Legal
Last updated — February 2026
NexCard is built on a simple principle: your data is yours. We collect only what we need to make the product work, and we are transparent about every bit of it. This policy explains what we collect, why, and how we protect it.
When you create a NexCard account, we collect your name and email address through Google OAuth or Apple Sign-In. We do not store your passwords — authentication is handled entirely by your identity provider.
Information you add to your digital business cards, including your name, job title, company, phone number, email, website, social media links, and profile photo.
When you upgrade to Lifetime Premium, payment is processed securely by Stripe. We store your Stripe customer ID and payment status but never have access to your full credit card number.
We collect anonymous analytics on card interactions — views, QR code scans, link clicks, and wallet additions — to power your analytics dashboard. This data is tied to your card, not to the people viewing it.
We use your information to provide, maintain, and improve NexCard. Specifically: to create and display your digital business cards, to generate Apple Wallet passes, to process payments, to show you card performance analytics, and to send essential service communications (such as payment confirmations). We do not sell your data. We do not use it for advertising. We do not share it with third parties for marketing purposes.
Your data is stored on Cloudflare's global infrastructure (D1 database and R2 storage), protected by encryption in transit and at rest. Authentication tokens are signed with industry-standard JWT and stored in secure, httpOnly cookies. We follow OWASP best practices to protect against common vulnerabilities.
NexCard integrates with a limited set of trusted third-party services:
Each of these services has their own privacy policy. We only share the minimum data necessary for each service to function.
You can access, update, or delete your card data at any time from your dashboard. If you want to delete your entire account and all associated data, contact us and we will process your request within 30 days. You may also request a copy of all data we hold about you.
We use a single essential cookie (cardn_session) to keep you logged in. We do not use tracking cookies, advertising cookies, or any third-party cookie-based analytics.
We may update this policy from time to time. If we make material changes, we will notify you by email or through a notice on the service. Your continued use of NexCard after changes constitutes acceptance of the updated policy.
If you have questions about this Privacy Policy or how we handle your data, reach out to us at support@nex-card.com.