Yamaha Music School Hub

Privacy Policy

1. Overview

This privacy policy explains how Yamaha Music Europe GmbH collects, uses, and protects personal data when you use the Yamaha Music School Hub platform. We take the protection of your personal data very seriously and process it exclusively in accordance with applicable data protection law — in particular the General Data Protection Regulation (GDPR / DSGVO) and the German Federal Data Protection Act (BDSG).

2. Controller

Data Controller pursuant to Art. 4 No. 7 GDPR:
Yamaha Music Europe GmbH
Siemensstraße 22–34
25462 Rellingen, Germany
E-Mail: christoph1.seiler@music.yamaha.com

3. Technical Operation and Hosting

This platform is technically operated and hosted by Christoph Seiler on behalf of Yamaha Music Europe GmbH acting as a data processor (Art. 28 GDPR). All servers are located in Germany (IONOS SE, Karl-Theodor-Straße 126, 80796 Munich, Germany). A Data Processing Agreement (DPA / Auftragsverarbeitungsvertrag) pursuant to Art. 28 GDPR has been concluded with the hosting provider.

4. Data We Process

4.1 Server Log Files

When you access this website, our web server automatically records technical information in server log files. This data may include:

  • Browser type and version
  • Operating system
  • Referrer URL (the page you visited before reaching this site)
  • Anonymized or truncated IP address of the accessing device
  • Date and time of the server request
  • HTTP status code and data volume transferred

This data is processed solely for the purpose of ensuring the secure, stable, and reliable operation of the platform and is deleted after 7 days. It is not merged with any other data sources and cannot be used to identify individual persons. The legal basis is Art. 6(1)(f) GDPR — our legitimate interest in operating a secure platform.

4.2 User Account Data

This platform is designed exclusively for professional and educational use (B2B/B2E) within the scope of Yamaha Music Europe GmbH's Education Department. Access to the administrative functions is restricted to authorized personnel. Account data (e-mail address) is processed on the basis of Art. 6(1)(b) GDPR — for the performance of a contract or within an employment or service relationship — and Art. 6(1)(f) GDPR — the legitimate interest in secure, role-based platform access.

5. Analytics

This website uses Umami Analytics, a privacy-first, open-source web analytics tool. Our Umami instance is self-hosted on our own infrastructure in Germany. Umami operates without cookies, collects no personally identifiable information, and does not track users across websites. All statistical data is processed in fully anonymized form. No data is transmitted to third parties or external analytics services. As no personal data is processed, no consent under Art. 6(1)(a) GDPR is required.

6. Cookies and Local Storage

For a detailed overview of which cookies and browser storage this site uses, please refer to our Cookie Policy. This website uses only strictly necessary mechanisms — no tracking or marketing cookies are deployed.

7. No Third-Party Data Sharing

We do not sell, rent, or share your personal data with third parties for marketing purposes. Data is only disclosed to third parties where required by law, or where a data processing agreement pursuant to Art. 28 GDPR is in place (e.g. our hosting provider).

8. Your Rights Under GDPR

You have the following rights with respect to your personal data, to the extent personal data concerning you is processed:

  • Right of access — Art. 15 GDPR
  • Right to rectification — Art. 16 GDPR
  • Right to erasure ("right to be forgotten") — Art. 17 GDPR
  • Right to restriction of processing — Art. 18 GDPR
  • Right to data portability — Art. 20 GDPR
  • Right to object — Art. 21 GDPR

To exercise any of these rights, please contact us at: christoph1.seiler@music.yamaha.com

Right to Lodge a Complaint

You have the right to lodge a complaint with a competent data protection supervisory authority at any time. The authority responsible for Yamaha Music Europe GmbH (registered in Pinneberg, Schleswig-Holstein) is:

Unabhängiges Landeszentrum für Datenschutz Schleswig-Holstein (ULD)
Holstenstraße 98
24103 Kiel, Germany
www.datenschutzzentrum.de

9. Data Retention

Personal data is stored only for as long as is necessary for the stated processing purpose, or as required by applicable statutory retention periods. Server log files are deleted after 7 days. Account data is deleted when the respective authorization ends, unless statutory retention obligations require otherwise.

10. Changes to This Policy

We reserve the right to update this privacy policy to reflect changes in legal requirements or our services. The current version is always available on this page. We recommend reviewing this policy periodically.

Last updated: May 2026