Privacy Policy

Last updated: February 10, 2020

Business card scanner by Covve (“Covve”) is a simple yet powerful business card scanner that respects the privacy of your data. The Terms and Conditions and our Privacy Policy have been designed to protect your data and to be straightforward and easy to understand.

In a nutshell:

  • We never resell or share personal information about you or your contacts.
  • Protection of your data is our top priority and we take significant measures to keep it safe and secure.

Users of the Services offered by Covve acknowledge and accept these terms and conditions.

Data Processor

Covve Visual Network Ltd.
Michalaki Karaoli 8,
4th floor Anemomylos Building
1095 Nicosia, Cyprus.

The parties acknowledge and agree that with respect to the processing of personal data, the User is the Data Controller and Covve is a Data Processor.

Types of Data collected

Covve collects two types of data:

  • Business card data: The image of the business card being scanned. This is collected and processed for the purpose of providing and improving the service.
  • Anonymous usage data: Any use of cookies or other tracking by Covve or third party services used by Covve, unless stated otherwise is used purely for improving the service and troubleshooting issues.

Users are responsible for any Personal Data of third parties provided into Covve and confirm that they have the third party’s consent to provide the Data to the Data Processor.

Mode and place of processing the Data

Methods of processing

The Data Processor processes the Data of Users in a proper manner and shall take appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.

Covve shall only process Personal Data on behalf of and in accordance with User’s instructions and shall treat all Personal Data as Confidential Information.

The Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated.

In addition to the Data Processor, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of the site (administration, sales, marketing, legal, system administration) or external parties (such as third party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as sub-Processors. The updated list of these parties may be requested from the Data Processor at any time.

We may share some of the Data with subsidiaries, joint ventures, or other companies under a common control (“3rd Parties”), in which case we will require our 3rd Parties to honor this Privacy Policy. If another company acquires our company, business, or our assets, that company will possess the Data collected by us and will assume the rights and obligations regarding the Data as described in this Privacy Policy.


The Data is processed by our systems which are wholly hosted in Microsoft Azure’s West Europe data centres. If any human intervention is required, for example when supporting a customer, then this will take place at our operating offices. Where the parties involved with the processing, this takes places at their locations. For further information, please contact the Data Processor. Transfer of data to countries outside the EEA may take place as part of the services described in this Privacy Policy.

Retention time

The Data is kept for the time necessary to provide the service requested by the User, or stated by the purposes outlined in this document, and the User can always request that the Data Processor corrects, suspends or removes the data.

Right to complain

The User has the right to lodge a complaint to the supervisory authority by contacting them here:

The use of the collected Data

The Data concerning the User is collected to allow the Data Processor to provide its services as well as for the following purposes: business card scanning, Traffic optimization and distribution and Hosting and backend as a service. The Personal Data used for each purpose is outlined in the specific sections of this document.

Detailed information on the processing of Personal Data

Personal Data is collected for the following purposes and using the following services:


The services contained in this section enable the Data Processor to monitor and analyze web traffic and can be used to keep track of User behavior.

KISSmetrics (KISSmetrics Inc)

KISSmetrics is an analytics service provided by Kissmetrics Inc. used to track and examine the use of Covve and to prepare reports on its activities. Personal Data collected: Cookie and Usage data.

Place of processing: USA — Privacy Policy.

Google Analytics (Google Inc)

Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google utilizes the Data collected to track and examine the use of Covve, to prepare reports on its activities and share them with other Google services. Google may use the Data collected to contextualize and personalize the ads of its own advertising network. Personal Data collected: Cookie and Usage data.

Place of processing: USA — Privacy Policy.

Facebook (Facebook Inc)

Facebook is a service provided by Facebook Inc. used to track and examine the use of Covve and to prepare reports on its activities. Personal Data collected: Cookie and Usage data.

Place of processing: USA — Privacy Policy.

Appsflyer (Appsflyer Inc)

Appsflyer is an analytics service provided by Appsflyer Inc. used to track and examine the use of Covve and to prepare reports on its activities. Personal Data collected: Cookie and Usage data.

Place of processing: USA – Privacy PolicyOpt Out.

Hosting and backend as a service

These services have the purpose of hosting data and files that enable Covve to run and be distributed as well as to provide a ready-made infrastructure to run specific features or parts of Covve. Some of these services work through geographically distributed servers, making it difficult to determine the actual location where the Personal Data are stored.

Microsoft Azure (Microsoft Corporation)

Microsoft Azure is a hosting service provided by Microsoft Corporation. Personal Data collected: Various types of Data as specified in the privacy policy of the service.

Place of processing: Europe — Privacy Policy.

LogEntries (Rapid7 LLC)

LogEntries is a server log management service provided by Rapid7 LLC.

Personal Data collected: Various types of Data as logged by Covve’s servers for troubleshooting and system monitoring purposes.

Traffic optimization and distribution

These services allow Covve to distribute their content using servers located across different countries and to optimize their performance.

Which Personal Data are processed depends on the characteristics and the way these services are implemented. Their function is to filter communications between Covve and the User’s browser.

Considering the widespread distribution of this system, it is difficult to determine the locations to which the contents that may contain Personal Information User are transferred.

Cloudflare (Cloudflare, Inc.)

Cloudflare is a traffic optimization and distribution service provided by Incapsula, Inc. The way Cloudflare is integrated means that it filters all the traffic through Covve, i.e., communication between Covve and the User’s browser, while also allowing analytical data from Covve to be collected.

Personal Data collected: Various types of Data as specified in the privacy policy of the service.

Place of processing: USA — Privacy Policy.

Image and card processing

Google Vision AI (Google Inc)

Google Vision AI receives images of business cards that the User scans and transcribes the information into machine-readable format. Google Vision AI is one of the inputs used to provide the service.

Personal Data collected: Images of business cards of User’s contacts.

Place of processing: USA — Privacy Policy

Additional information about Data collection and processing

Legal action

The User’s Personal Data may be used for legal purposes by the Data Processor, in Court or in the stages leading to possible legal action arising from improper use of Covve or the related services.

The User declares to be aware that the Data Processor may be required to reveal personal data upon request of public authorities.

Additional information about User’s Personal Data

In addition to the information contained in this privacy policy, Covve may provide the User with additional and contextual information concerning particular services or the collection and processing of Personal Data upon request.

System Logs and Maintenance

For operation and maintenance purposes, Covve and any third party services may collect files that record interaction with Covve (System Logs) or use for this purpose other Personal Data (such as IP Address).

Your right to withdraw consent

Wherever the User has given Covve consent to access any data, the User may withdraw the consent at any time either by deleting their account or by contacting

Information not contained in this policy

More details concerning the collection or processing of Personal Data may be requested from the Data Processor at any time. Please see the contact information at the beginning of this document.

The rights of Users

Users have the right, at any time, to know whether their Personal Data has been stored and can consult the Data Processor to learn about their contents and origin, to verify their accuracy or to ask for them to be supplemented, cancelled, updated or corrected, or for their transformation into anonymous format or to block any data held in violation of the law, as well as to oppose their treatment for any and all legitimate reasons. Requests should be sent to the Data Processor at the contact information set out above.

Covve does not support “Do Not Track” requests.

To determine whether any of the third party services it uses honor the “Do Not Track” requests, please read their privacy policies.

Changes to this privacy policy

The Data Processor reserves the right to make changes to this privacy policy at any time by giving notice to its Users on this page. It is strongly recommended to check this page often, referring to the date of the last modification listed at the top. If a User objects to any of the changes to the Policy, the User must cease using Covve and can request that the Data Processor removes the Personal Data. Unless stated otherwise, the then-current privacy policy applies to all Personal Data the Data Processor has about Users.

Information about this privacy policy

The Data Processor is responsible for this privacy policy.

Definitions and legal references

Personal Data (or Data)

Any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.

Usage Data

Information collected automatically from Covve (or third party services employed in Covve), which can include: the IP addresses or domain names of the computers utilized by the Users who use Covve, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User’s IT environment.


The individual using Covve, which must coincide with or be authorized by the Data Subject, to whom the Personal Data refer.

Data Subject

The legal or natural person to whom the Personal Data refers.

Data Processor (or Data Supervisor)

The natural person, legal person, public administration or any other body, association or organization authorized by the Data Controller to process the Personal Data in compliance with this privacy policy.

Data Controller

The natural person, legal person, public administration or any other body, association or organization with the right, also jointly with another Data Controller, to make decisions regarding the purposes, and the methods of processing of Personal Data and the means used, including the security measures concerning the operation and use of Covve. The Data Controller, unless otherwise specified, is the User.


The hardware or software tool by which the Personal Data of the User is collected.


Small piece of data stored in the User’s device.

About the General Data Protection Regulation (“GDPR”)

This privacy statement has been prepared in fulfilment of the obligations set out in the GDPR with respect to Data Processors.