Privacy is one of our core values at Cardbox. When you entrust us with your data, we handle it carefully and with respect. Unlike most social networks, we don’t analyze nor sell your personal data; in fact, we want as little of it as possible. It’s not our business model, and we actually think it’s unethical.
In order to provide you the functionality of our platform, we obviously do need to collect and store data. Data that may be relevant to you consists of the following:
Your name, photo, and verification status are always visible to anyone on the platform. You can opt to hide yourself in the public search results, suggestions, and/or Nearby, but people may still share the link to your profile.
The fields on your card are only visible to your connections. By default all fields are visible to connections, but you can specify which fields to hide from specific connections or groups by setting Permissions.
The following data is always stored in encrypted form: information in fields on your card, request messages, notes, and group names. Only executive-level employees at Cardbox have access to the decryption keys for this data; currently 1 person.
You can delete your account and all associated data instantly and at any time. While we keep database backups for 14 days in case of critical failure, account deletion is permanent and accounts can not be requested to be restored on an individual basis.
The Nearby feature allows you to easily connect to people within Bluetooth range. Nearby is enabled by default in order to make it useful, but it can be disabled in settings. Your Nearby presence is only broadcasted when the app is open. The feature works locally on your device; location data is never sent to our servers.
Cardbox works with third parties in order to provide our services. We have Data Processing Addendums in place with all of the following third parties to ensure your data is handled well:
Cardbox is incorporated in The Netherlands and stores user data in Ireland, so your data is protected by strong Dutch and EU privacy laws like the GDPR. Cardbox will not disclose user information unless required to do so to comply with a legally valid and binding order.
Cardbox reserves the right to update its Privacy & Data Policy at any time. We recommend to revisit this page once in a while to stay up-to-date. The date of the last update is mentioned at the bottom.
Should any updates require new consent from you, we will get in touch to let you know about the changes. Smaller changes will be announced on our public channels.
Last update: April 3, 2019