Privacy Policy

1. Data We Collect

• User Account Data: Username, Email, Hashed Password, and the timestamp of your GDPR Consent.
• Card Content Data: All information you input into your digital business card (Name, Job Title, Phone, Email, Social Links, Assets like Profile Picture, Logo, CV file).
• Financial Data (via Stripe): We store a Subscription ID and your subscription status. We **do not** store your full credit card details. This is handled securely by our payment processor, Stripe.
• Access/Log Data: IP address, browser type, access times, and a deployment activity timestamp (for preview access control).

2. Legal Basis for Processing

We process your data based on the following legal grounds:

• Contractual Necessity: To provide the service you signed up for (e.g., storing your login and card content).
• Legitimate Interest: For security (log data), fraud prevention, and service maintenance.
• Consent: For processing and displaying your personal data on the publicly accessible digital card, which you explicitly agree to upon creation and through the GDPR consent during registration.

3. Data Retention and Rights

We retain your data as long as your account is active. You have the following GDPR rights:

• Right of Access (Article 15): You can access all your data in your Dashboard.
• Right to Rectification (Article 16): You can correct your data using the Card Editor and Account Settings.
• Right to Erasure (Article 17): You can delete your entire account and all associated data via the Account Settings page.
• Right to Data Portability (Article 20): Your vCard is downloadable in a standard format (.vcf).