A GDPR-compliant digital business card
The moment you collect someone's details at an event, you're handling personal data under GDPR. vCard Exchange is built for that — consent on the form, EU data residency, and full control over what you collect.
Why this matters
A paper card you hand out isn't personal data you process. But the moment you collect someone's name, phone or email — at a booth, a meeting, a conference — you become a data controller and generally need a lawful basis, usually consent. Most digital card tools ignore this; regulated professionals in the EU can't.
How vCard Exchange handles it
- Explicit consent. The two-way capture form includes a consent checkbox and a privacy note — no consent, no submission.
- EU data residency. Data lives on Cloudflare's edge network; the browser never touches the database directly.
- Your data, exportable. Export collected contacts to CSV anytime; delete a card to remove its contacts.
- Minimal by default. The capture form asks only for name, phone and email — data minimisation, not a fishing net.
Who it's for
Accountants, lawyers, insurance brokers, real-estate agents and consultants across Greece, Cyprus and the wider EU who network in person and need contact capture that won't create a compliance headache.
This page is general information, not legal advice. For your specific obligations, consult a qualified professional.
Frequently asked questions
Does collecting contacts at an event need consent?
If you store personal data you're a controller and generally need a lawful basis such as consent — which the capture form makes explicit.
Where is my contact data stored?
On Cloudflare's EU edge. Data is written server-side only; the browser never touches the database.
Can I export or delete collected contacts?
Yes — CSV export anytime, and deleting a card removes its contacts.