Version 1.0

Last updated: 15 June 2026

This Cookie Policy ("Policy") explains how IT FOR TOMORROW LTD (registration No. HE 466470, VAT No. CY60105017J), operating the digital business card service "DBC: Digital Business Card" through our mobile application and our websites including digitalbusinesscard.com (together, the "Service"), uses cookies and similar tracking technologies when you visit our websites or interact with our Service.

This Policy should be read together with our Privacy Policy at digitalbusinesscard.com/privacy, which provides more general information about how we process your personal data.

If you have any questions about this Cookie Policy, please contact us at privacy@digitalbusinesscard.com.

1. What are cookies and similar technologies

Cookies are small text files that are placed on your device (computer, smartphone, or tablet) when you visit a website. They allow the website to recognize your device and store some information about your preferences or past actions. Cookies are widely used to make websites work more efficiently, as well as to provide information to the owners of the site.

In this Policy, when we refer to "cookies", we also mean other similar tracking technologies that may be used on our Service, such as:

Pixels (also called web beacons or tracking pixels). Tiny graphics files used to track user behavior, conversions, or engagement (for example, the Meta Pixel and Google Ads conversion tracking).

Software Development Kits (SDKs). Code libraries embedded in our mobile application that perform similar tracking functions to cookies, for example, for analytics, crash reporting, push notifications, or attribution.

Local storage and session storage. Browser-based storage mechanisms used to store information on your device.

Tag managers. Tools (such as Google Tag Manager) that allow us to deploy and manage multiple tracking technologies through a single integration.

Server-side tracking. Technologies that capture and forward event data from our servers to analytics or advertising platforms.

For convenience, we use the term "cookies" throughout this Policy to refer to all of these technologies, unless we specify otherwise.

2. Why we use cookies

We use cookies for the following purposes:

To operate and secure the Service. Some cookies are essential for the Service to function correctly, for example, to keep you logged in, to remember your subscription status, to protect against fraud and abuse, and to enable core functionality (such as displaying your digital business card to recipients who scan your QR code).

To remember your preferences. Cookies help us remember your choices and settings, such as your language preference, region, or whether you have already seen our cookie banner.

To analyze how the Service is used. We use cookies to understand how visitors interact with our Service, which pages they visit, how long they spend, and what features they use. This helps us improve the Service.

To measure and improve advertising performance. With your consent (where required), we use cookies to measure the effectiveness of our marketing campaigns, to attribute conversions to specific ads, to build audiences for advertising, and to show you ads on third-party platforms (such as Meta, Google, and Apple Search Ads).

To enable third-party integrations. When you connect third-party services to your DBC account (such as Salesforce, HubSpot, Google Workspace, Zapier, or monday.com), cookies and similar technologies may be used to facilitate authentication and data exchange.

3. Categories of cookies we use

We use the following categories of cookies on our Service. The category determines whether we need your consent before placing the cookie on your device.

Strictly necessary cookies. These cookies are essential for the Service to function and cannot be switched off in our systems. They are usually only set in response to actions made by you that amount to a request for services, such as logging in, filling in forms, or setting your privacy preferences. You can configure your browser to block or alert you about these cookies, but some parts of the Service will not then work. Legal basis: legitimate interest (these cookies do not require consent under applicable e-Privacy laws because they are strictly necessary for the operation of the Service).

Functional cookies. These cookies enable enhanced functionality and personalization, such as remembering your language preference or storing your custom card design settings for longer than one session. They may be set by us or by third-party providers whose services we have added to our pages. Legal basis: consent.

Performance and analytics cookies. These cookies allow us to count visits and traffic sources so we can measure and improve the performance of the Service. They help us know which pages are the most and least popular and see how visitors move around the Service. All information these cookies collect is aggregated and therefore anonymous. We also use session recording technology to understand user experience issues and improve our products. Legal basis: consent.

Targeting and advertising cookies. These cookies may be set through our Service by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising. Legal basis: consent.

We use cookies and similar technologies from the following providers. The specific list of cookies, including their names, durations, and purposes, is available in our cookie consent banner, which you can access at any time by clicking the "Cookie preferences" link in the footer of our website.

Our own cookies (first-party). We set cookies directly from the digitalbusinesscard.com domain for authentication, security, session management, and to remember your preferences.

Google Analytics 4 (Google LLC). A web analytics service that helps us understand how visitors use the Service. Google Analytics may use cookies to distinguish unique users, throttle the request rate, and store information about how visitors navigate the Service. Learn more: policies.google.com/privacy

Mixpanel (Mixpanel, Inc.). A product analytics service that helps us understand how customers use the Service, including which features they interact with and how often. Learn more: mixpanel.com/legal/privacy-policy

Google Tag Manager (Google LLC). A tag management system that allows us to deploy and manage tracking technologies through a single integration. Google Tag Manager itself does not collect personal data but facilitates the loading of other tracking technologies. Learn more: policies.google.com/privacy

Microsoft Clarity (Microsoft Corporation). A user behavior analytics service that records user sessions (including mouse movements, clicks, scrolls, and keystrokes for non-sensitive fields) and generates heatmaps to help us improve user experience. Learn more: privacy.microsoft.com

Firebase suite (Google LLC). We use a suite of Firebase services that may use cookies and SDKs, including Firebase Authentication, Firebase Cloud Messaging (push notifications), Firebase Crashlytics (crash reporting), Firebase Remote Config (feature flags), and Firebase Analytics. Learn more: firebase.google.com/support/privacy

Meta Pixel (Meta Platforms, Inc.). A piece of code that allows us to measure the effectiveness of our advertising on Meta platforms (Facebook and Instagram), build custom audiences, and attribute conversions to our ad campaigns. Learn more: meta.com/privacy

Google Ads (Google LLC). Used to deliver and measure the effectiveness of our advertising on Google search and the Google Display Network, including remarketing. Learn more: policies.google.com/privacy

Apple Search Ads (Apple Inc.). Used to promote our App within the Apple App Store. Apple Search Ads operates primarily within the App Store environment and does not typically rely on website cookies. Learn more: apple.com/legal/privacy

Stripe (Stripe, Inc.). Our payment processor. Stripe uses cookies for fraud prevention and to remember your payment details for future transactions. Learn more: stripe.com/privacy

PayPal (PayPal Holdings, Inc.). Where you choose PayPal as your payment method, PayPal may set cookies on your device. Learn more: paypal.com/privacy

For further details about each cookie we use, including its name, duration, and the specific purpose of its use, please consult our cookie consent banner by clicking "Cookie preferences" in the footer of our website.

5. Mobile application — SDKs and similar technologies

Our mobile application uses Software Development Kits ("SDKs") and similar technologies that perform functions analogous to cookies. These include SDKs from the providers listed in Section 4 above (in particular Firebase, Mixpanel, Meta, and Google), as well as platform-native identifiers such as the Apple Identifier for Advertising ("IDFA") on iOS and the Google Advertising ID ("AAID") on Android.

You can control the use of these mobile identifiers through your device settings:

iOS: Settings → Privacy & Security → Tracking, and Settings → Privacy & Security → Apple Advertising.

Android: Settings → Privacy → Ads, and Settings → Privacy → Permission Manager.

If you opt out of tracking on iOS through Apple's App Tracking Transparency framework when prompted, our App will not use IDFA for cross-app or cross-website tracking.

You have several ways to control or refuse cookies on our Service:

Through our cookie consent banner. When you first visit our website, you will be presented with a cookie banner that allows you to accept all cookies, reject non-essential cookies, or customize your preferences by category. You can change your preferences at any time by clicking the "Cookie preferences" link in the footer of our website.

Through your browser settings. Most web browsers allow you to manage cookies via the browser settings. You can typically:

(a) view what cookies are stored on your device and delete them;

(b) block third-party cookies;

(c) block cookies from particular sites;

(d) block all cookies from being set;

(e) delete all cookies when you close the browser.

For instructions specific to your browser, please see:

Google Chrome: support.google.com/chrome/answer/95647

Mozilla Firefox: support.mozilla.org/kb/cookies-information-websites-store-on-your-computer

Safari (desktop): support.apple.com/guide/safari/manage-cookies-sfri11471

Safari (iOS): support.apple.com/HT201265

Microsoft Edge: support.microsoft.com/microsoft-edge

Opera: opera.com/help/tutorials/security/cookies

Please note that blocking all cookies will have a negative impact on the usability of many websites, including ours. Some features of our Service may not function correctly if you block essential cookies.

Through industry opt-out tools. For advertising cookies, you can opt out of interest-based advertising from many companies through the following industry opt-out tools:

EU users: youronlinechoices.eu

US users: optout.aboutads.info (Digital Advertising Alliance) and optout.networkadvertising.org (Network Advertising Initiative)

Canadian users: youradchoices.ca

Australian users: youradchoices.com.au

7. Do Not Track and Global Privacy Control signals

Some browsers offer a "Do Not Track" (DNT) setting that signals to websites you do not want to be tracked. Because there is no industry standard for how to respond to DNT signals, we do not currently respond to DNT signals.

We do, however, recognize and process the Global Privacy Control ("GPC") signal where required by applicable law (in particular, under California's CCPA/CPRA and similar US state privacy laws). When we detect a GPC signal from your browser, we will treat it as a valid opt-out of the "sale" or "sharing" of your personal information under those laws. See Section 5.B of our Privacy Policy for more information about your US privacy rights.

8. Cookies, personal data, and your privacy rights

Some cookies process personal data within the meaning of applicable data protection laws (such as the GDPR, UK GDPR, CCPA, LGPD, and PIPEDA). For more information on how we process personal data and the privacy rights available to you, please see our Privacy Policy at digitalbusinesscard.com/privacy.

In particular:

(a) you have the right to withdraw your consent to non-essential cookies at any time through our cookie banner;

(b) you have the right to access, correct, delete, or request portability of your personal data;

(c) if you are based in the EU/EEA, the UK, or Switzerland, you may lodge a complaint with your local data protection supervisory authority;

(d) if you are based in California, you have the right to opt out of the "sale" or "sharing" of your personal data;

(e) if you are based in Brazil, you have rights under the LGPD;

(f) if you are based in Canada, you have rights under PIPEDA and equivalent provincial legislation (including Quebec's Law 25).

To exercise any of these rights, please contact us at privacy@digitalbusinesscard.com.

We may update this Cookie Policy from time to time to reflect changes in the cookies we use, in applicable laws, or in our business practices. When we make changes, we will update the "Last updated" date at the top of this Policy. For material changes, we will provide additional notice through our cookie banner or by other appropriate means.

We encourage you to review this Cookie Policy periodically to stay informed about our use of cookies.

10. Contact us

If you have any questions or concerns about this Cookie Policy or about our use of cookies, please contact us at:

IT FOR TOMORROW LTD

Registration No. HE 466470

VAT No. CY60105017J

Registered office: 13 Myrtiotissis, Aqua Mansions, Apartment 1, 4041, Germasogeia, Cyprus

Privacy email: privacy@digitalbusinesscard.com

Version 1.0 — Last updated: 15 June 2026