Privacy Policy

Effective Date: April 2025

Pizzary is built with minimal external dependencies. We aim to reduce tracking personal data to an absolute minimum. We never share personal information with any third party and are GDPR compliant by design.

1. Data Controller

The data controller responsible for processing your personal data is:

Pizzary
Jan Silbersiepe
c/o Mister Wombat
Greifenhagener Straße 7
10437 Berlin

If you have any questions or concerns about this Privacy Policy or your personal data, please contact us at admin at jcs dot wtf.

2. Data We Collect

We collect and process the following types of personal data when you use our platform:

• Account Information: When you sign up, we collect your email address, username, and password. If you sign up using Google, we collect your Google account email and username.
• User-Generated Content: Any reviews, comments, likes or other content you post on the platform.
• Technical Data: We collect anonymized technical information such as your IP address, browser type, and device information for security and performance purposes.

3. How We Use Your Data

We use your personal data for the following purposes:

• To create and manage your account.
• To provide access to the platform's features.
• To enable you to post reviews and interact with other users.
• To improve the functionality and security of our platform.

We do not sell or share your personal data with third parties for marketing purposes.

4. External Services

We use the following external services to enhance our platform:

• Gravatar To retrieve your profile image.
• MapTiler For rendering map tiles.
• Nominatim For geocoding services.
• Sentry For error monitoring.

We do not send any personal information (e.g., email addresses or account details) to these services. These services may process anonymized requests solely for functional purposes.

Additionally, we use Umami for analytics. Umami does not use cookies or track personal information; it collects only aggregated and anonymized usage data.

5. Google Sign-Up Integration

If you choose to sign up using your Google account:

• We receive only your email address and username from Google.
• Authentication is handled securely via Google's OAuth 2.0 system.
• No additional data is collected from Google without your explicit consent.

For more information on how Google handles your personal data, please refer to Google's Privacy Policy.

6. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

• Consent (Article 6.1a): When you sign up for an account or use Google login, you consent to the processing of your data.
• Contractual Necessity (Article 6.1b): To provide the services you request through our platform.
• Legitimate Interests (Article 6.1f): For improving security, functionality, and user experience.

7. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy or as required by law:

• Account information is retained until you delete your account.
• User-generated content might remain accessible unless removed by you or as required by law.

8. Your Rights

Under GDPR, you have the following rights regarding your personal data:

• The right to access, correct, or delete your personal data.
• The right to object to or restrict processing of your data.
• The right to withdraw consent at any time (this will not affect processing already carried out).
• The right to lodge a complaint with a supervisory authority (e.g., Germany's Datenschutzbehörde).

To exercise these rights, please contact us.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, alteration, or destruction.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically.