Your privacy is non-negotiable

We don't collect, sell, or share your footage. CardBridge is built on the principle that your data belongs to you.

Last updated January 1, 2024

Core Principles

Local-First by Design

Your footage stays on your device. It never leaves your local network. We never see a frame, and neither does anyone else unless you explicitly share it.

We Don't See Your Data

Even with admin access, we couldn't view your footage if we wanted to. All video processing happens locally on your network. No cloud hooks, no backdoors.

Professional Security Standards

We maintain enterprise-grade security practices and undergo regular third-party audits. Your privacy architecture is our top priority.

What We Don't Do

No cloud uploads

Your footage never syncs to our servers. Ever. Local WiFi transfers only.

No tracking or profiling

We don't build profiles based on what footage you watch or when. No recommendation algorithms analyzing your driving.

No data sales

We have no business model dependent on selling your data. No advertising partners. No third-party integrations selling access.

No hidden telemetry

What you see is what you get. No background processes reporting on your device usage or video content.

What We Transparently Collect

To keep CardBridge running, we collect minimal data:

  • Basic error reports when the app crashes (device model, OS version, error stack)
  • Feature usage metrics (which sections of the app are used most)
  • Optional security updates and new device compatibility announcements

All of this is anonymized. We never tie it back to your identity or footage. You can disable collection in settings at any time.

Professional Security Audits

We undergo regular third-party security audits to ensure CardBridge maintains the highest standards. All audit reports are available to our users.

Request security audit details

GDPR & Privacy Rights

GDPR Compliant

CardBridge complies with GDPR requirements. Your footage is your data. You have the right to access, modify, delete, and port your information whenever you want.

Your Privacy Rights

  • Right to access: You can request all data we hold about you
  • Right to delete: You can delete your account and associated metadata
  • Right to port: You can export your configuration and device settings

Data Retention

We retain error reports and usage metrics for 90 days before automatic deletion. Account metadata and configuration settings are retained as long as your account exists. You can request deletion at any time by contacting hello@cardbridge.io.

Sub-Processors

CardBridge uses minimal third-party services. We may use cloud providers only for:

  • Anonymous crash reporting (Sentry or similar) — never includes video data
  • Email communication infrastructure — for notifications and support responses
  • Payment processing — PCI-compliant processors only for transactions

Data Controller

CardBridge (operated by [Your Company]) is the data controller for your personal data. We don't sell, license, or trade your information to third parties.

Privacy Contact: hello@cardbridge.io

International Data Protection

Your data processing complies with GDPR (EU/UK), CCPA (California), LGPD (Brazil), and equivalent privacy laws worldwide. If you have privacy rights questions specific to your region, please contact us directly.

Questions?

We're committed to transparency. If you have privacy concerns or questions about how we handle data, reach out directly.

hello@cardbridge.io
CardBridge — Your footage. No cloud. No subscription.