well as any future promotional applications and sponsorship acquisition by Classical:NEXT GmbH across all media


The legal basis for the use of the recordings is our legitimate interest for the above-mentioned purposes in accordance with Art. 6 para. 1 lit. f GDPR.

At our events, audiovisual recordings can also be made by the participants of the event on their own responsibility. We ask the participants for mutual consideration of their personal rights. Media representatives may be present during the event and take pictures on their own responsibility.

Video and audio recordings, virtual only

We use video conferencing tools from the following providers to host the online meetings:

  • Google Meet


In particular, the following personal data is processed:

  • Information about the user
  • Meeting metadata: Topic, description (optional), participant IP addresses, device/hardware information
    For recordings (optional): MP4 file of all video, audio, and presentation recordings, M4A file of all audio recordings, text file of online meeting chat.
  • When dialling in by phone: information on incoming and outgoing phone numbers, country name, start and end time. If necessary, further connection data such as the IP address of the device can be saved.
  • Text, audio and video data: You may be able to use the chat, question, or survey functions in an “online meeting”. To this extent, the text entries you make are processed in order to display and, if necessary, log them in the “online meeting”. In order to enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera of the terminal device will be processed for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time using the service provider’s applications.

 

The legal basis for data processing when hosting “online meetings” is Art. 6 para. 1 lit. b GDPR, insofar as the meetings are conducted within the framework of contractual relationships.

If no contractual relationship exists, the legal basis is Art. 6 para. 1 lit. f GDPR. Here too, we are interested in the effective implementation of “online meetings”.

Data processing outside the European Union (EU) does not take place. However, we cannot exclude the possibility that data is routed via Internet servers located outside the EU. This may be the case in particular if participants in “online meetings” are in a third country.

If the service provider used for the “online meeting” is based outside the European Economic Area, we have agreed on a contract processing agreement with this service provider, including the EU standard contract clauses. As a supplementary protective measure, we have also implemented our Zoom configuration in such a way that only data centers in the EU, the EEA, or safe third countries such as Canada or Japan are used for holding “online meetings”. In addition, we will ask you for your explicit consent before participating in such an “Online Meeting”, with reference to any lack of data protection.

FURTHER DATA PROTECTION INFORMATION ABOUT THE SERVICE PROVIDER
Zoom Privacy Policy: https://eu01web.zoom.us/de-de/privacy-and-security.html

 

Advertisement booking and Contact form

We process the data of our contractual and business partners within the scope of contractual and comparable legal relationships and related measures and within the scope of communication with the contractual partners (or pre-contractual), e.g. to answer booking inquiries.

We process this data to fulfill our contractual obligations, to secure our rights, and for the purposes of the administrative tasks associated with this information as well as for business organisation.

PROCESSED DATA TYPES
Inventory data (e.g. names, addresses), payment data (e.g. bank details, invoices, payment history), contact data (e.g. e-mail, telephone numbers), contract data (e.g. subject matter of the contract, duration, customer category), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).

PURPOSES OF PROCESSING
Provision of contractual services and customer service, contact inquiries and communication, office and organizational procedures, administration and answering of inquiries, and security measures.

LEGAL BASIS
Fulfillment of contract and pre-contractual inquiries (Art. 6 para. 1 p. 1 lit. b. DSGVO), Legal obligation (Art. 6 para. 1 p. 1 lit. c. DSGVO), Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

 

Payment processing and invoicing

For the processing of payments and the issuance of invoices, we collaborate with external service providers. The specific provider used depends on the selected payment method and the nature of the service booked.

General Information on Data Transmission and Processing:

We generally do not collect and store complete payment data ourselves, such as full credit card numbers or bank account details. This sensitive payment information is directly collected and processed by the respective payment service provider. To initiate transactions and for invoicing purposes, we transmit necessary customer data, including your name, address, email address, and, if applicable and relevant for tax purposes, your VAT identification number (USt-IdNr./VAT ID). We also transmit the order details (e.g., order ID, invoice amount, booked services).

Processed Data Types (across all providers):

  • Customer Identification Data: Name, address, email address, country of residence/company seat.
  • Tax-Relevant Identifiers: VAT ID number (USt-IdNr.) if provided and applicable.
  • Order and Billing Information: Order ID, invoice amount, details of booked services (e.g., type of admission, exhibitor package), invoice number, date of transaction.
  • Payment Information: (Processed directly by payment service providers) Selected payment method, truncated credit card numbers (if provided back to us by the provider for reference), payment status.
    Technical Transaction Data: Date and time of transaction, IP address.


Purposes of Processing

The processing of your data by these service providers is essential for:

  • Secure and efficient processing of your payments.
  • Fulfillment of our contractual obligations towards you (e.g., confirming your registration or booking).
  • Compliance with legal obligations, particularly tax law requirements for proper invoicing, sales reporting, and the correct application of Value Added Tax (VAT) regulations, including complex procedures like the Reverse Charge mechanism or country-specific VAT rates.
  • Fraud prevention and risk management.
  • Maintenance of proper business records and accounting.


Legal Basis:

The processing is carried out on the basis of the following legal grounds:

  • Fulfillment of our contractual obligations (Art. 6 para. 1 lit. b GDPR): Payment and invoicing are indispensable for the fulfillment of the contract concluded between you and Classical:NEXT.
  • Fulfillment of our legal obligations (Art. 6 para. 1 lit. c GDPR): This concerns compliance with tax law provisions (e.g., German VAT Act – Umsatzsteuergesetz, Abgabenordnung; Hungarian VAT Act), which mandate proper invoicing, reporting of sales, and the correct application of VAT, potentially requiring specific customer data and transaction details.
  • Our legitimate interests (Art. 6 para. 1 lit. f GDPR): This includes our interest in secure, reliable, and cost-efficient payment processing, prevention of payment defaults and fraud, and maintaining proper business administration.

 

Payment and Invoicing Service Providers:

a) Wordline

  • Service: Payment processing.
  • Details: Worldline facilitates payment transactions for various bookings. We transmit order numbers, invoice amounts, and necessary customer/tax data as described above.
  • Location: Worldline Schweiz AG, Hardturmstrasse 201, 8021 Zurich, Switzerland. Worldline Schweiz AG is based in Switzerland, a country recognized by the EU as providing an adequate level of data protection (adequacy decision by the EU Commission). Therefore, the transfer of data to Worldline in Switzerland offers an appropriate level of data protection. Should Worldline or its subcontractors transfer data to other third countries, we ensure appropriate safeguards (e.g., EU Standard Contractual Clauses) according to Art. 46 GDPR are in place.
  • Privacy Policy: www.six-payment-services.com/privacy-statement

 

b) PayPal (Europe) S.à r.l. et Cie, S.C.A.

  • Service: Payment processing.
  • Details: When you select PayPal as your payment method, your payment data is transmitted directly to PayPal. Classical:NEXT receives confirmation of payment but not your full financial details.
  • Location: PayPal (Europe) S.à r.l. et Cie, S.C.A. is based in Luxembourg (EU). Data processing generally takes place within the EU/EEA. For potential transfers to third countries (e.g., if you have a non-EU PayPal account or if PayPal uses international sub-processors), PayPal ensures compliance with GDPR, typically through Standard Contractual Clauses.
  • Privacy Policy: https://www.paypal.com/my/webapps/mpp/ua/privacy-full

 

c) Stripe, Inc.

  • Service: Payment processing.
  • Details: If you choose Stripe, your payment information is collected and processed directly by Stripe. Classical:NEXT is notified of the transaction status.
  • Location: Stripe, Inc. is based in the USA. Data transfers to the USA are covered by appropriate safeguards, such as Standard Contractual Clauses approved by the EU Commission, and Stripe’s adherence to relevant data protection frameworks.
  • Privacy Policy: https://stripe.com/privacy

 

d) Számlázz.hu (KBOSS.hu Kft.)

  • Service: Invoicing and tax reporting for delegate admission (ticket) sales.
  • Details: For pure ticket purchases for our event in Budapest, the invoicing is handled by KBOSS.hu Kft., operating under the brand Számlázz.hu. This is necessary to comply with Hungarian VAT regulations (27% VAT) and the direct reporting obligations to the Hungarian tax authorities. Your customer identification data and order details (for tickets) are transmitted to Számlázz.hu for this purpose.
  • Location: KBOSS.hu Kft. is based in Hungary (EU). Data processing therefore takes place within the European Union.
  • Privacy Policy: https://www.szamlazz.hu/adatvedelem/

 

Cookies, Plugins and External Content

MATOMO (PIWIK)

This website uses the open-source web analysis service Matomo (www.matomo.org).

The legal basis for data processing for web analysis is Art. 6 para.1 lit. f GDPR. Our legitimate interest is to be able to analyse and regularly improve the use of our website. We can use the statistics obtained to improve our offer and make it more interesting for you as a user.

Cookies are used for web analysis. These are text files that are stored on your computer and which enable an analysis of your use of the website. For this purpose, the information generated by the cookie about the use of this website is stored on servers exclusively in Belgium. The IP address is made anonymous before storage, ensuring that no conclusion can be drawn about your identity on the basis of the data collected.

The information generated by the cookie about the use of this website is not passed on to third parties. You can object to the storage of cookies for web analysis in the cookie settings of the website. In this case, a cookie will be stored on your device, which stores the information about your objection. This enables us to respect your decision when you continue to visit the website. If you delete the cookies stored in your browser, the Matomo objection cookie will also be deleted and you will be asked again for your consent for web analysis the next time you visit our website.

YOUTUBE

We use YouTube to embed videos to make our website attractive and informative for you. YouTube is operated by YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

If you visit one of our sites equipped with a YouTube plugin, a connection to the YouTube servers would normally be established. However, we use Heise’s embetty tool (https://github.com/heiseonline/embetty) on our site to prevent this. All our videos are embedded in our pages by “embetty” in such a way that the transmission of your IP address to the YouTube servers only begins when you actively click on the video. If you do not do this, no data is sent to YouTube during your visit to our website.

The legal basis for the data processing (if it takes place) is your consent according to Art. 6 para. 1 lit. a GDPR, which you give through your active interaction with the video.

YouTube uses cookies to collect information about visitors to its website. YouTube uses them to, among other things, collect video statistics, prevent and detect fraud, and improve user experience. YouTube may also connect to the Google DoubleClick network. If you start a YouTube video, this could trigger further data processing operations. We have no control over this.

If you have a YouTube account and you are logged in at the same time you access our websites, you enable YouTube to assign your surfing behaviour directly to your personal YouTube profile. You can prevent this by logging out of your YouTube account.

Privacy policy: www.youtube.de/t/privacy

CIVILISTEN

We send newsletters through our email marketing service provider civilisten Deutschland, Schwedenstraße 15a, 13357 Berlin, Germany.

To subscribe to our newsletters, we request that you voluntarily provide your e-mail address, name and company name. This information is used to personalize your newsletter experience and facilitate direct communication.

Processed data types:
– Contact data: e-mail address, first name, last name, country
Purposes of processing:
– Direct Marketing

Legal Basis
– to fulfill our agreement obligations (Art. 6 Abs. 1 lit. b GDPR)
– our legitimate interests (Art. 6 para. 1 lit. f GDPR)  

FURTHER DATA PROTECTION INFORMATION ABOUT THE SERVICE PROVIDER
Privacy Policy: https://civilisten.de/en/policy-privacy 

 

GOOGLE TAG MANAGER

This website uses the Google Tag Manager. This service allows website tags to be managed through an interface. The Google Tool Manager only implements tags. That means: no cookies are used and no personal data is collected. The Google Tool Manager triggers other tags, which in turn may collect data. However, the Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, it will remain for all tracking tags as long as they are implemented with the Google Tag Manager.

 

Classical:NEXT App

For a better experience, while using our service, we may ask you to provide us with certain personally identifiable information, including but not limited to your location. The information we request will be retained by us and used as described in the Privacy Policy.

The app uses third-party services that may collect information which could be used to identify you.

Link to privacy policy of third-party service providers used by the app

  • Google Play Services
  • Mapbox
  • Firebase Analytics
  • Log Data (as specified below)


Location: Your Location is only used to show your current location on the Mapbox map and only if you explicitly allow the app to do so.

Log Data: Whenever you use our Service, in the case of an error in the app we collect data and information (through third-party products) on your phone called Log Data. This Log Data may include information such as your device’s Internet Protocol (“IP”) address, device name, operating system version, the configuration of the app when utilizing our service, the time and date of your use of the service, and other statistics.

 

Your rights as a data subject

YOUR RIGHTS

You have the right to ask for confirmation as to whether the data in question is being processed and for information about this data as well as for further information and a copy of the data. You can contact us for this information at any time. In the case of a request for information that is not made in writing, we ask for your understanding that we may require you to provide evidence that proves that you are the person you claim to be.

Furthermore, you have the right to correction or deletion or to restriction of processing, as far as you are legally entitled to do so.

Finally, you have the right to object to the processing within the scope of the statutory provisions.

You also have a right to data transferability within the framework of the data protection regulations.

RIGHT TO COMPLAIN TO A SUPERVISORY AUTHORITY

You have the right to complain about the processing of personal data by us to a data protection supervisory authority.