BizCard Privacy Policy
Last updated: 2026-05-03
This Privacy Policy describes how BizCard ("we", "the app") handles your
information when you use our Android application (package name:
com.yseol.bizcard).
1. Information We Process
1.1 Stored locally on your device only
The following data is processed on-device and stored in a local SQLite database. It does not leave your device unless you explicitly enable an optional feature.
- Business card images you capture or import
- OCR text extracted from those images
- Contact fields you save: name, company, role, department, phone numbers, email, address, website, notes, tags, category
- Your own "My Card" (digital business card) you create
- App preferences (language, sort order, theme)
1.2 OAuth credentials (only if you enable Google Sync)
If you tap "Connect Google" in Settings, the app obtains an OAuth
access/refresh token from Google with the scopes:
contacts, userinfo.email,
userinfo.profile. Tokens are stored in your device's
Android EncryptedSharedPreferences via
expo-secure-store and are never transmitted to our servers.
1.3 Subscription identifier
For Pro subscription management, a randomly generated UUID ("App User ID") is created on first launch, stored on device, and shared with RevenueCat (our subscription provider). This UUID does not contain any personal information.
1.4 Diagnostic data
When the app crashes or encounters errors, a report containing the error message, stack trace, app version, OS version, and device model is sent to Sentry (our error monitoring provider). Personal contact data, email addresses, phone numbers, and OAuth tokens are automatically redacted before transmission.
2. How We Use Information
| Data | Purpose |
|---|---|
| Business cards stored locally | Provide the core feature of saving and searching contacts |
| Camera images | Run on-device OCR (ML Kit) to extract contact fields |
| Google OAuth tokens | Sync contacts to/from your Google account when sync is enabled |
| App User ID | Identify your subscription with RevenueCat |
| Diagnostic data | Detect and fix bugs and crashes |
3. Third Parties
We share data with the following third parties only as described below:
- Google (Privacy Policy) — when you enable Google Sync, contact data is sent to Google Contacts via the People API on your behalf.
- RevenueCat (Privacy Policy) — receives your App User ID and subscription transaction tokens to validate purchases with Google Play Billing.
- Sentry (Privacy Policy) — receives PII-scrubbed crash and error reports.
- Google Play Billing — handles subscription payments. We do not see your payment method.
We do not sell or share your data with advertisers. We do not use third-party analytics SDKs.
4. Permissions
| Permission | Why we need it |
|---|---|
| Camera | Capture business card images for scanning |
| Read Contacts | (Optional) Read your Google contacts during sync |
| Write Contacts | (Optional) Export scanned cards to your device's contact list |
You can revoke any permission at any time in your device's system settings.
5. Data Retention
- Local data persists on your device until you delete a card, clear app data, or uninstall the app.
- Diagnostic data is retained by Sentry for 90 days.
- RevenueCat retains subscription records as required for accounting and customer support.
6. Your Rights
You may at any time:
- Delete any individual business card from within the app
- Disconnect Google Sync from Settings (revokes our OAuth token)
- Uninstall the app to remove all locally stored data
- Request deletion of your subscription record by contacting us
If you are in the EEA, UK, or California, you have additional rights under GDPR / UK GDPR / CCPA, including the right to access, correct, or delete your personal data, and to lodge a complaint with a supervisory authority.
7. Children
The app is not directed to children under 13. We do not knowingly collect data from children under 13.
8. Security
Local data is stored in app-private storage. OAuth tokens are stored in the OS-provided secure keystore. Network traffic uses HTTPS exclusively.
9. Changes
We may update this Privacy Policy from time to time. The "Last updated" date above reflects the most recent change. Continued use of the app after a change constitutes acceptance.
10. Contact
For questions about this Privacy Policy or our data practices, contact:
Email: support@naholosoft.com