Privacy Policy
Last updated: February 21, 2026
NetCard ("we", "us", "our") is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your personal data when you use our digital business card service at netcard.live.
1. Data Controller
NetCard, operated by Next Vision, is the data controller for the personal data processed through this service. For privacy-related inquiries, contact us at privacy@netcard.live.
2. Data We Collect
Account Data
- Name, email address, and profile picture (from sign-up or OAuth providers)
- Authentication credentials (hashed passwords, OAuth tokens)
vCard Data
- Contact information you add to your digital business cards (name, phone, email, address, etc.)
- Photos, logos, and social media links you upload
- QR code and NFC interaction data
Usage & Analytics Data
- Page views, vCard scans, device type, browser, country (collected only with your consent)
- IP addresses (masked for privacy where possible)
Payment Data
- Billing information is processed securely by Stripe. We store only your Stripe customer ID and subscription status — never your full card number.
3. Purpose and Legal Basis
| Purpose | Legal Basis (GDPR Art. 6) |
|---|---|
| Providing the service (account, vCards) | Performance of contract |
| Processing payments | Performance of contract |
| Analytics & service improvement | Consent |
| Marketing communications | Consent |
| Security & fraud prevention | Legitimate interest |
4. Cookies and Tracking
We use the following types of cookies:
- Necessary cookies — essential for authentication and site functionality (e.g., session token, consent preferences). These cannot be disabled.
- Analytics cookies — help us understand how visitors use our site (Google Analytics, Umami). Only loaded with your consent.
- Functional cookies — enable features like language preferences and theme settings. Only loaded with your consent.
- Marketing cookies — used for relevant advertising. Only loaded with your consent.
You can manage your cookie preferences at any time on our Cookie Settings page or via the "Cookie settings" link in the footer.
5. Data Sharing
We share your data only with:
- Stripe — for payment processing
- Google / GitHub — if you choose OAuth sign-in
- Neon (PostgreSQL) — database hosting
- Vercel — application hosting
- AWS SES — transactional emails
We do not sell your personal data to third parties.
6. Data Retention
- Account and vCard data is retained while your account is active.
- Upon account deletion, your personal data is deleted within 30 days.
- Analytics data is retained in anonymized form.
- Consent preferences are stored for 1 year.
7. Your Rights
Under GDPR and applicable data protection laws, you have the right to:
- Access — request a copy of your personal data
- Rectification — correct inaccurate data
- Erasure — request deletion of your data
- Restriction — limit how we process your data
- Portability — receive your data in a machine-readable format
- Objection — object to processing based on legitimate interests
- Withdraw consent — at any time, without affecting prior processing
To exercise any of these rights, email us at privacy@netcard.live.
8. Security
We implement industry-standard security measures including encrypted connections (TLS), hashed passwords (Argon2), secure cookie settings, and access controls.
9. Children
Our service is not directed at children under 16. We do not knowingly collect personal data from children.
10. Changes to This Policy
We may update this policy from time to time. We will notify registered users of material changes via email. The "Last updated" date at the top reflects the most recent revision.
11. Contact
For questions about this privacy policy or your personal data, contact us at: privacy@netcard.live