Privacy Policy

1. Introduction & Scope

At SnapLinkr, we prioritize your data autonomy. We design products to help you network securely. This policy covers our globally accessible web applications, dynamic QR codes, physical NFC cards, visitor-facing capture tools, and our iOS & Android mobile applications.

By registering a SnapLinkr profile, ordering a customized physical card, or using our OCR card scanning tools, you acknowledge the terms outlined in this Privacy Policy. If you do not agree with these principles, please refrain from using our ecosystem.

2. Personal Data We Collect

We collect personal information directly provided by you, automatically through device transactions, and in cooperation with visitor-facing interactions:

• Account & Registration Details: Full Name, email address, password hashes, telephone numbers, and corporate designations.
• Profile Customization Attributes: Custom hex colors, selected typeface configurations, avatar graphics, banners, bio descriptions, location address grids, and linked social media handles.
• Transactional & Shipping Info: Full name, physical billing/shipping address, and virtual transaction tokens (handled exclusively by fully integrated, PCI-compliant third-party processors).
• Lead Capture & Visitor Data: Data submitted by prospective clients or leads directly into your dynamic SnapLinkr profile forms (including names, emails, and notes).

3. Business Card Scanner & OCR Security

Our mobile applications contain a high-performance **Paper Business Card Scanner** powered by Optical Character Recognition (OCR) technology. This tool converts photo coordinates from paper cards into editable digital contact coordinates instantly.

All parsed contact parameters (names, emails, phone numbers) are displayed directly on your device screen for your review. The extracted contact data is fully encrypted using AES-256 protocols both in-transit and at-rest. Parsed data is synced to your cloud account solely upon your manual instruction to save the scanned card.

4. NFC Technology & dynamic Profile Handshakes

SnapLinkr physical cards utilize Near-Field Communication (NFC) protocols. When tapped against a target smartphone, the card initiates a passive electromagnetic signal that requests the target device to open a static URL representing your dynamic profile page. This dynamic routing is designed with the following security features:

• Zero Device Intrusion: NFC handshakes do not install any applications, tracking pixels, or cookies on the target device natively.
• No Hidden Transmissions: Our physical chips contain only a redirect URL link and do not store any background personal data of the cardholder or target device.
• Secure Redirection: All profile pages use secure dynamic sockets (HTTPS with TLS 1.3 encryption) to prevent man-in-the-middle exploits during a real-life physical handshake.

5. How We Process & Protect Data

We process your data to maintain our networking services, custom dynamic profile interfaces, simulated laser-engraving reviews, and order fulfillment. We use advanced technical architectures to guarantee security:

• End-to-End Encryption: All personal databases are encrypted using AES-256 encryption. In-transit data utilizes HTTPS TLS 1.3 protocol layers.
• Simulated Payments: Our payment checkout forms are simulation modules. Virtual shipping logs are securely handled internally, and fake financial coordinates (mock cards) are parsed only for visual success feedbacks. No real financial credit cards are processed or saved.
• Data Retention Policies: We retain your account data for as long as your profile remains active. Upon requests to delete accounts, all custom widgets, contact coordinates, scanned contacts, and dynamic profiles are purged within 30 days.

6. Global Compliance Disclosures

We satisfy the strict privacy standards mandated across multiple international jurisdictions:

• GDPR Compliance (EEA Citizens): Under the European General Data Protection Regulation, we act as a Data Controller. You hold the rights of access, erasure (right to be forgotten), rectification, data portability, and processing limitations.
• CCPA & CPRA Compliance (California, USA): We do not sell or share your personal data to third-party data brokers. You hold the right to know what data is collected, delete your records, and opt-out of data collection without discrimination.
• LGPD (Brazil) & PIPEDA (Canada): We operate on the legal basis of clear consent, providing transparent data deletion portals and ensuring appropriate protection steps during cross-border transfers.
• Australian Privacy Principles (APPs): We treat personal data with strict confidence, offering simple complaint procedures and direct data download options.

7. Digital Personal Data Protection (DPDP) Act 2026 (India)

As our core platform is developed and maintained in India under BWJ Tech Solutions, we adhere to the **Digital Personal Data Protection (DPDP) Act** rules. Under the DPDP framework:

• Data Fiduciary Role: SnapLinkr acts as the Data Fiduciary, and you are the Data Principal. We process personal data solely for specified, lawful, and consented networking networking goals.
• Consent Portability & Consent Managers: You hold the right to give, manage, and withdraw your consent at any time. We support integrations with registered Consent Managers as they become operational.
• Right to Erasure & Correction: You can directly edit or permanently request deletion of all dynamic profile parameters through your personal account settings dashboard.
• Grievance Redressal: We maintain a dedicated Grievance Redressal Officer to address complaints, questions, or processing issues within the statutory timeline.

8. Your Rights, Data Portability & Redressal Officer

To exercise your rights (under DPDP, GDPR, CCPA, or local frameworks) or to raise queries regarding data encryption protocols, contact us:

We process all verification requests and complete deletion/portability claims within 30 days. No financial charges are ever applied for exercising your legal data protection rights.