Privacy Policy – Street Photographers Foundation
Last updated: November 10, 2025
streetphotographersfoundation.com.
For questions: [email protected].
1) Scope & Consent
This Policy applies to our online activities across our website and related competition pages/forms. By using our website or submitting an entry, you consent to this Policy and our
Competition Rules. This Policy does not cover offline collection or third-party sites we do not control.
2) Who We Are (Data Controller)
Street Photographers Foundation (“SPF”) is a platform for international photography competitions and exhibitions.
The platform is operated by Joyixir Studio OÜ (Estonia) as service provider and payments facilitator.
For privacy inquiries, email [email protected].
3) Information We Collect
3.1 Information you provide
- Registration & submission data (name, email, country, city, captions/statements, portfolio links such as Instagram/website).
- Uploaded content (photographs and related metadata).
- Winner payout information (full legal name, date of birth, country of residence, and payout details required to pay prizes).
- Support communications and fee-waiver requests (including information you choose to share).
3.2 Payment information
Payments are processed via Stripe. We do not store full card numbers or CVV on our servers.
Your bank statement may display the descriptor “STREET PHOTOGRAPHERS” or “SPF-AWARDS” (powered by Joyixir Studio OÜ).
Stripe shares with us limited details necessary for reconciliation, fraud prevention, and refunds.
3.3 Device, cookies & analytics
- Technical data (IP address, device/browser type, language, timestamps, pages viewed).
- Cookies and similar technologies for essential site functions, analytics (e.g., Google Analytics 4), and campaign attribution (e.g., UTM parameters).
- Where applicable and with consent, we may use advertising/measurement pixels (e.g., Meta) to understand conversions from our ads.
3.4 Geo-compliance data
To comply with sanctions and platform policies, we may use IP geolocation and country data to restrict access and block submissions from certain jurisdictions (see Section 9).
4) How We Use Information
- Operate competitions: receive entries, manage judging, select winners, and organize exhibitions/screenings.
- Process payments, issue receipts, handle refunds/chargebacks, and pay prizes.
- Provide support and send essential service communications (deadlines, eligibility, results).
- Security and fraud prevention; enforcing our Rules and platform policies.
- Analytics and performance: understand traffic and improve user experience and campaigns.
- Legal, tax, accounting, and sanctions compliance.
- With your consent, send optional newsletters or promotional communications (you can unsubscribe at any time).
5) Legal Bases (GDPR)
- Contract necessity – to run the competition and process your entry/payment.
- Legitimate interests – to protect our platform, prevent fraud, improve services, and promote exhibitions.
- Consent – for non-essential cookies/analytics/ads and marketing emails where required.
- Legal obligation – for tax/accounting and sanctions compliance.
8) Data Retention
- Account, submission, and support records: retained for the period necessary to run competitions and resolve issues, then deleted or anonymized.
- Transactional and prize payment records: retained as required by applicable tax/accounting laws.
- Analytics data: retained per provider defaults or as configured.
9) Your Rights
Depending on your location (e.g., EEA/UK/California), you may have the right to access, rectify, erase, restrict or object to processing, and request data portability.
You may withdraw consent at any time where processing is based on consent.
To exercise rights, email [email protected].
We may need to verify your identity and will respond within the time required by law.
California residents may also have rights under the CCPA/CPRA (e.g., right to know/access, delete, correct, and to opt-out of certain data sharing). We do not sell personal information.
10) Sanctions & Restricted Regions Important
Cuba, Iran, North Korea, Syria, and the regions of Crimea, Luhansk, and Donetsk.
We use technical and operational controls (e.g., IP geo-blocking and country allow-listing) to enforce this policy.
Submissions from these regions are blocked and not processed, and no Stripe Checkout session will be created.
11) International Data Transfers
We may transfer personal data to countries other than your own (e.g., to service providers such as Stripe or analytics providers).
Where required, we rely on appropriate safeguards such as standard contractual clauses.
12) Children
Our competitions are intended for individuals aged 18+. We do not knowingly collect personal data from children.
If you believe a minor has provided data, please contact us to delete it.
13) Security
- We implement appropriate technical and organizational measures to protect personal data.
- Payments are processed via Stripe; we do not store full card numbers or CVV.
- No method of transmission or storage is 100% secure; we cannot guarantee absolute security.
14) Contact Us
For privacy questions or to exercise your rights, contact:
[email protected].
15) Changes to this Policy
We may update this Policy from time to time. We will post the updated version on this page and revise the “Last updated” date above.
Material changes may be communicated via email or site notice.
This Privacy Policy is provided for transparency and does not constitute legal advice. For compliance questions (e.g., GDPR/CCPA), please consult legal counsel.
