Privacy Policy
Effective July 4, 2026
1. Who is responsible for your data
GetPizza is operated by World Class Design, the data controller for the personal data described in this policy. You can reach us about privacy at privacy@getpizza.digital.
Registered office (Estonia): World Class Design, Sepapaja tn 6, Lasnamäe linnaosa, Tallinn, Harju maakond, 15551, Estonia. Office (France): Station F, 5 Parv. Alan Turing, 75013 Paris, France.
GetPizza is GDPR compliant. This policy explains what we collect, why, where it is stored, and the rights you have over it.
2. What we collect
Account and profile: your name, email address, and preferences such as your timezone and language.
The content you create: your tasks, notes, pages and documents, contacts and companies in the CRM, inbox messages, and anything else you add to your workspace.
Usage and diagnostic data: basic information about how the Service is used and technical logs that help us keep it secure, reliable, and fast.
3. Connected accounts and your calendar
This is the most sensitive access the Service can request, so we want to be clear about it. If you choose to connect your Google Calendar, then — only with your explicit authorization — we read your calendar events so we can show them alongside your tasks, and we write your scheduled tasks back to your calendar as events so the two stay in sync.
We access your calendar solely to provide this feature. Calendar events are read live to display them; the access credentials that keep the connection alive are held securely by a specialized integration provider on our behalf, not stored in our own database. Tasks are only mirrored to your calendar while they have a scheduled date and time; removing the schedule, completing, or deleting a task removes the corresponding event.
You can revoke this access at any time from Settings, or directly from your Google account. Revoking stops all further reading and writing.
4. How we use your data
We use your data to provide and operate the Service; to power Pepperoni, the AI assistant that works across the information in your apps to help you; to secure and support the Service; to process billing; and to communicate with you about your account.
We do not sell your personal data, and we do not use the private content of your workspace to train AI models.
5. Legal bases for processing
Where the GDPR applies, we rely on: performance of a contract (to give you the Service you signed up for); your consent (for optional integrations such as calendar access, which you can withdraw at any time); legitimate interests (to keep the Service secure and to improve it); and legal obligations (for example, tax and accounting).
6. Where your data is stored — Europe and the Americas
We operate infrastructure across two regions: Europe and the Americas. Your data is primarily processed in the European Union.
If you are located in Europe, your data is stored and processed in the EU. Some features rely on trusted service providers based in the United States; where data is transferred outside the EU, that transfer is covered by appropriate safeguards such as the European Commission's Standard Contractual Clauses.
7. Sharing and service providers
We share your data only with trusted third-party service providers who process it on our behalf — for example, to host the Service, deliver email, process payments, transcribe voice input, and provide AI capabilities. They may only use it to provide those services to us, under contract.
We may also disclose data where required by law, or to protect the rights, safety, and security of our users and the Service. We never sell your personal data.
8. Your rights
Under the GDPR and similar laws, you have the right to access your data, to correct it, to erase it, to restrict or object to processing, to data portability, and to withdraw consent at any time where processing is based on consent.
To exercise any of these rights, email us at privacy@getpizza.digital. You also have the right to lodge a complaint with your local data protection supervisory authority.
9. Data retention
We keep your data for as long as your account is active and as needed to provide the Service. When you delete content or close your account, we delete or anonymize the associated personal data within a reasonable period, except where we must keep certain records to meet legal obligations.
10. Security
We use technical and organizational measures to protect your data, including encryption in transit and access controls that keep each workspace's data separated. No system is perfectly secure, but we work to protect your information and to respond promptly if something goes wrong.
11. Children
The Service is not directed to children, and you must be old enough to form a binding contract in your country to use it. We do not knowingly collect personal data from children.
12. Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the "Effective" date above and, where appropriate, notify you.
13. Contact
Questions about these terms or your data? Email us at privacy@getpizza.digital.
Registered office — Estonia: World Class Design, Sepapaja tn 6, Lasnamäe linnaosa, Tallinn, Harju maakond, 15551, Estonia.
Office — France: Station F, 5 Parv. Alan Turing, 75013 Paris, France.